AI Security Review
scanned 3d ago · by lpm-firewall-aiNo confirmed malicious attack surface. Network, credential storage, dynamic imports, and timer writes are user-invoked product features with validation and package-aligned endpoints.
Decision evidence
public snapshot- dist/cli/auth.js sends hostname/platform/username as requesterLabel to hosted FullStackGTM during explicit login/pairing.
- dist/cli/schedule.js can install user timers into crontab or ~/Library/LaunchAgents via explicit schedule install.
- dist/config.js dynamically imports user-configured rulePackages from fullstackgtm.config.json.
- package.json has no preinstall/install/postinstall hook; only prepublishOnly build checks.
- dist/bin.js only dispatches CLI args; reporting is skipped unless a broker credential already exists.
- dist/runReport.js is opt-in paired observability to broker.baseUrl and returns when unpaired.
- dist/schedule.js validates schedulable argv, rejects control chars, avoids shell dispatch, and gates scheduled apply on approved plans.
- dist/cli/auth.js stores user-entered credentials locally and validates against package-aligned provider APIs.
Source & flagged code
5 flagged · loading sourcePackage source references dynamic require/import behavior.
dist/config.jsView on unpkg · L59Source writes installer persistence such as shell profile or service configuration.
dist/cli/schedule.jsView on unpkg · L6Source collects local host identity data and sends it to an external endpoint.
dist/cli/auth.jsView on unpkg · L30Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/cli/auth.jsView on unpkg · L30This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/schedule.jsView on unpkg