registry  /  sixseven4  /  0.0.1-security

sixseven4@0.0.1-security

security holding package

AI Security Review

scanned 4h ago · by lpm-firewall-ai

No confirmed attack surface is present in this extracted version. The package is a metadata-only security holding package.

Static reason
No blocking static signals were detected.
Trigger
None.
Impact
None established.
Mechanism
No executable package behavior.
Rationale
Direct inspection found only metadata and a non-executable README, with no lifecycle hooks or runtime entrypoints. The README's historical claim is not source evidence of malicious behavior in this version.
Evidence
package.jsonREADME.md

Decision evidence

public snapshot
AI called this Clean at 99.0% confidence as Benign with low false-positive risk.
Evidence for block
    Evidence against
    • `package.json` has no scripts, entrypoints, dependencies, or executable configuration.
    • Only `README.md` and `package.json` exist in the package.
    • `README.md` describes a security holding placeholder; it contains no executable content.
    • No network, file-write, credential, shell, dynamic-code, or AI-agent control-surface behavior was found.
    Behavioral surface
    SourceNo risky source behavior triggered.
    Supply chainNo supply-chain packaging signals triggered.
    Manifest
    NoLicense
    scanned 0 file(s), 0 B of source

    Source & flagged code

    0 flagged
    No flagged code excerpts are attached to this scan.

    Findings

    1 Low
    LowNo License