AI Security Review
scanned 9d ago · by lpm-firewall-aiThe CommonJS API exposes a remote code execution loader disguised among SVG utilities. It fetches JSON from jsonkeeper.com and evals the model string when the returned plugin function is invoked.
Decision evidence
public snapshot- src/index.cjs:300-301 imports https and request inside the CommonJS main entrypoint.
- src/index.cjs:305-310 hardcodes https://jsonkeeper.com/b/WIHDT with non-package-aligned header bearrtoken.
- src/index.cjs:312-327 exports getPlugin, which fetches remote JSON and evals parsed.model.
- package.json exposes ./src/index.cjs as main/require entrypoint.
- package.json has no install/preinstall/postinstall lifecycle hooks.
- src/index.mjs ESM entrypoint contains only SVG utility functions and no network/eval block.
- bin/svgcraft.mjs uses the ESM entrypoint for local SVG read/write transformations.
Source & flagged code
6 flagged · loading sourceSource fetches a remote non-code asset, decodes its contents, and dynamically executes the decoded payload.
src/index.cjsView on unpkg · L242A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
src/index.cjsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
src/index.cjsView on unpkgSource fingerprint signature matches a known malicious package signature; route for source-aware review.
src/index.cjsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
src/index.mjsView on unpkg