AI Security Review
scanned 3h ago · by lpm-firewall-aiThe user-invoked HTTP daemon has a static-file path traversal. A request path containing traversal segments can escape `web/dist` because no normalized-prefix check is applied before reading the file.
Decision evidence
public snapshot- `dist/server/index.js` joins `req.url` to `webDistDir` without containment validation.
- `serveStatic` checks existence then calls `readFileSync` on that derived path.
- `dist/cli/index.js` accepts `--host`, including a user-selected non-local bind address.
- `package.json` contains no `preinstall`, `install`, or `postinstall` hook.
- `dist/cli/index.js` forks only the package's own `dist/server/daemon.js` after explicit `bossmode on`.
- Dynamic imports in `dist` use fixed package-relative module paths; no runtime remote-code loader was found.
- Flagged `web/dist/assets` files are bundled editor/language syntax modules, not executable payload delivery.
Source & flagged code
6 flagged · loading sourceSource downloads or fetches remote code and executes it.
web/dist/assets/index-MzlDDEbN.jsView on unpkg · L8Package source references shell execution.
web/dist/assets/index-MzlDDEbN.jsView on unpkg · L897Package source references dynamic require/import behavior.
web/dist/assets/livescript-BwQOo05w.jsView on unpkg · L1Source file is highly similar to a previously finalized malicious package; route for source-aware review.
web/dist/assets/sql-D0XecflT.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
web/dist/assets/vbscript-BuJXcnF6.jsView on unpkg