AI Security Review
scanned 6d ago · by lpm-firewall-aiNo confirmed malicious attack surface is established. The package is an AI/dev workflow CLI with user-invoked setup, credential storage, Bitbucket/GitLab utilities, and build validation commands.
Decision evidence
public snapshot- package.json has no install/preinstall/postinstall hooks; only build/dev scripts and a user-invoked bin.
- dist/cli.js wires explicit CLI subcommands; network and write actions are not import-time.
- dist/setup/setup.js prompts before npm install -g and credential storage under ~/.claude.
- dist/setup/validate.js Bitbucket API calls are validation actions and create/delete test comments/branches.
- dist/clients/bitbucket/origin.js only parses git origin and builds bitbucket.org file URLs.
- No obfuscated payloads, dependency confusion, persistence, or unsolicited exfiltration found in inspected files.
Source & flagged code
5 flagged · loading sourcePackage source references child process execution.
dist/clients/gitlab/mr.jsView on unpkg · L1Package source references dynamic require/import behavior.
dist/setup/validate.jsView on unpkg · L135Package source invokes a package manager install command at runtime.
dist/setup/setup.jsView on unpkg · L51This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/clients/bitbucket/origin.jsView on unpkg