Frontal Lobe CLI, Gateway, Codex and Claude Code adapters, skills, and debug UI.
LPM blocks this version under the AI-agent control-surface policy. On noninteractive npm install, the package auto-registers a bundled Codex plugin. It copies hook-capable code into `CODEX_HOME` and mutates the user-wide agent marketplace without an explicit user command.
Package defines install-time lifecycle scripts.
package.jsonView on unpkgPackage source references dynamic require/import behavior.
lib/frontal-gateway/dist/memory-viewer-session-names.jsView on unpkg · L5Package source references weak cryptographic algorithms.
lib/frontal-gateway/dist/ui-observer-store.jsView on unpkg · L1Source writes installer persistence such as shell profile or service configuration.
lib/frontal-codex-adapter/src/macos-loopback-proxy-bypass.mjsView on unpkg · L1A single source file combines environment access, network access, and code or shell execution; review context before blocking.
lib/frontal-codex-adapter/hooks/ensure-backend.mjsView on unpkg · L1Install-time source drops package-supplied AI-agent/MCP control files or instructions.
bin/frontal-codex-plugin-postinstall.mjsView on unpkg · L1Package ships non-JavaScript build or shell helper files.
lib/frontal-codex-adapter/skills/frontal-memory/scripts/collect_all.pyView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
lib/frontal-gateway/dist/child-action-worker.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
lib/frontal-gateway/dist/codex-smoke.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
lib/frontal-gateway/dist/repository-memory-scope.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
lib/frontal-gateway/dist/runtime-client.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
lib/frontal-codex-adapter/src/cli.mjsView on unpkgPackage defines install-time lifecycle scripts.
package.jsonView on unpkg · L53Package source references weak cryptographic algorithms.
lib/frontal-gateway/dist/ui-observer-store.jsView on unpkg · L1Source writes installer persistence such as shell profile or service configuration.
lib/frontal-codex-adapter/src/macos-loopback-proxy-bypass.mjsView on unpkg · L1Install-time source drops package-supplied AI-agent/MCP control files or instructions.
Package ships non-JavaScript build or shell helper files.
lib/frontal-codex-adapter/skills/frontal-memory/scripts/collect_all.pyView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
lib/frontal-gateway/dist/child-action-worker.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
lib/frontal-gateway/dist/codex-smoke.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
lib/frontal-gateway/dist/repository-memory-scope.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
lib/frontal-gateway/dist/runtime-client.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
lib/frontal-codex-adapter/src/cli.mjsView on unpkgPackage source references dynamic require/import behavior.
lib/frontal-gateway/dist/memory-viewer-session-names.jsView on unpkg · L5A single source file combines environment access, network access, and code or shell execution; review context before blocking.
lib/frontal-codex-adapter/hooks/ensure-backend.mjsView on unpkg · L1