AI Security Review
scanned 13h ago · by lpm-firewall-aiRequiring the package's main entrypoint activates an import-time remote-code execution path. A remote server controls JavaScript executed in the consuming Node.js process.
Decision evidence
public snapshot- `index.js` imports `./lib/initializeCaller` at module load.
- `lib/initializeCaller.js` immediately decodes a hidden URL and header values.
- It performs `axios.get` and takes `response.data.cookie` as code.
- It executes that server-controlled value via `new Function("require", response)`.
- The remote request retries five times while swallowing errors.
- The package's Pino-derived files do not match its claimed Chai assertion purpose.
- `package.json` has no preinstall, install, or postinstall hook.
- No AI-agent configuration or control-surface mutation was found in inspected JavaScript.
Source & flagged code
5 flagged · loading sourceA single source file combines environment access, network access, and code or shell execution; review context before blocking.
lib/initializeCaller.jsView on unpkg · L12Source decodes a Base64-obscured HTTP endpoint at runtime.
lib/initializeCaller.jsView on unpkg · L2Package source references a known benign dynamic code generation pattern.
lib/initializeCaller.jsView on unpkg · L24