AI Security Review
scanned 2h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `dist/src/installers/superpowers.js` invokes Claude, Codex, and Gemini plugin/extension installation commands.
- `dist/src/installers/agent-skills.js` clones repositories and invokes an external skills CLI to install agent skills, optionally globally.
- `dist/src/state.js` defaults to multiple AI runtimes and agent-tool installers when the CLI is run.
- `package.json` has only `prepare`; no preinstall/install/postinstall hook mutates agent configuration.
- `dist/bin/agent-toolkit.js` only calls `runInstaller()` after an explicit CLI invocation.
- `dist/src/main.js` shows interactive selection unless a user supplies noninteractive flags.
- `dist/src/installers/agent-skills.js` checks out configured commit hashes and verifies the resulting Git HEAD.
- `dist/src/system.js` implements bounded HTTP fetch/download helpers; no credential collection or exfiltration path was found.
Source & flagged code
6 flagged · loading sourceA single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/src/system.jsView on unpkg · L1This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/src/system.jsView on unpkgPackage ships non-JavaScript build or shell helper files.
setup-agent-toolkit.shView on unpkgHardcoded password in skills/backend/fastify-best-practices/rules/testing.md
skills/backend/fastify-best-practices/rules/testing.mdView on unpkg · L82