AI Security Review
scanned 1h ago · by lpm-firewall-aiNo confirmed malicious install-time or import-time behavior. The main unresolved risk is a user-invoked CLI command injection path in browser opening plus weakened TLS checks.
Decision evidence
public snapshot- cli/openBrowser.js builds a shell command with unescaped URL/path components and passes it to child_process.exec
- cli/index.js disables TLS certificate validation for the CLI process
- cli/cookieClient.js stores captured cookies in process.cwd()/systemview.cookies.json
- api/Connections.js persists connected service metadata under api/connections.json
- package.json has no preinstall/install/postinstall lifecycle hooks
- bin cli/index.js only runs when user invokes systemview
- Network use is package-aligned: localhost UI and user-supplied SystemLynx service URLs
- No credential harvesting or hardcoded exfiltration endpoint found
- Build bundle loads http://localhost:3000/systemview/api and scanner eval hit appears from bundled app/source-map identifiers, not remote payload execution
Source & flagged code
6 flagged · loading sourceSource downloads or fetches remote code and executes it.
build/static/js/main.e9f9f4f8.jsView on unpkg · L1Package source references dynamic code evaluation.
build/static/js/main.e9f9f4f8.jsView on unpkg · L1Package source references dynamic require/import behavior.
cli/cookieClient.jsView on unpkg · L1This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
cli/index.jsView on unpkgManifest entrypoint contains risky behavior absent from dist/build output.
cli/index.jsView on unpkg · L2