AI Security Review
scanned 3h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `dist/cli/claude-context.js` explicitly creates `.claude/` and copies package context files there.
- The agent-context mutation is exposed as the user-invoked `have-github-actions-context` bin in `package.json`.
- `package.json` has no `preinstall`, `install`, or `postinstall` lifecycle hook.
- The context installer only copies bundled `AGENT.md` and `metadata.json`; no remote fetch or shell execution appears there.
- `AGENT.md` contains package build/test guidance, not credential-harvesting or control-bypass instructions.
- Network calls in `dist/src-CezXcNYi.js` are explicit GitHub/AI triage operations using supplied environment credentials.
- No `eval`, dynamic import, child-process execution, native loading, or destructive filesystem behavior was found.
Source & flagged code
2 flagged · loading source`dist/cli/claude-context.js` explicitly creates `.claude/` and copies package context files there.
dist/cli/claude-context.jsView on unpkgThe agent-context mutation is exposed as the user-invoked `have-github-actions-context` bin in `package.json`.
package.jsonView on unpkg