AI Security Review
scanned 1d ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. The package performs install-time setup of its own CELL/PI extension in the user's home directory. This is agent extension lifecycle risk because it installs agent-facing code automatically, but it is package/platform-aligned and no foreign control-surface hijack or exfiltration was confirmed.
Decision evidence
public snapshot- package.json postinstall runs automatically on npm install.
- postinstall creates ~/.cell/agent/extensions and copies .pi/extensions/fivo.ts there.
- postinstall removes existing ~/.cell/extensions/fivo.ts if present.
- .pi/extensions/fivo.ts registers CELL commands, providers, hooks, memory/vault behavior, and writes under ~/.cell.
- .pi/extensions/fivo.ts can call OpenAI embeddings endpoint when OPENAI_API_KEY is configured in its vault.
- Install hook only copies a bundled extension; no install-time network call or remote payload fetch found.
- Install target is ~/.cell, matching package piConfig configDir and CELL branding, not Claude/Codex/Cursor/MCP config.
- No credential exfiltration found; /vault lists masked keys and embedding requests are user-configured runtime behavior.
- dist/cli.js only sets PI_CODING_AGENT and invokes main on CLI execution.
- Dynamic jiti loader in dist/core/extensions/loader.js is local platform extension loading, not lifecycle remote code execution.
Source & flagged code
6 flagged · loading sourceInstall-time lifecycle script matches a deterministic static-gate block pattern.
package.jsonView on unpkgPackage defines install-time lifecycle scripts.
package.jsonView on unpkgPackage source references a known benign dynamic code generation pattern.
examples/extensions/doom-overlay/doom-engine.tsView on unpkg · L64Package source references dynamic require/import behavior.
dist/core/extensions/loader.jsView on unpkg · L52Package ships WebAssembly modules.
examples/extensions/doom-overlay/doom/build/doom.wasmView on unpkgPackage ships non-JavaScript build or shell helper files.
examples/extensions/doom-overlay/doom/build.shView on unpkg