AI Security Review
scanned 13h ago · by lpm-firewall-aiNo confirmed malicious attack surface from static source inspection. The package is a local AI bridge with dangerous but package-aligned, user-invoked file, shell, browser, remote, and Codex capabilities guarded by a local bridge token.
Decision evidence
public snapshot- Runtime exposes authenticated localhost file write/delete and shell execution APIs in server.js, activated when the user starts the bridge.
- codex-runtime.js can create ~/.mindexec/codex-runtime and spawn Codex for API-requested agent runs.
- package.json postinstall only runs scripts/setup-tree-sitter-grammars.mjs to copy tree-sitter WASM grammar files into tree-sitter-grammars/.
- launch-bridge.cjs is a user-invoked bin that spawns server.js and opens http://localhost:PORT/mindcanvas; no install-time server launch.
- server.js binds the HTTP server to 127.0.0.1 and protects file/shell/codex/remote APIs with X-Bridge-Token/Bearer auth by default.
- Codex config writes are in an isolated package-owned ~/.mindexec/codex-runtime namespace unless explicitly overridden by env.
Source & flagged code
12 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgA single source file combines environment access, network access, and code or shell execution with blocking evidence.
server.jsView on unpkg · L18A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
server.jsView on unpkgPackage source references dynamic code evaluation.
wwwroot/assets/MindCanvas-D300lgW1.jsView on unpkg · L813Package source references dynamic require/import behavior.
wwwroot/assets/supabaseAuthAdapter-D57zJK6k.jsView on unpkg · L43Source launches a detached bundled service that exposes a broad-bound HTTP listener.
scripts/remote-fast-mdm-browser-smoke.mjsView on unpkg · L3Package ships native binary artifacts.
remote-fast/osx-x64/mindexec-remote-fastView on unpkgPackage ships WebAssembly modules.
tree-sitter-grammars/tree-sitter-go.wasmView on unpkgPackage ships non-JavaScript build or shell helper files.
start-bridge.batView on unpkg