registry  /  youmindag  /  2.2.1

youmindag@2.2.1

🧠 Inyecta inteligencia de contexto a cualquier proyecto. Una línea y tu AI coding tool entiende toda la arquitectura.

AI Security Review

scanned 2d ago · by lpm-firewall-ai

Review flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source
Trigger
User runs `npx youmindag` or `youmindag dev --wrap` in a project.
Impact
Modifies project configuration and future dev-command execution; no confirmed data exfiltration or install-time execution.
Mechanism
Explicit project-local AI-agent setup, runtime dependency installation, and dev-script wrapping.
Rationale
Inspection confirms explicit user-triggered AI-agent configuration mutation and runtime package installation. No lifecycle hook, remote payload, exfiltration path, or unconsented install-time control-surface mutation was found, so blocking is not warranted.
Evidence
package.jsonbin/run.mjstemplate/AGENTS.mdtemplate/.opencode/plugins/context-loader.jstemplate/.opencode/opencode.jsontemplate/scripts/ym-dev.mjsAGENTS.mdAGENTS.md.bak.opencode/scripts/.youmindag/.youmindag.json.graphify/graphify-visual/.gitignorenode_modules/@sentropic/graphify/package.json

Decision evidence

public snapshot
AI called this Suspicious at 90.0% confidence as Dangerous Capability with low false-positive risk.
Evidence for warning
  • `bin/run.mjs` explicitly copies `template/.opencode` into the target project and replaces `AGENTS.md`.
  • `bin/run.mjs` runs `npm install @sentropic/graphify` and invokes `npx graphify` after CLI execution.
  • `bin/run.mjs` supports `dev --wrap`, changing the target `package.json` dev script to `scripts/ym-dev.mjs`.
  • `template/scripts/ym-dev.mjs` executes the saved original dev command and logs its output locally.
Evidence against
  • `package.json` contains no npm lifecycle hooks.
  • No inspected source uses HTTP clients, sockets, webhooks, or hard-coded exfiltration endpoints.
  • Mutations occur only after explicit CLI/subcommand use; install paths honor `--dry-run`.
  • No remote payload loading, `eval`, credential harvesting, or stealth persistence was found.
Behavioral surface
Source
ChildProcessEnvironmentVarsFilesystemShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 11 file(s), 130 KB of source, external domains: xxx.supabase.co

Source & flagged code

3 flagged · loading source
bin/run.mjsView file
•matchType = previous_version_dangerous_delta matchedPackage = youmindag@2.2.0 matchedIdentity = npm:eW91bWluZGFn:2.2.0 similarity = 0.909 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

bin/run.mjsView on unpkg
8import { fileURLToPath } from 'url' L9: import { execSync } from 'child_process' L10: import { spawn } from 'child_process'
High
Child Process

Package source references child process execution.

bin/run.mjsView on unpkg · L8
2// YouMindAG — Inyecta inteligencia de contexto a cualquier proyecto. L3: // Uso: npx youmindag L4: // Ejecutar DENTRO del directorio del proyecto destino. ... L8: import { fileURLToPath } from 'url' L9: import { execSync } from 'child_process' L10: import { spawn } from 'child_process'
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

bin/run.mjsView on unpkg · L2

Findings

1 Critical3 High2 Medium3 Low
CriticalPrevious Version Dangerous Deltabin/run.mjs
HighChild Processbin/run.mjs
HighShell
HighRuntime Package Installbin/run.mjs
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings