AI Security Review
scanned 8d ago · by lpm-firewall-aiNo confirmed malicious attack surface is established. Risky primitives are part of a browser whiteboard component: collaboration sync, asset storage, clipboard, local persistence, and offline license/watermark handling.
Decision evidence
public snapshot- Network-capable WebSocket/Hocuspocus and HTTP asset providers exist in dist/collection/classes/providers/*.
- Bundled browser-image-compression code can load worker script from https://cdn.jsdelivr.net/npm/browser-image-compression@2.0.2/dist/browser-image-compression.js.
- Clipboard/localStorage/indexedDB APIs are present for editor copy/paste, settings, workspaces, and local persistence.
- package.json has no install/preinstall/postinstall lifecycle hooks; main/module are dist entrypoint re-exports.
- Entrypoints dist/index.cjs.js and dist/index.js only load bundled library code, not installer/import-time shell or exfiltration logic.
- Network URLs are consumer-configured or package-aligned defaults like ws://localhost:1234 for collaboration/assets, not hardcoded attacker endpoints.
- License manager in dist/collection/classes/managers/license.manager.js performs offline Ed25519 public-key verification and local timer rechecks only.
- Trojan-source check found no bidi/invisible control characters in highlighted schema files.
- No child_process, credential harvesting, destructive filesystem operations, persistence, or AI-agent control-surface writes found.
Source & flagged code
3 flagged · loading sourcePackage source references dynamic require/import behavior.
dist/index.cjs.jsView on unpkg · L1Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
dist/esm/schema.constants-CH2FWTVr.jsView on unpkg · L2602A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/cjs/schema.constants-DItwOm2z.jsView on unpkg