Intent-Code Divergence
Low
- Confidence
- 93% confidence
- Finding
- The launcher documents and implies a pinned dependency version, but it never verifies that the resolved markdown-ai-rewriter package is actually version 1.2.5 before importing and executing its CLI code. Because the code searches multiple node_modules locations including the current working directory, an attacker or compromised environment could place a different package version or malicious replacement at that path and have it executed in-process, bypassing the stated trust boundary.
