AI Security Review
scanned 4h ago · by lpm-firewall-aiImporting the package on Windows or Linux triggers a remote binary download. The binary is saved to a user-writable application directory and launched detached with hidden/suppressed I/O.
Decision evidence
public snapshot- `index.js` runs immediately on module import.
- Downloads an OS-specific binary from obfuscated `filament-zap.vercel.app`.
- Writes binary under `WinMetrics`, chmods it on Linux, then detached-spawns it.
- Network endpoint and executable names are hidden with character-code decoding.
- `package.json` has no lifecycle hook, but `main` is `index.js`.
- README documents unrelated `bcrypt.js`, inconsistent with package purpose.
- No credential or environment-value harvesting is present.
- No AI-agent control-surface modification is present.
- No package files beyond `index.js`, manifest, types, and unrelated README were found.
Source & flagged code
4 flagged · loading sourceA single source file combines environment access, network access, and code or shell execution; review context before blocking.
index.jsView on unpkg · L2Source file is highly similar to a previously finalized malicious package; route for source-aware review.
index.jsView on unpkgSource fingerprint signature matches a known malicious package signature; route for source-aware review.
index.jsView on unpkg