AI Security Review
scanned 3h ago · by lpm-firewall-aiNo confirmed malicious attack surface was established. Install hooks perform local framework setup under the package's own configuration paths; no relevant network endpoint or credential collection was found.
Decision evidence
public snapshot- `package.json` runs `preinstall` and `postinstall`.
- `script/post_install.js` creates framework-owned `~/.gina` state and may create a local `package.json`.
- Lifecycle hooks invoke local `npm`/`git` commands for setup.
- No lifecycle network, credential-harvesting, or exfiltration code found.
- Postinstall writes are package-aligned framework configuration, not AI-agent or shell-profile mutation.
- Git hook configuration is gated on a `.git` directory at the package's own clone root.
- Couchbase's flagged `eval` is commented out and replaced by `JSON.parse`.
- PostgreSQL dynamic loading is local bundle entity/module loading.
- Controller outbound requests are explicit framework download functionality, not install-time behavior.
Source & flagged code
15 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
framework/v0.5.18/core/controller/controller.jsView on unpkgPackage source references child process execution.
framework/v0.5.18/core/controller/controller.jsView on unpkg · L13Package source references shell execution.
framework/v0.5.18/lib/cmd/framework/tail.jsView on unpkg · L279Package source references a known benign dynamic code generation pattern.
framework/v0.5.18/core/connectors/couchbase/index.jsView on unpkg · L394Package source references dynamic require/import behavior.
framework/v0.5.18/core/connectors/postgresql/index.jsView on unpkg · L9Package source references weak cryptographic algorithms.
framework/v0.5.18/lib/release-watch/src/main.jsView on unpkg · L106A single source file combines environment access, network access, and code or shell execution; review context before blocking.
framework/v0.5.18/core/server.isaac.jsView on unpkg · L6Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
framework/v0.5.18/core/gna.jsView on unpkg · L28Package source invokes a package manager install command at runtime.
script/smoke_in_container.jsView on unpkg · L225Package ships compressed or archive-like blobs.
framework/v0.5.18/core/asset/plugin/dist/vendor/gina/css/gina.min.css.brView on unpkgPackage ships high-entropy non-source blobs.
framework/v0.5.18/core/asset/plugin/dist/vendor/gina/inspector/have_heart_one-webfont.woff2View on unpkgHardcoded password in framework/v0.5.18/lib/secrets/src/main.js
framework/v0.5.18/lib/secrets/src/main.jsView on unpkg · L40Hardcoded password in framework/v0.5.18/lib/secrets/src/main.js
framework/v0.5.18/lib/secrets/src/main.jsView on unpkg · L233Hardcoded password in framework/v0.5.18/lib/secrets/src/main.js
framework/v0.5.18/lib/secrets/src/main.jsView on unpkg · L265