AI tool security proxy: protect any AI tool server with customizable policies, path/command constraints, rate limiting, and audit logging. No code changes required.
LPM treats this as warn-only first-party agent extension lifecycle risk. An explicit setup flow registers command hooks for Claude Code and stores package-owned hook scripts under the user home directory. The guard hook can fetch newer hook source from the vendor API and replace those scripts.
Package contains a critical-looking secret pattern.
dist/tui/index.jsView on unpkg · L2450Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/tui/index.jsView on unpkg · L58Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
dist/tui/index.jsView on unpkg · L58A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/shield.jsView on unpkg · L281Package source references a known benign dynamic code generation pattern.
dist/audit/index.jsView on unpkg · L1395Source combines credential-like environment material and outbound requests; review data flow before blocking.
dist/lib.jsView on unpkg · L42Source writes installer persistence such as shell profile or service configuration.
dist/lib.jsView on unpkg · L42Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
dist/index.jsView on unpkg · L12261Package source invokes a package manager install command at runtime.
dist/index.jsView on unpkg · L13072Source reaches cloud instance metadata or link-local credential endpoints.
hooks/guard.mjsView on unpkg · L13Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/tui/index.jsView on unpkg · L58Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
dist/tui/index.jsView on unpkg · L58Source combines command execution, command-output handling, and outbound requests; review data flow before blocking.
dist/index.jsView on unpkg · L12261Package source invokes a package manager install command at runtime.
dist/index.jsView on unpkg · L13072Source reaches cloud instance metadata or link-local credential endpoints.
hooks/guard.mjsView on unpkg · L13Package contains a critical-looking secret pattern.
dist/tui/index.jsView on unpkg · L2450A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/shield.jsView on unpkg · L281Package source references a known benign dynamic code generation pattern.
dist/audit/index.jsView on unpkg · L1395Source combines credential-like environment material and outbound requests; review data flow before blocking.
dist/lib.jsView on unpkg · L42Source writes installer persistence such as shell profile or service configuration.
dist/lib.jsView on unpkg · L42