AI Security Review
scanned 3h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. The package is an explicit Claude Code extension and local Anthropic-compatible proxy. It mutates Claude settings and installs hooks only through user-invoked CLI commands, creating guarded agent-extension lifecycle risk but no confirmed malicious install-time behavior.
Decision evidence
public snapshot- dist/commands/init.js installs a first-party Claude plugin marketplace via explicit `openpowers init`.
- marketplace/hooks/hooks.json registers Claude Code hooks that execute marketplace/scripts/openpowers_hooks.js during tool/prompt events.
- dist/commands/enable.js explicitly writes Claude settings to route Anthropic traffic through local proxy.
- dist/server/claude-settings.js modifies ~/.claude/settings.json and backs it up under ~/.openpowers.
- dist/server/anthropic/handler.js forwards requests to user-configured provider baseUrl and logs last message locally.
- package.json has no preinstall/install/postinstall lifecycle hooks.
- bin/openpowers.js only imports CLI registration and parses user-invoked commands.
- Agent/Claude configuration changes require explicit CLI commands, not package install/import time.
- Proxy targets come from user-configured or bundled provider templates, not a hidden hardcoded exfiltration host.
- No credential harvesting beyond storing user-entered provider API keys for the package's proxy function.
- No destructive file deletion or stealth persistence found.
Source & flagged code
3 flagged · loading sourcedist/commands/init.js installs a first-party Claude plugin marketplace via explicit `openpowers init`.
dist/commands/init.jsView on unpkgmarketplace/hooks/hooks.json registers Claude Code hooks that execute marketplace/scripts/openpowers_hooks.js during tool/prompt events.
marketplace/hooks/hooks.jsonView on unpkgdist/commands/enable.js explicitly writes Claude settings to route Anthropic traffic through local proxy.
dist/commands/enable.jsView on unpkg