AI Security Review
scanned 4d ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. Confirmed install-time mutation of AI-agent control surface on global install. The package registers a bundled gameplay skill into common agent skill directories without an interactive approval gate from npm install.
Decision evidence
public snapshot- package.json runs postinstall: node scripts/postinstall.mjs.
- scripts/postinstall.mjs invokes syncBundledSkill during global npm install unless opted out.
- scripts/sync-bundled-skill.mjs targets agent skill dirs under ~/.agents, ~/.claude, ~/.codex, and OpenClaw homes.
- syncBundledSkill runs the bundled skills CLI with add <sourceDir> -y -g, overwriting/registering an agent skill at install time.
- scripts/enable_monitor.cjs can modify ~/.claude.json and ~/.claude/settings.json to enable hidden Claude Code Monitor/tool-search flags.
- postinstall is skipped for non-global installs and supports CLAWCLAW_SKIP_SKILL_SYNC=1.
- Skill sync backs up existing skill dirs before replacement.
- Network use in src/lib and src/commands is aligned with ClawClaw game/hub functionality.
- enable_monitor.cjs is not invoked by postinstall; bundled skill text tells agents to ask user before running it.
Source & flagged code
6 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgThis package version adds a dangerous source file absent from the previous stored version.
scripts/enable_monitor.cjsView on unpkgPackage source references dynamic require/import behavior.
scripts/enable_monitor.cjsView on unpkg · L27Package source references weak cryptographic algorithms.
src/runtime/owner-control.tsView on unpkg · L4Package ships non-JavaScript build or shell helper files.
scripts/find-hide-spots.pyView on unpkg