AI Security Review
scanned 2h ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. Installation automatically invokes an opaque platform binary with `setup`. Documented setup installs a persistent daemon and marketplace plugins into agent CLIs detected on PATH, including hooks that redirect agent tooling.
Decision evidence
public snapshot- `package.json` registers `postinstall`.
- `postinstall.js` automatically runs `skyline setup` outside CI.
- `bin.js` dispatches setup to a platform binary.
- `README.md` says setup autostarts a daemon and installs agent plugins found on PATH.
- `README.md` says plugin hooks redirect built-in agent tools.
- Wrapper JavaScript contains no credential harvesting or network code.
- No direct file writes, eval, or shell command construction appear in inspected JS.
- The lifecycle hook can be disabled with `SKYLINE_NO_AUTO_SETUP`.
Source & flagged code
3 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource fingerprint signature matches a known malicious package signature; route for source-aware review.
bin.jsView on unpkg