AI Security Review
scanned 4d ago · by lpm-firewall-aiNo confirmed malicious attack surface was found. Risky primitives are developer CLI features activated by explicit commands, not install-time or import-time compromise.
Decision evidence
public snapshot- package.json has no npm lifecycle install hooks; bin only delegates to dist/index.js via node.
- bin/smrt.js spawnSync executes the package CLI entry with inherited argv, not a hidden payload.
- dist/index.js lazy-loads command modules and imports project .smrt/register.js or entrypoints only during CLI execution.
- dist/commands-gnJG0EIL.js docs:claude writes .claude/smrt-framework.md only when user invokes that command; no install-time agent mutation.
- dist/commands-gnJG0EIL.js network access is template download from user-supplied GitHub/GitLab/Bitbucket URLs with HTTPS redirect validation.
- dist/commands-gnJG0EIL.js shell/package-manager usage is tied to explicit git, gnode, playground, test, or migration commands.
Source & flagged code
5 flagged · loading sourceThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/commands-gnJG0EIL.jsView on unpkgPackage source invokes a package manager install command at runtime.
dist/commands-gnJG0EIL.jsView on unpkg · L3648Package source references dynamic require/import behavior.
dist/commands-gnJG0EIL.jsView on unpkg · L121