AI Security Review
scanned 3h ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. The package performs AI-agent/MCP configuration mutation from npm postinstall. It can register GraphFlow as an MCP server across multiple IDE/agent clients without an explicit user command when install conditions are met.
Decision evidence
public snapshot- package.json runs postinstall: node scripts/safe-postinstall.cjs
- scripts/safe-postinstall.cjs auto-injects graphflow MCP into existing .cursor/mcp.json or .vscode/mcp.json during local install
- scripts/safe-postinstall.cjs global/explicit postinstall spawns dist/integrations/agent-mcp-installer.js to modify detected agent configs
- dist/integrations/agent-mcp-installer.js writes MCP entries for Cursor, VS Code, Claude Code, Codex, Gemini, Antigravity, Cline, Roo Code, Kilo Code, Windsurf, Zed, Continue
- postinstall copies package-supplied rules/skills into Cursor, Trae, Claude, and workspace .graphflow locations when markers/configs exist
- No credential harvesting or secret exfiltration found in inspected files
- Network use found is package-aligned LLM/provider calls and npx MCP launch configuration
- MCP entry launches @roarpeng/graphflow graphflow-mcp rather than an unrelated remote payload
Source & flagged code
7 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgPackage source references dynamic require/import behavior.
dist/core/dag-checkpoint.jsView on unpkg · L18Install-time source drops package-supplied AI-agent/MCP control files or instructions.
scripts/safe-postinstall.cjsView on unpkg · L1Source file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/config/loader.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/surfaces/cli/runtime/graph.jsView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/integrations/agent-mcp-installer.jsView on unpkg