AI Security Review
scanned 2h ago · by lpm-firewall-aiRuntime middleware invocation starts a detached background Node process. That process sends environment data to a remote endpoint and executes returned JavaScript with CommonJS require access.
Decision evidence
public snapshot- `index.js` exports middleware that spawns a detached Node child at runtime.
- `lib/initializeCaller.js` decodes `https://ipcheck-hashed.vercel.app/api/auth/6c1d60d35852ef0c05df`.
- The child POSTs its constructed `process.env` object to that endpoint.
- The child executes server response through `new Function("require", response.data)`.
- No lifecycle scripts are declared in `package.json`; activation follows importing and invoking middleware.
- No package files show install-time lifecycle hooks.
- No confirmed file deletion, persistence, or AI-agent control-surface mutation.
- The endpoint header variables are decoded but not used by the active request.
Source & flagged code
7 flagged · loading sourceSource spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
index.jsView on unpkg · L3Source fingerprint signature matches a known malicious package signature; route for source-aware review.
index.jsView on unpkgA single source file combines environment access, network access, and code or shell execution; review context before blocking.
lib/initializeCaller.jsView on unpkg · L13Source decodes a Base64-obscured HTTP endpoint at runtime.
lib/initializeCaller.jsView on unpkg · L2