AI Security Review
scanned 2d ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- lib/dist/installer/targets/claude.js writes Claude MCP config to ~/.claude.json or .mcp.json when installer is invoked.
- lib/dist/installer/targets/claude.js can add Claude settings permissions and hooks for specship sync when autoAllow is enabled.
- lib/dist/installer/index.js --yes defaults to local install with autoAllow true and may install git sync hooks when watcher fallback is needed.
- lib/dist/server/cli.js starts a local HTTP/UI server with Claude transcript ingest enabled by default at runtime.
- lib/dist/installer/index.js may run npm install -g @specship/specship from the interactive installer prompt.
- Top-level package.json has no preinstall/install/postinstall lifecycle hooks and no bin/main entry.
- lib/package.json exposes specship as a CLI; risky installer/server paths are user-invoked, not import/install-time.
- Claude config writes are package-aligned MCP/slash-command integration and local is the default scope.
- Git hooks are offered for watcher fallback, marker-delimited, and run specship sync only.
- No source evidence found of credential harvesting, remote payload download, or external exfiltration endpoints in inspected hot paths.
Source & flagged code
8 flagged · loading sourcePackage source references child process execution.
lib/dist/health/smoke-check.jsView on unpkg · L56Package source references a known benign dynamic code generation pattern.
lib/dist/bin/specship.jsView on unpkg · L247Package source references dynamic require/import behavior.
lib/dist/ui/shimmer-worker.jsView on unpkg · L2A single source file combines environment access, network access, and code or shell execution; review context before blocking.
lib/dist/designer/cdp-ensure.jsView on unpkg · L9Package source invokes a package manager install command at runtime.
lib/dist/installer/index.jsView on unpkg · L125Package ships WebAssembly modules.
lib/dist/extraction/wasm/tree-sitter-scala.wasmView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
lib/dist/server/cli.jsView on unpkg