registry  /  ccanalyzer  /  2.2.0

ccanalyzer@2.2.0

Web-based analyzer for Claude Code sessions

AI Security Review

scanned 2h ago · by lpm-firewall-ai

No confirmed malicious behavior was found. The main risk is a user-invoked local dashboard that reads Claude/OpenCode history and may expose parsed local session data if bound to an untrusted interface.

Static reason
No blocking static signals were detected.
Trigger
User runs ccanalyzer CLI or imports startServer
Impact
Potential local session data exposure if server is deliberately exposed; no install-time or automatic exfiltration observed.
Mechanism
local Express dashboard over local AI session files
Rationale
Static inspection shows a package-aligned local analytics server with no install-time execution, exfiltration, shell execution, or payload staging. I would warn rather than block because decoded route parameters are used for filesystem reads under local AI history directories and the host can be user-configured beyond loopback.
Evidence
package.jsonbin/index.jssrc/server.jssrc/parser.jssrc/sources/opencode.jssrc/public/index.htmlsrc/public/app.js~/.claude/projects~/.claude/stats-cache.json~/.local/share/opencode/opencode.db
Network endpoints2
localhost:3737cdn.jsdelivr.net/npm/echarts@5.5.1/dist/echarts.min.js

Decision evidence

public snapshot
AI called this Suspicious at 78.0% confidence as Critical Vulnerability with medium false-positive risk.
Evidence for warning
  • src/server.js exposes local API routes returning parsed Claude/OpenCode session content
  • src/parser.js joins decoded route params into PROJECTS_DIR without path normalization checks
  • bin/index.js allows --host/HOST override, so user can bind the dashboard beyond loopback
Evidence against
  • package.json has no preinstall/install/postinstall lifecycle scripts
  • No child_process, eval, remote payload loading, credential harvesting, persistence, or destructive writes found
  • Default host is 127.0.0.1 and behavior is package-aligned: local Claude/OpenCode analytics dashboard
  • Network use is limited to local Express API fetches and a frontend CDN script
Behavioral surface
Source
EnvironmentVarsFilesystemNetwork
Supply chain
HighEntropyStrings
ManifestNo manifest risk signals triggered.
scanned 5 file(s), 134 KB of source

Source & flagged code

3 flagged · loading source
src/server.jsView file
Published source reference
Medium
Ai Review Evidence

src/server.js exposes local API routes returning parsed Claude/OpenCode session content

src/server.jsView on unpkg
src/parser.jsView file
Published source reference
Medium
Ai Review Evidence

src/parser.js joins decoded route params into PROJECTS_DIR without path normalization checks

src/parser.jsView on unpkg
bin/index.jsView file
Published source reference
Medium
Ai Review Evidence

bin/index.js allows --host/HOST override, so user can bind the dashboard beyond loopback

bin/index.jsView on unpkg

Findings

5 Medium3 Low
MediumNetwork
MediumEnvironment Vars
MediumAi Review Evidencesrc/server.js
MediumAi Review Evidencesrc/parser.js
MediumAi Review Evidencebin/index.js
LowScripts Present
LowFilesystem
LowHigh Entropy Strings