AI Security Review
scanned 7d ago · by lpm-firewall-aiNo confirmed malicious attack surface. The package is an AI automation CLI with user-invoked agent execution, scheduling, notifications, updates, and optional Claude/Codex status integrations.
Decision evidence
public snapshot- package.json has no install/postinstall lifecycle hooks; bin points to dist/cli/index.js and main to dist/core/index.js.
- dist/cli/index.js only parses CLI arguments at runtime; no import-time payload or automatic install-time execution found.
- dist/cli/index.js auth runs `claude setup-token` only via explicit `afterburner auth`/prompt and stores locally, with stdout token redaction.
- dist/cli/index.js schedule/statusline writes launchd/systemd/shell/Claude settings only after explicit commands or interactive prompts.
- dist/chunk-K34TPJGR.js notification fetches go to configured ntfy/Telegram endpoints and send run summaries, not arbitrary command output.
- dist/cli/index.js update command runs package-manager update only when user invokes `afterburner update`.
Source & flagged code
7 flagged · loading sourceSource executes local commands and sends command output to an external endpoint.
dist/cli/index.jsView on unpkg · L70A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/cli/index.jsView on unpkg · L70Package source references child process execution.
dist/cli/index.jsView on unpkg · L326A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/cli/index.jsView on unpkg · L3084Package source invokes a package manager install command at runtime.
dist/cli/index.jsView on unpkg · L2943Source writes installer persistence such as shell profile or service configuration.
dist/cli/index.jsView on unpkg · L70