AI Security Review
scanned 5d ago · by lpm-firewall-aiNo confirmed malicious attack surface was established. The risky primitives are a user-invoked Claude Code integration installer and bundled CLI/runtime, consistent with the package purpose rather than install-time compromise.
Decision evidence
public snapshot- lib/dist/installer/targets/claude.js writes Claude Code MCP config, settings hooks, slash commands, and agent files when `specship install` runs.
- lib/dist/installer/index.js can run `npm install -g @specship/specship`, but only after an interactive prompt, skipped with `--yes`.
- Package ships a large native `node` ELF used by bin/specship wrapper.
- package.json has no lifecycle scripts, main, exports, or bin; install/import does not auto-run package code.
- bin/specship explicitly runs bundled node with lib/dist/bin/specship.js only when user invokes CLI.
- Dynamic eval in lib/dist/installer/index.js is an ESM import helper for @clack/prompts, not payload execution.
- Claude config mutation is package-aligned, user-invoked installer behavior with local/global prompts and uninstall cleanup.
- MCP permissions and hooks run `specship` commands, not arbitrary downloaded code or credential harvesting.
- No source-grounded credential/env harvesting, exfiltration endpoint, persistence outside declared Claude integration, or destructive behavior found.
Source & flagged code
9 flagged · loading sourcePackage source references child process execution.
lib/dist/health/smoke-check.jsView on unpkg · L56Package source references dynamic require/import behavior.
lib/dist/ui/shimmer-worker.jsView on unpkg · L2A single source file combines environment access, network access, and code or shell execution; review context before blocking.
lib/dist/designer/cdp-ensure.jsView on unpkg · L9Package source invokes a package manager install command at runtime.
lib/dist/installer/index.jsView on unpkg · L123Package ships WebAssembly modules.
lib/dist/extraction/wasm/tree-sitter-scala.wasmView on unpkgPackage contains source files above the static scanner size ceiling.
lib/dist/web/chunk-JTFXTIPE.jsView on unpkgThis package version adds a dangerous source file absent from the previous stored version.
lib/dist/installer/targets/claude.jsView on unpkg