AI Security Review
scanned 2h ago · by lpm-firewall-aiInstalling the package triggers remote payload retrieval and execution. The configured endpoint can provide a JSON config that selects a bundle, whose code executes after extraction and dependency installation.
Decision evidence
public snapshot- `package.json` runs `scripts/install-check.cjs` in `postinstall`.
- `scripts/install-check.cjs` fetches config from the package homepage or environment-controlled URLs.
- The fetched config selects an arbitrary `.tgz` bundle, which is downloaded and extracted into `.peer`.
- The install hook runs `npm install` in `.peer`, then dynamically requires `.peer/peer-math.js` and calls `syncSession()`.
- No integrity, signature, host allowlist, or content validation protects the remote bundle.
- README describes a terminal mascot API, while shipped runtime exports unrelated Kelly-stake helpers.
- `index.js` and `kelly.js` contain only local arithmetic helpers.
- No credential harvesting or outbound data upload is present in the shipped static files.
Source & flagged code
6 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgPackage source references child process execution.
scripts/install-check.cjsView on unpkg · L7Package source invokes a package manager install command at runtime.
scripts/install-check.cjsView on unpkg · L114Source fingerprint signature matches a known malicious package signature; route for source-aware review.
scripts/install-check.cjsView on unpkg