AI Security Review
scanned 3h ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. The package automatically mutates a Claude Code control surface during npm postinstall. It installs package-supplied agent and command files into the installing project .claude directory, with an option for ~/.claude.
Decision evidence
public snapshot- package.json defines postinstall: node bin/install.js
- bin/install.js runs at install time and copies templates into <INIT_CWD|cwd>/.claude
- bin/install.js also supports --global writes into ~/.claude
- templates/commands/*.md create Claude slash commands /ux-audit, /ui-audit, /a11y-audit, /full-audit
- No credential/env harvesting found beyond INIT_CWD target selection
- No fixed exfiltration endpoint or remote payload download found
- scripts only use Playwright/axe against user-supplied --url and write local audit outputs
- README discloses .claude installation behavior
Source & flagged code
3 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time source drops package-supplied AI-agent/MCP control files or instructions.
bin/install.jsView on unpkg · L4