AI Security Review
scanned 1d ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. Explicit CLI invocation can install a SpecShip MCP server and hook commands into Claude Code configuration. With `--yes`, it defaults to project-local configuration and enables auto-allow; normal installation prompts first. No npm lifecycle hook activates this behavior during package installation.
Decision evidence
public snapshot- `lib/dist/bin/specship.js` invokes the installer when run with no arguments.
- `lib/dist/installer/index.js` supports noninteractive `--yes`, defaulting to local Claude config and auto-allow.
- `lib/dist/installer/targets/claude.js` writes SpecShip MCP, permissions, and package-owned hooks.
- `lib/dist/hooks/hooks.json` configures `sync --quiet` and `spec-nudge` hook commands.
- `lib/dist/update/run-installer.js` spawns a global npm upgrade only through `specship update`.
- `package.json` has no `preinstall`, `install`, or `postinstall` hook.
- `bin/specship.cmd` only launches the bundled Node runtime and CLI.
- Installer source presents prompts for global install, location, and auto-allow unless `--yes` is supplied.
- Inspected network code is update/Jira functionality; no credential harvesting or exfiltration chain was found.
- No source shows remote payload execution, stealth persistence, or destructive behavior.
Source & flagged code
10 flagged · loading sourcePackage source references child process execution.
lib/dist/update/run-installer.jsView on unpkg · L12Package source references a known benign dynamic code generation pattern.
lib/dist/bin/specship.jsView on unpkg · L250Package source references dynamic require/import behavior.
lib/dist/ui/shimmer-worker.jsView on unpkg · L2A single source file combines environment access, network access, and code or shell execution; review context before blocking.
lib/dist/designer/cdp-ensure.jsView on unpkg · L9This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
lib/dist/installer/index.jsView on unpkgPackage source invokes a package manager install command at runtime.
lib/dist/installer/index.jsView on unpkg · L128Package ships WebAssembly modules.
lib/dist/extraction/wasm/tree-sitter-scala.wasmView on unpkgPackage ships non-JavaScript build or shell helper files.
bin/specship.cmdView on unpkgPackage ships high-entropy non-source blobs.
lib/dist/ui/assets/geist-mono-vietnamese-wght-normal-D8KDMBhC.woff2View on unpkg