registry  /  website-api  /  1.1.19

website-api@1.1.19

CLI and library to query website private APIs with your real logged-in Chrome session

AI Security Review

scanned 8d ago · by lpm-firewall-ai

No confirmed malicious attack surface is established. The package is a CLI/library for querying user-selected website APIs using local Chrome sessions, with dangerous primitives tied to explicit commands and advertised functionality.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source
Trigger
User runs website-api CLI or imports and calls query/run APIs.
Impact
May send authenticated requests to selected sites and write requested output/extension files, but no hidden harvesting or exfiltration was found.
Mechanism
User-invoked website API automation with Chrome cookies and optional extension registry installs
Rationale
Static inspection found sensitive browser-cookie/password and network capabilities, but they are core, documented, user-invoked behavior for site automation and not lifecycle/import-time or covert exfiltration behavior. The scanner secret finding is a public Google web-client API key, and registry code is explicit CLI extension functionality with integrity checks.
Evidence
package.jsondist/bin/cli.jsdist/src/website-api.jsdist/src/core/context.jsdist/src/core/registry.jsdist/src/capabilities/cookies.jsdist/src/sites/voice.google.com/index.jsdist/src/sites/voice.google.com/voice-helpers.jsdist/src/core/loader.jsdist/src/core/runtime.jsdist/src/capabilities/http.jsdist/src/env.jsdist/src/cli/ext.js

Decision evidence

public snapshot
AI called this Clean at 86.0% confidence as Benign with high false-positive risk.
Evidence for block
  • dist/src/capabilities/cookies.js reads decrypted Chrome cookies/passwords for requested site domains.
  • dist/src/core/registry.js can fetch and install user-selected extension site code from registries.
  • dist/src/sites/voice.google.com/index.js can send Google Voice SMS when user invokes send action.
Evidence against
  • package.json has no install/preinstall/postinstall lifecycle hooks.
  • dist/src/website-api.js import only loads local .env and exports APIs; no network on import.
  • dist/bin/cli.js only runs on CLI invocation and routes to selected site adapter.
  • Network calls are adapter-aligned to requested websites, not hidden exfiltration endpoints.
  • Registry install verifies sha256 before writing to user extension dir and requires explicit CLI action.
  • VOICE_API_KEY in dist/src/sites/voice.google.com/voice-helpers.js is documented as public web-client key.
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsEvalFilesystemNetwork
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 39 file(s), 212 KB of source, external domains: api.e-zpassny.com, claude.ai, clients6.google.com, cursor.com, gemini.google.com, mysmartenergy.nj.pseg.com, ollama.com, raw.githubusercontent.com, secure.chase.com, voice.google.com, website-api-list.lgnat.com, www.bloomberg.com, www.e-zpassny.com, www.google.com, www.perplexity.ai, www.zillow.com

Source & flagged code

8 flagged · loading source
dist/src/sites/voice.google.com/voice-helpers.jsView file
12patternName = google_api_key severity = high line = 12 matchedText = export c...llow
High
High Secret

Package contains a high-severity secret pattern.

dist/src/sites/voice.google.com/voice-helpers.jsView on unpkg · L12
12patternName = google_api_key severity = high line = 12 matchedText = export c...llow
High
Secret Pattern

Google API key in dist/src/sites/voice.google.com/voice-helpers.js

dist/src/sites/voice.google.com/voice-helpers.jsView on unpkg · L12
2/** L3: * Google Voice's web app fetches data from a private JSON+protobuf API: L4: * POST https://clients6.google.com/voice/v1/voiceclient/<method>?alt=protojson&key=<API_KEY> L5: * ... L96: "x-javascript-user-agent": "google-api-javascript-client/1.1.0", L97: "x-goog-encode-response-if-executable": "base64", L98: Cookie: cookieHeader,
Low
Weak Crypto

Package source references weak cryptographic algorithms.

dist/src/sites/voice.google.com/voice-helpers.jsView on unpkg · L2
dist/src/core/context.jsView file
matchType = previous_version_dangerous_delta matchedPackage = website-api@1.2.4 matchedIdentity = npm:d2Vic2l0ZS1hcGk:1.2.4 similarity = 0.816 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

dist/src/core/context.jsView on unpkg
134browser, L135: async eval(fn) { L136: const page = await browser();
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/src/core/context.jsView on unpkg · L134
dist/src/core/registry.jsView file
308try { L309: mod = await import(pathToFileURL(filePath).href); L310: }
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/src/core/registry.jsView on unpkg · L308
dist/src/capabilities/login/login-helper.jsView file
154patternName = generic_password severity = medium line = 154 matchedText = console....'`);
Medium
Secret Pattern

Hardcoded password in dist/src/capabilities/login/login-helper.js

dist/src/capabilities/login/login-helper.jsView on unpkg · L154
dist/src/sites/voice.google.com/voice-helpers.d.tsView file
12patternName = google_api_key severity = high line = 12 matchedText = export d...Bg";
High
Secret Pattern

Google API key in dist/src/sites/voice.google.com/voice-helpers.d.ts

dist/src/sites/voice.google.com/voice-helpers.d.tsView on unpkg · L12

Findings

4 High4 Medium6 Low
HighHigh Secretdist/src/sites/voice.google.com/voice-helpers.js
HighPrevious Version Dangerous Deltadist/src/core/context.js
HighSecret Patterndist/src/sites/voice.google.com/voice-helpers.js
HighSecret Patterndist/src/sites/voice.google.com/voice-helpers.d.ts
MediumDynamic Requiredist/src/core/registry.js
MediumNetwork
MediumEnvironment Vars
MediumSecret Patterndist/src/capabilities/login/login-helper.js
LowScripts Present
LowEvaldist/src/core/context.js
LowWeak Cryptodist/src/sites/voice.google.com/voice-helpers.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings