AI Security Review
scanned 2h ago · by lpm-firewall-aiThe package performs install-time telemetry upload to a hardcoded Sentry project. Preinstall executes a verification script that resolves public IP context, captures a forced error, and flushes it to Sentry without user invocation.
Decision evidence
public snapshot- package.json defines preinstall: npm install @sentry/node && node examples/verify.js
- examples/verify.js runs during preinstall and calls ecCheck.init() with package default DSN
- src/index.js hardcodes Sentry DSN https://ab3ba49fb61df1dca0cc496846baee89@o4510485815754752.ingest.us.sentry.io/4511709729914880
- src/index.js init enables sendDefaultPii:true and uploads captured errors via @sentry/node
- examples/verify.js calls setUserFromPublicIp using Cloudflare trace, then captures a forced TypeError and flushes to Sentry
- preinstall performs unconsented install-time network activity and telemetry upload unrelated to installing the package
- No child_process, eval/vm, dynamic require, native binary loading, destructive filesystem writes, or AI-agent control-surface writes found
- Network code is visible in source rather than obfuscated
- Runtime API is mostly a Sentry wrapper, but the same behavior is invoked automatically at install time
Source & flagged code
4 flagged · loading sourceInstall-time lifecycle script matches a deterministic static-gate block pattern.
package.jsonView on unpkgPackage defines install-time lifecycle scripts.
package.jsonView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
src/index.jsView on unpkgSource fingerprint signature matches a known malicious package signature; route for source-aware review.
src/index.jsView on unpkg