AI Security Review
scanned 13d ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. The package mutates Claude Code's AI-agent control surface during npm postinstall by copying skill instruction files into the user's home directory. This can affect later agent delegation behavior without an explicit runtime invocation of the package binary.
Decision evidence
public snapshot- package.json runs postinstall: node bin/install.mjs
- bin/install.mjs writes package SKILL.md/README/LICENSE/CHANGELOG into ~/.claude/skills/model-effort-router
- bin/install.mjs also writes bundled skills/skill-hardener files into ~/.claude/skills/skill-hardener
- Installed SKILL.md governs Claude Code delegation/model selection and subagent prompts
- No network calls or exfiltration endpoints found
- No child_process, eval, dynamic code loading, persistence daemon, or destructive file operations found
- Install script is best-effort and skips CI or MER_SKIP_POSTINSTALL
- Behavior is aligned with the package's stated Claude skill purpose
Source & flagged code
3 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time source drops package-supplied AI-agent/MCP control files or instructions.
bin/install.mjsView on unpkg · L1