AI Security Review
scanned 2h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. No unconsented install-time attack surface was found. The meaningful risk is an explicit first-party coding-agent skill installation/update path plus user-invoked stack/container management.
Decision evidence
public snapshot- dist/index.js registers explicit `ixora skills install/update` commands that run `npx skills@1.5.13 add <bundled plugin>` for coding agents.
- package.json ships `plugins` and `.claude-plugin`; README documents Claude/Cursor skill installation as package functionality.
- plugins/use-ixora/skills/* contain agent-facing instructions for operating Ixora and building IBM i agents.
- plugins/use-ixora/skills/build-ibmi-agent/scripts/container_ibmi.py can exec `ibmi` inside local stack containers when user invokes it.
- package.json has no preinstall/install/postinstall hook; only `prepublishOnly` build script.
- dist/index.js preAction skips skills/stack management and resolves AgentOS only for runtime commands, not at import/install time.
- Network use is package-aligned: AgentOS client targets configured local/external base URL and stack install pulls `ghcr.io/ibmi-agi/ixora-api`.
- File writes are user-invoked CLI state under `~/.ixora`, paused-run caches, compose/profile files, or explicit skills install/update.
- No credential harvesting or exfiltration beyond storing user-provided IBM i/API keys in Ixora config for stack operation.
- No remote payload execution observed except user-command `npx skills` and docker/compose stack management.
Source & flagged code
3 flagged · loading sourcePackage source references dynamic require/import behavior.
dist/index.jsView on unpkg · L1876Package ships non-JavaScript build or shell helper files.
plugins/use-ixora/skills/build-ibmi-agent/scripts/container_ibmi.pyView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/chunk-YA5LOTNK.jsView on unpkg