AI Security Review
scanned 3h ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. Installing the dependency invokes a postinstall script that mutates AI-agent instruction files in the consumer project. This is an unconsented install-time write to a broad foreign AI-agent control surface.
Decision evidence
public snapshot- `package.json` runs `postinstall` automatically on dependency installation.
- `scripts/postinstall.mjs` identifies a consumer project through `INIT_CWD`/cwd.
- It writes or appends package-authored instructions to the consumer root `CLAUDE.md` or `AGENTS.md`.
- The injected block directs AI agents to follow `node_modules/artefact-design-system/AGENTS.md`.
- The write is silent on failure and needs no explicit user command or consent.
- No network clients, credential harvesting, shell execution, eval, or remote payload loading were found in inspected executable files.
- `dist/index.js` is a React design-system bundle; inspected imports and code are UI-related.
- The postinstall content is a visible marked block and avoids duplicate insertion.
Source & flagged code
4 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time source drops package-supplied AI-agent/MCP control files or instructions.
scripts/postinstall.mjsView on unpkg · L3Manifest entrypoint contains risky behavior absent from dist/build output.
scripts/postinstall.mjsView on unpkg · L25