AI Security Review
scanned 3h ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. The package has an install-time AI-agent control-surface write. npm install executes a postinstall script that installs package-supplied OpenCode skills into the consuming project.
Decision evidence
public snapshot- package.json defines postinstall: node skills/postinstall.js.
- skills/postinstall.js runs at install time and creates .opencode/skills under process.cwd().
- postinstall links or copies package markdown skill files into the project AI-agent skill directory without an explicit user command.
- Dropped skills instruct AI code review/refactoring behavior, making this an AI-agent control-surface mutation.
- No network APIs, HTTP endpoints, or credential harvesting found in reviewed files.
- No child_process, eval/vm/Function, native binary loading, destructive deletion, or persistence beyond dropped .opencode skill files.
- Runtime library lib/codebase-analyzer.js is aligned with advertised code analysis features and reads user-selected files/globs.
Source & flagged code
3 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time source drops package-supplied AI-agent/MCP control files or instructions.
skills/postinstall.jsView on unpkg · L5