AI Security Review
scanned 4h ago · by lpm-firewall-aiAn inert remote-code payload is present in `lib/initializeCaller.js`. Directly loading that file would contact a hidden endpoint and execute its returned JavaScript, but no package entrypoint or lifecycle hook reaches it.
OSV Corroboration
OpenSSF/OSVDecision evidence
public snapshot- `lib/initializeCaller.js` Base64-decodes a remote Vercel API URL.
- It POSTs its local `process.env` object to that endpoint.
- It executes the response with `new Function("require", response.data)`.
- The file self-invokes on direct load and retries network execution.
- `lib/const.js` contains a second Base64-obscured remote URL.
- `package.json` has no preinstall, install, or postinstall hook.
- No package source file imports or requires `lib/initializeCaller.js`.
- No package source file imports or requires `lib/const.js`.
- Declared `main` is missing, so normal package import fails before this payload can run.
Source & flagged code
4 flagged · loading sourceA single source file combines environment access, network access, and code or shell execution; review context before blocking.
lib/initializeCaller.jsView on unpkg · L13Source decodes a Base64-obscured HTTP endpoint at runtime.
lib/initializeCaller.jsView on unpkg · L2