AI Security Review
scanned 13h ago · by lpm-firewall-aiNo confirmed malicious attack surface. The package is a user-invoked monorepo scaffolding CLI with template/app code and no lifecycle execution.
Decision evidence
public snapshot- package.json has no npm lifecycle hooks; only bin startx points to apps/startx-cli/dist/index.mjs.
- Entrypoint is a Commander CLI; actions require user commands such as init/package add/create.
- CLI writes scaffold/template files into a user-selected workspace and prompts before overwriting nonempty targets.
- Only child_process spawn found runs the detected package manager install after an interactive dependency prompt.
- No bidi/invisible Trojan Source controls found in apps/startx-cli/dist/index.mjs; scanner likely matched normal Unicode UI symbols.
- QuickJS/vm/eval uses are source/template AI-tool features, not install-time or import-time execution/exfiltration.
Source & flagged code
6 flagged · loading sourcePackage contains a possible secret pattern.
apps/cli/src/commands/common/hashing.tsView on unpkg · L27Package source references a known benign dynamic code generation pattern.
packages/aix/src/lib/convertor/variable-resolver.tsView on unpkg · L129Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
apps/startx-cli/dist/index.mjsView on unpkg · L177A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
apps/startx-cli/dist/index.mjsView on unpkgPackage source references dynamic require/import behavior.
apps/startx-cli/dist/index.mjsView on unpkg · L61Package source executes code through a VM context API.
packages/aix/src/tools/system/index.tsView on unpkg · L233