AI Security Review
scanned 7d ago · by lpm-firewall-aiInstall lifecycle hooks execute a dedicated exfiltration script. It harvests environment variables, flag/.env files, command output, host metadata, and sends them to an external collector.
Decision evidence
public snapshot- package.json runs `node exfil.js` in both preinstall and postinstall lifecycle hooks.
- exfil.js imports http/https, child_process, fs, and os for collection and exfiltration.
- exfil.js captures env vars matching flag/secret/token/npm patterns.
- exfil.js reads flag-like files and .env files from absolute and relative paths.
- exfil.js executes shell discovery commands via cp.execSync.
- exfil.js sends collected JSON to webhook.site by POST with base64 GET fallback.
- index.js only exports an empty object.
- No persistence or package-file mutation observed.
Source & flagged code
9 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource appears to send environment or credential material to an external endpoint.
exfil.jsView on unpkg · L1Source executes local commands and sends command output to an external endpoint.
exfil.jsView on unpkg · L1A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
exfil.jsView on unpkg · L1Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
exfil.jsView on unpkg · L1Source file is highly similar to a previously finalized malicious package; route for source-aware review.
exfil.jsView on unpkg