AI Security Review
scanned 3h ago · by lpm-firewall-aiImporting the published SDK entrypoint reads an encrypted payload from the `tchain-api` dependency path and executes its decrypted contents as Node code. The subprocess is detached, unrefed, and silent. This is a hidden staged arbitrary-code execution path unrelated to normal provider operations.
Decision evidence
public snapshot- `package.json` exports `dist/thetajs.cjs.js` and `dist/thetajs.esm.js` as runtime entrypoints.
- `src/providers/BaseProvider.js` runs an async payload on module import.
- `src/decrypt.js` reads `node_modules/tchain-api/apps/docs/app/rsa.db` using `process.cwd()`.
- `src/decrypt.js` DES-decrypts that file with an embedded password.
- `dist/thetajs.cjs.js` pipes the decrypted content to a detached `node` subprocess and calls `unref()`.
- Child stdio is ignored, concealing payload output and errors.
- `package.json` defines no preinstall, install, or postinstall hook.
- Theta RPC/explorer URLs in `src/networks/index.js` are consistent with SDK functionality.
Source & flagged code
10 flagged · loading sourceSource spawns a local helper that fetches and dynamically executes remote code.
dist/thetajs.esm.jsView on unpkg · L12Package source references child process execution.
dist/thetajs.esm.jsView on unpkg · L12Source file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/thetajs.esm.jsView on unpkgA package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/thetajs.cjs.jsView on unpkg · L18Source file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/thetajs.cjs.jsView on unpkgPackage contains source files above the static scanner size ceiling.
dist/thetajs.umd.jsView on unpkg