AI Security Review
scanned 2d ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. Install-time lifecycle mutates Claude Code control files by dropping package-supplied agents and commands. This changes AI-agent behavior without a separate explicit runtime invocation.
Decision evidence
public snapshot- package.json runs postinstall: node bin/install.js
- bin/install.js copies templates into project .claude/agents and .claude/commands during install
- bin/install.js supports --global writes to ~/.claude
- templates/agents/*.md grant Bash, Write, WebFetch tools and prescribe npm/npx commands
- Installed agent instructions can later mutate repos and fetch/install packages
- No credential harvesting or exfiltration code found
- No package runtime network calls in bin/install.js
- No eval/vm/Function or child_process use in installer
- README discloses .claude install behavior
Source & flagged code
3 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time source drops package-supplied AI-agent/MCP control files or instructions.
bin/install.jsView on unpkg · L4