AI Security Review
scanned 2d ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. Confirmed install-time mutation of AI-agent control surfaces. The package postinstall invokes the CLI installer, which copies package-controlled skills into Claude and agent skill directories and overwrites existing same-named skill directories.
Decision evidence
public snapshot- package.json defines postinstall: node ./dist/cli.js install || true
- dist/cli.js install command runs on postinstall and calls installSkills()
- dist/cli.js defaultSkillTargets() resolves to ~/.claude/skills and ~/.agents/skills unless SDLC_SKILLS_HOME is set
- dist/cli.js installSkills() removes each existing target skill directory then copies bundled package skills into agent skill paths
- dist/cli.js also creates ~/.sdlc/config.yaml template during install if absent
- No hardcoded exfiltration endpoint or credential harvesting found
- Network/git operations are tied to explicit CLI workspace commands or user configured remotes
- Global npm self-install is skipped during npm_lifecycle_event=postinstall
- Bundled skill files appear to document sdlc-cli usage/configuration rather than hide payload code
Source & flagged code
3 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time source drops package-supplied AI-agent/MCP control files or instructions.
dist/cli.jsView on unpkg · L1