AI Security Review
scanned 10h ago · by lpm-firewall-aiNo confirmed attack surface exists in the inspected package. The current package contents are metadata and a security-holder README with no executable entrypoints or hooks.
Static reason
No blocking static signals were detected.
Trigger
none
Impact
none
Mechanism
metadata-only security holding package
Rationale
Direct inspection shows the published version is a security holding package with no code that executes at install, import, or runtime. The README references past malicious code, but the inspected package itself contains no active attack behavior.
Evidence
package.jsonREADME.md
Decision evidence
public snapshotAI called this Clean at 98.0% confidence as Benign with low false-positive risk.
Evidence for block
- README.md states this is an npm security holding package replacing previously malicious code.
Evidence against
- package.json declares only name, version, description, and repository.
- No npm lifecycle scripts, bin, main, module, browser, dependencies, or files field are declared.
- Only README.md and package.json are present in the package directory.
- Pattern search found no network, credential, child_process, eval, dynamic require/import, native binary, persistence, or install-time behavior.
Behavioral surface
NoLicense
Source & flagged code
0 flaggedNo flagged code excerpts are attached to this scan.
Findings
2 Low
LowNo License
LowAi Review Evidence