AI Security Review
scanned 7d ago · by lpm-firewall-aiThe package executes malicious code during npm lifecycle hooks. It harvests secrets and environment data, exfiltrates them externally, and attempts to mutate local services.
OSV Corroboration
OpenSSF/OSVDecision evidence
public snapshot- package.json defines preinstall/install/postinstall/prepare lifecycle hooks executing local JS files.
- preinstall.js, install.js, postinstall.js, and prepare.js run child_process.execSync to read flag-like files, /run/secrets/*, env values, hostname, id, and pwd.
- Lifecycle scripts base64-encode harvested host/secret data and send it to https://forward-amber-prairie-ruled.trycloudflare.com/x?d=...
- Lifecycle scripts PUT a manifest named PWNED with encoded data to multiple localhost/container service endpoints at /api/modules/ECT-839201.
- index.js only exports an empty object.
- No benign package functionality explains install-time secret harvesting or local service mutation.
Source & flagged code
7 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource executes local commands and sends command output to an external endpoint.
preinstall.jsView on unpkg · L2A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
preinstall.jsView on unpkg · L2