AI Security Review
scanned 21h ago · by lpm-firewall-aiNo confirmed malicious install-time behavior or unconsented foreign agent control-surface mutation was found. The package is a coding-agent CLI with broad user/LLM-invoked file, shell, web, memory, and skill-loading capabilities plus runtime self-update.
Decision evidence
public snapshot- dist/tools/builtins/run-command.js exposes user/LLM-invoked shell execution via bash/cmd with only best-effort denylist.
- dist/tools/builtins/write-file.js and edit-file.js allow agent-driven file writes inside the configured sandbox root.
- dist/updater/index.js checks npm registry and may spawn detached `npm install -g mocode-ai@latest` on CLI startup when cache says newer version exists.
- dist/skills/discover.js reads ~/.claude/skills in addition to ~/.mocode and project skills, importing foreign agent skill text into this agent context.
- dist/tools/builtins/web-search.js and web-fetch.js provide network access to AnySearch and arbitrary http/https URLs.
- package.json lifecycle only has prepare -> npm run build; no install/postinstall hook or source evidence of install-time payload execution.
- bin/mocode.js only imports dist/index.js; dangerous operations are runtime CLI/tool actions, not import-time side effects.
- dist/pet/bridge.js connects only to ws://127.0.0.1 and spawns optional mocode-pet-app after explicit /pet path, not during install.
- No code found writing CLAUDE.md, .mcp.json, Cursor/Codex settings, shell startup files, VCS hooks, or other foreign control surfaces.
- Network endpoints are package-aligned: npm registry/latest, configured LLM/OpenAI-compatible baseURL, AnySearch, user-provided fetch URLs, and localhost pet websocket.
Source & flagged code
4 flagged · loading sourcePackage source references child process execution.
dist/ui/clipboard.jsView on unpkg · L1This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/pet/bridge.jsView on unpkgPackage source invokes a package manager install command at runtime.
dist/pet/bridge.jsView on unpkg · L120