AI Security Review
scanned 2h ago · by lpm-firewall-aiExplicit `rastack init`, `bootstrap`, `deploy`, `seed`, and `update` commands can modify the caller's project, cloud infrastructure, GitHub repository variables, or installed CLI. No install-time or import-time attack behavior was found.
Decision evidence
public snapshot- `src/rastack-init.ts` writes `.github/workflows/*` and `.rastack/*` on explicit `rastack init`.
- `src/deploy/io.ts` invokes the user's `aws` and `gh` CLIs for deployment and GitHub variable setup.
- `src/rastack-update.ts` explicitly runs `npm install -g rastack[@version]` for self-update.
- `src/rastack.ts` dispatches user CLI arguments through child-process calls; `src/seed.ts` runs a generated Python seed script.
- `package.json` has no `preinstall`, `install`, `postinstall`, or other lifecycle hook.
- No source evidence of credential harvesting, hidden persistence, destructive deletion, or secret exfiltration.
- AWS/GitHub operations are reached only through named user CLI commands and interactive confirmation where TTY is available.
- `src/update.ts` restricts update versions; POSIX npm/AWS/GitHub calls use argument-array execution without a shell.
- Dynamic imports load the package's WASM/admin assets, not a remote payload.
Source & flagged code
8 flagged · loading sourceA single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/admin.jsView on unpkg · L8Package source references a known benign dynamic code generation pattern.
dist/admin.jsView on unpkg · L17Package source references dynamic require/import behavior.
dist/rastack-compile.jsView on unpkg · L12Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
src/rastack-dev.tsView on unpkg · L19This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/rastack-dev.jsView on unpkg