AI Security Review
scanned 1h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. Install-time script copies a package-owned service worker bundle into the consumer app public directory. This is a real lifecycle/platform-extension risk, but source inspection did not show malicious exfiltration or remote code execution.
Decision evidence
public snapshot- package.json defines postinstall: node ./scripts/postinstall.js
- scripts/postinstall.js creates consuming project public/ and overwrites public/serviceWorker.bundle.js
- dist/serviceWorker.bundle.js installs/activates a service worker and handles fetch/message events
- service worker 401 handler posts request url, headers, and JSON body back to the client page
- No child_process, shell execution, eval, native binary, or dynamic remote payload loading found
- Network calls in dist are API/client configured or package-aligned defaults for freeschema/logging/recaptcha/CDN
- No credential harvesting or exfiltration to attacker-controlled fixed endpoint confirmed
- README documents optional service worker mode and backend/client URL configuration
Source & flagged code
5 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgHardcoded password in dist/types/Api/Signup.d.ts
dist/types/Api/Signup.d.tsView on unpkg · L22Hardcoded password in dist/types/Api/Signup.d.ts
dist/types/Api/Signup.d.tsView on unpkg · L55Hardcoded password in dist/types/Api/Signin.d.ts
dist/types/Api/Signin.d.tsView on unpkg · L16