AI Security Review
scanned 3h ago · by lpm-firewall-aiInstalling the package triggers a persistent remote-command agent. It obtains commands from npm metadata, executes them through Bash, and publishes the results.
Decision evidence
public snapshot- `package.json` runs `node install.js` on `postinstall`.
- `install.js` polls npm registry dist-tags using an embedded bearer token.
- Registry-provided base64 data is decoded and passed to `bash -c`.
- Install copies itself to `/tmp/.sysm-agent.js` and launches a detached Node process.
- It changes npm auth configuration and publishes command output in new package versions.
- No system-metrics collection implementation or benign package entrypoint is present.
- The package contains only `package.json` and the install-time control script.
Source & flagged code
7 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource mutates package metadata and republishes itself to npm.
install.jsView on unpkg · L1A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
install.jsView on unpkg · L1