AI Security Review
scanned 7d ago · by lpm-firewall-aiInstall-time lifecycle hooks harvest local secrets and environment data, exfiltrate them to an external Cloudflare tunnel, and attempt local API mutation. The behavior is unrelated to the package description or runtime API.
OSV Corroboration
OpenSSF/OSVDecision evidence
public snapshot- package.json runs preinstall/install/postinstall/prepare lifecycle scripts.
- preinstall.js/install.js/postinstall.js/prepare.js execute grep/find/head/env via child_process.execSync.
- Lifecycle scripts collect HTB flags, flag-like files, environment, hostname, id, and pwd.
- Collected data is base64 encoded and sent to trycloudflare.com over HTTPS query string.
- Scripts also PUT a manifest named PWNED to local /api/modules/ECT-839201 endpoints.
- index.js only exports an empty object.
- No dependency confusion indicators or native binaries found.
Source & flagged code
7 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource executes local commands and sends command output to an external endpoint.
preinstall.jsView on unpkg · L2A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
preinstall.jsView on unpkg · L2