AI Security Review
scanned 17h ago · by lpm-firewall-aiNo confirmed malicious attack surface was found. Install-time behavior builds or installs the package's own CLI binary using package-aligned GitHub/rustup sources, and privileged agent/systemd mutation is behind explicit user commands.
Decision evidence
public snapshot- package.json runs postinstall script
- scripts/postinstall.js downloads release archive and SHA256SUMS from GitHub at install time
- scripts/postinstall.js may run rustup installer when cargo is missing
- scripts/postinstall.js runs tar and cargo build during package install
- postinstall.js is limited to node_modules installs and skips source checkouts
- prebuilt URL is package repository release for exact package version, not latest or obfuscated
- archive hash is checked against SHA256SUMS before copying dist/rpi
- bin/rpi.js only executes package-owned dist/rpi with user CLI args
- Rust agent setup/systemd changes are explicit rpi agent setup commands, not install-time
- No credential harvesting or exfiltration endpoint found
Source & flagged code
7 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
scripts/postinstall.jsView on unpkgSource gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
scripts/postinstall.jsView on unpkg · L8Install-named source file stages remote content through filesystem writes and execution.
scripts/postinstall.jsView on unpkg · L8Package source invokes a package manager install command at runtime.
scripts/postinstall.jsView on unpkg · L152