AI Security Review
scanned 2h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `install.js` explicitly writes Claude, Cursor, Copilot, or Codex agent-control files.
- `bin/docs-skills.js` invokes `install.js` only for the explicit `install` command.
- `skills/automation/docs-sync/SKILL.md` instructs an agent to offer a pre-push hook.
- `package.json` has no preinstall, install, postinstall, prepare, or prepublish lifecycle hook.
- No credential/env harvesting, exfiltration, eval, native loading, or covert network endpoint was found.
- `scripts/crawl-site.js` performs GET requests only for a user-supplied crawl URL.
- `scripts/sync-skills.js` publishes only when a maintainer explicitly runs `sync:apply`.
Source & flagged code
3 flagged · loading sourceSource mutates package metadata and republishes itself to npm.
scripts/sync-skills.jsView on unpkg · L8Package source references child process execution.
scripts/sync-skills.jsView on unpkg · L26Package source references dynamic require/import behavior.
bin/docs-skills.jsView on unpkg · L1