AI Security Review
scanned 3h ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. Installing the package as a dependency mutates foreign AI-agent instruction files in the consuming project. The mutation occurs without an explicit user command and defaults to broad multi-agent coverage.
Decision evidence
public snapshot- `package.json` runs `node postinstall.js` on install.
- `postinstall.js` resolves the consumer project root from `INIT_CWD`/parent paths.
- `postinstall.js` detects Codex, Claude, Cursor, and Antigravity environment signals.
- `postinstall.js` writes project-root `AGENTS.md`, `CLAUDE.md`, and/or `.cursorrules`.
- `postinstall/agent-stubs.js` injects package-controlled instructions directing agents into package docs.
- Default detection target is `all`, so absent agent signals it writes all three control files.
- Postinstall is guarded to installations under `node_modules`.
- The inspected postinstall path has no network, credential harvesting, or shell execution.
Source & flagged code
12 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgA single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/cli/index.jsView on unpkg · L1Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/cli/index.jsView on unpkg · L1Package source invokes a package manager install command at runtime.
dist/cli/index.jsView on unpkg · L1Source file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/cli/index.jsView on unpkgSource fingerprint signature matches a known malicious package signature; route for source-aware review.
dist/cli/index.jsView on unpkgInstall-time source drops package-supplied AI-agent/MCP control files or instructions.
postinstall.jsView on unpkg · L24Package ships non-JavaScript build or shell helper files.
templates/docs/survey-ui/verify-agent-build.shView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/cli/index.mjsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/index.jsView on unpkg