AI Security Review
scanned 5h ago · by lpm-firewall-aiNo confirmed malicious attack surface is established. The package exposes an explicit MCP security scanner with user-invoked network scans, repo reads, report writes, and optional external scanner/LLM integrations.
Decision evidence
public snapshot- dist/index.js starts an MCP server/bin and registers scan tools that can make HTTP requests to user-supplied targets.
- dist/index.js scan_repo reads a user-supplied local path and writes reports/state to fracta-reports/fracta-state.db when invoked.
- dist/chunk-U24RMSTQ.js can spawn gitleaks/semgrep for explicit repo scanning; this is scanner-aligned behavior.
- dist/index.js optionally calls Anthropic only when FRACTA_LLM=1 and ANTHROPIC_API_KEY is set.
- package.json has no preinstall/install/postinstall lifecycle hooks.
- README.md documents the package as an MCP security/LGPD scanner and shows explicit MCP client configuration.
- Network use is directed at user-provided URLs or package-aligned promo/docs URLs; no hardcoded exfiltration endpoint was found.
- Credential strings are test inputs, target auth from targets.yaml, or env-configured API keys for opt-in LLM enrichment; no harvesting loop was found.
- No AI-agent config mutation or broad control-surface writes were found in inspected package files.
- Dynamic import is limited to local bundled modules for runtime verifier/formatters and Anthropic SDK wrapper.
Source & flagged code
5 flagged · loading sourceThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/index.jsView on unpkgPackage source references a known benign dynamic code generation pattern.
dist/index.jsView on unpkg · L55