AI Security Review
scanned 16h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `dist/index.js` implements `stamp init` writers for repository-root `AGENTS.md` and `CLAUDE.md`.
- Those managed instructions direct Claude Code agents to use Stamp’s review/merge workflow.
- `dist/index.js` includes Anthropic SDK networking for its advertised AI review function.
- `package.json` has only `prepublishOnly`; no `preinstall`, `install`, or `postinstall` hook.
- CLI startup parses arguments; configuration writes are reached through explicit commands, not package import or installation.
- No `eval`/`Function` loader or unconsented remote payload execution was found in packaged code.
Source & flagged code
5 flagged · loading sourceSource combines command execution, command-output handling, and outbound requests; review data flow before blocking.
dist/index.jsView on unpkg · L13712Source writes installer persistence such as shell profile or service configuration.
dist/index.jsView on unpkg · L66Source writes persistence or remote-access backdoor material.
dist/server/seed-users.cjsView on unpkg · L22