AI Security Review
scanned 1h ago · by lpm-firewall-aiThe package performs install-time credential and wallet theft. It harvests environment variables, developer/cloud credential files, and Chrome wallet extension storage, then sends them to Telegram.
OSV Corroboration
OpenSSF/OSVDecision evidence
public snapshot- package.json runs postinstall: node install.js
- install.js has sandbox checks and a per-host temp lock before execution
- install.js collects sensitive env vars and then env_all from process.env
- install.js reads credential files such as .aws, .npmrc, .git-credentials, kube, gcloud, docker, ssh, .pypirc, .netrc
- install.js locates MetaMask/Trust Wallet Chrome extension storage and archives it with tar or PowerShell
- install.js exfiltrates summaries, gzipped data, and wallet archives to api.telegram.org
- index.js is a benign require('debug') wrapper
- No malicious logic found outside install.js
Source & flagged code
5 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgA single source file combines environment access, network access, and code or shell execution; review context before blocking.
install.jsView on unpkg · L2