AI Security Review
scanned 2h ago · by lpm-firewall-aiInstall automatically fetches and extracts a native PHP runtime into the package directory. A later user `php-app run` launches that runtime.
Decision evidence
public snapshot- `package.json` runs `scripts/postinstall.js` automatically.
- `scripts/fetch-php.js` downloads a platform PHP archive during postinstall.
- Download URL uses `PHPAPP_PHP_VERSION` and has no checksum or signature verification.
- Archive is extracted into `runtime/php-bin/*` and later executed by `runtime/main.js`.
- Network destination is a fixed static-PHP distribution host.
- `bin/php-app.js` network check only queries npm for update notices.
- `runtime/main.js` HTTP services bind to `127.0.0.1` and use random tokens.
- No source evidence of credential harvesting, external exfiltration, AI-agent writes, or stealth persistence.
Source & flagged code
8 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgPackage source references dynamic require/import behavior.
bin/php-app.jsView on unpkg · L2A single source file combines environment access, network access, and code or shell execution; review context before blocking.
runtime/main.jsView on unpkg · L202Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
runtime/main.jsView on unpkg · L203Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
scripts/fetch-php.jsView on unpkg · L4Package ships non-JavaScript build or shell helper files.
bin/fetch-php.shView on unpkg