registry  /  rastack  /  0.0.37

rastack@0.0.37

AI Security Review

scanned 2d ago · by lpm-firewall-ai

No confirmed malicious install-time or import-time attack surface. Explicit CLI commands can scaffold project workflows, self-update the package, and run developer-selected local tooling.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source
Trigger
User runs `rastack init`, `rastack update`, or another CLI subcommand.
Impact
May write deployment configuration and GitHub Actions workflows only when the user invokes setup; no unconsented persistence or exfiltration is established.
Mechanism
Explicit developer CLI orchestration and project scaffolding.
Rationale
Source inspection shows a developer CLI with explicit self-update, AWS deployment, workflow scaffolding, and local module-loading features. It has no lifecycle hook, covert execution, credential collection, exfiltration, or unconsented AI-agent/control-surface mutation.
Evidence
package.jsonsrc/rastack.tssrc/rastack-init.tssrc/rastack-update.tssrc/rastack-ci.tssrc/deploy/io.tssrc/deploy/workflows.tssrc/tokens/compile.tsprovider/wasm.ts.rastack/deploy.json.github/workflows/ci.yml.github/workflows/deploy-backend.yml

Decision evidence

public snapshot
AI called this Clean at 95.0% confidence as Benign with low false-positive risk.
Evidence for block
  • `src/rastack-init.ts` explicitly scaffolds GitHub Actions and can invoke AWS deployment commands.
  • `src/rastack-update.ts` explicitly runs `npm install -g rastack@...` for self-update.
  • `src/tokens/compile.ts` requires a user-selected local token module.
Evidence against
  • `package.json` has no preinstall, install, postinstall, or other lifecycle hook.
  • CLI execution requires an explicit `rastack` subcommand.
  • AWS, npm, git, Cargo, and cloud actions are user-invoked developer tooling.
  • No source evidence of credential harvesting, secret-file reads, or network exfiltration.
  • No AI-agent configuration paths or foreign control-surface mutation were found.
  • No binary/native payload files were present.
Behavioral surface
Source
ChildProcessDynamicRequireEnvironmentVarsEvalFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 172 file(s), 706 KB of source, external domains: 127.0.0.1, www.w3.org

Source & flagged code

5 flagged · loading source
dist/deploy/io.jsView file
52exports.withPrompt = withPrompt; L53: const child_process_1 = require("child_process"); L54: const fs = __importStar(require("fs"));
High
Child Process

Package source references child process execution.

dist/deploy/io.jsView on unpkg · L52
provider/wasm.tsView file
12// eslint-disable-next-line no-new-func L13: new Function("s", "return import(s)") as any; L14:
Low
Eval

Package source references a known benign dynamic code generation pattern.

provider/wasm.tsView on unpkg · L12
dist/rastack-compile.jsView file
12Object.defineProperty(exports, "__esModule", { value: true }); L13: const compile_1 = require("./compile"); L14: const DEFAULT_RESOURCES = "resources";
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/rastack-compile.jsView on unpkg · L12
src/rastack-update.tsView file
14* prefix (`~/.rastack`, via the hosted installer). Updating re-runs L15: * `npm install -g rastack@<target>` against that SAME prefix — derived from where L16: * the running CLI lives — so it never scatters a second copy into npm's default ... L19: L20: import { execFileSync } from "child_process"; L21: import { readFileSync } from "fs";
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

src/rastack-update.tsView on unpkg · L14
dist/rastack.jsView file
matchType = previous_version_dangerous_delta matchedPackage = rastack@0.0.35 matchedIdentity = npm:cmFzdGFjaw:0.0.35 similarity = 0.892 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/rastack.jsView on unpkg

Findings

1 Critical3 High4 Medium5 Low
CriticalPrevious Version Dangerous Deltadist/rastack.js
HighChild Processdist/deploy/io.js
HighShell
HighRuntime Package Installsrc/rastack-update.ts
MediumDynamic Requiredist/rastack-compile.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowEvalprovider/wasm.ts
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings