AI Security Review
scanned 1h ago · by lpm-firewall-aiNo confirmed malicious attack surface. The user-invoked CLI fetches a trust register, optionally blocks the supplied MCP-server command, then directly spawns that user-supplied command.
Decision evidence
public snapshot- `package.json` has no lifecycle scripts; code runs only through the declared CLI.
- `bin/hlido-mcp-guard.mjs` fetches a public Hlido register and caches it only in the OS temp directory.
- The environment variable only overrides the register URL; no environment harvesting occurs.
- `spawn()` executes only the command explicitly supplied after `--`, with inherited stdio.
- No eval, shell interpolation, credential collection, exfiltration, persistence, or AI-client config writes found.
Source & flagged code
3 flagged · loading sourcePackage source references child process execution.
bin/hlido-mcp-guard.mjsView on unpkg · L33A single source file combines environment access, network access, and code or shell execution; review context before blocking.
bin/hlido-mcp-guard.mjsView on unpkg · L33Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
bin/hlido-mcp-guard.mjsView on unpkg · L113