Loading npm security reports…
Production-grade SEO, AEO, and GEO agent skill with auditable detection, claim governance, evidence validation, and multi-agent installation.
LPM treats this as warn-only first-party agent extension lifecycle risk. No automatic install-time attack is established. An explicit `citable install` can place the package-owned Citable skill into selected project or global AI-agent skill directories; `self-upgrade` contacts the npm registry only when invoked.
This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
src/commands/selfUpgrade.jsView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
src/commands/selfUpgrade.jsView on unpkg