AI Security Review
scanned 2h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `dist/lib/init.js` copies templates into the current project on explicit CLI invocation.
- `templates/AGENTS.md` and `templates/CLAUDE.md` instruct future agents to run `npx forgeai-agentic-init@latest`.
- `dist/lib/update-check.js` can invoke `npx forgeai-agentic-init@latest --upgrade` only after an interactive choice.
- `templates/.ai/router/run-model.ts` runs user-configured model CLI adapters.
- `package.json` has no preinstall, install, or postinstall hook.
- The entrypoint runs only through the declared `forgeai-init` bin command.
- Writes are bounded to the caller's current project and honor dry-run/overwrite controls.
- No credential harvesting, HTTP client, encoded payload, binary loader, or silent exfiltration was found.
- Update lookup uses `npm view`; upgrade requires an interactive user selection.
Source & flagged code
4 flagged · loading source`dist/lib/init.js` copies templates into the current project on explicit CLI invocation.
dist/lib/init.jsView on unpkg`templates/AGENTS.md` and `templates/CLAUDE.md` instruct future agents to run `npx forgeai-agentic-init@latest`.
templates/AGENTS.mdView on unpkg`dist/lib/update-check.js` can invoke `npx forgeai-agentic-init@latest --upgrade` only after an interactive choice.
dist/lib/update-check.jsView on unpkg`templates/.ai/router/run-model.ts` runs user-configured model CLI adapters.
templates/.ai/router/run-model.tsView on unpkg