AI Security Review
scanned 9d ago · by lpm-firewall-aiNo confirmed malicious attack surface was found. The risky primitives are aligned with an authenticated Vercel CLI and are activated by user CLI commands, not package install or import.
Decision evidence
public snapshot- package.json has bin entries only and no npm lifecycle install hooks.
- dist/vc.js is a CLI shim that handles --version/--help then imports dist/index.js.
- dist/index.js reads VERCEL_TOKEN/auth config for authenticated CLI use and spawns only its bundled get-latest worker.
- dist/fetch-dist-tags.cjs only queries npm registry dist-tags for update checks.
- dist/commands-bulk.js network calls are Vercel CLI product APIs and telemetry endpoints.
- dist/commands-bulk.js mcp command is explicitly user-invoked and configures Vercel MCP via prompts/deep links, not install-time mutation.
Source & flagged code
10 flagged · loading sourceSource spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
dist/index.jsView on unpkg · L2Source appears to send environment or credential material to an external endpoint.
dist/commands-bulk.jsView on unpkg · L2A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/commands-bulk.jsView on unpkg · L2A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/commands-bulk.jsView on unpkg · L4357Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/commands-bulk.jsView on unpkg · L2Package source references weak cryptographic algorithms.
dist/commands-bulk.jsView on unpkg · L2Package source references dynamic require/import behavior.
dist/get-latest-worker.cjsView on unpkg · L16Package contains source files above the static scanner size ceiling.
dist/chunks/chunk-RB7WQKNC.jsView on unpkg