AI Security Review
scanned 3h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. No confirmed malicious attack surface. The package does provide explicit user-command setup that writes first-party AI agent skills, agents, and hooks into Claude/Codex config surfaces.
Decision evidence
public snapshot- dist/index.js installs Claude/Codex hooks via explicit install/setup commands
- dist/index.js writes .claude/settings.json and .codex/config.toml hook entries
- dist/index.js installs package-owned skills/agents under .claude, .agents, and .codex
- install.sh is user-invoked but runs npm install -g dreamcontext@latest then dreamcontext setup
- package.json has no preinstall/install/postinstall; only prepublishOnly build
- Agent control-surface writes are under explicit CLI commands, not automatic npm install
- Remote APIs are package-aligned: GitHub, ClickUp, Meta, GitHub releases
- ClickUp/GitHub tokens are stored locally in _dream_context/state/.secrets.json and masked in output
- No source evidence of credential exfiltration, remote payload execution, destructive install behavior, or persistence outside declared hooks
Source & flagged code
11 flagged · loading sourcePackage contains a critical-looking secret pattern.
dist/dashboard/assets/subset-shared.chunk-B4Hz462f.jsView on unpkg · L22AWS access key ID in dist/dashboard/assets/subset-shared.chunk-B4Hz462f.js
dist/dashboard/assets/subset-shared.chunk-B4Hz462f.jsView on unpkg · L22Package source references a known benign dynamic code generation pattern.
dist/dashboard/assets/subset-shared.chunk-B4Hz462f.jsView on unpkg · L1Package source references dynamic require/import behavior.
dist/skill-packs/excalidraw/examples/style_board.jsView on unpkg · L2Package source references weak cryptographic algorithms.
dist/skill-packs/excalidraw/scripts/build_excalidraw.jsView on unpkg · L8Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
dist/dashboard/assets/percentages-BXMCSKIN-FEVpi1aK.jsView on unpkg · L108Google API key in dist/dashboard/assets/percentages-BXMCSKIN-FEVpi1aK.js
dist/dashboard/assets/percentages-BXMCSKIN-FEVpi1aK.jsView on unpkg · L2Package ships non-JavaScript build or shell helper files.
dist/skill-packs/video-watching/scripts/transcribe.shView on unpkgPackage ships high-entropy non-source blobs.
dist/dashboard/assets/Assistant-Bold-gm-uSS1B.woff2View on unpkgPackage contains source files above the static scanner size ceiling.
dist/index.jsView on unpkgPackage contains an oversized executable-looking CLI entrypoint.
dist/index.jsView on unpkg