AI Security Review
scanned 3h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. No malicious install-time or import-time behavior was found. The notable risk is an explicit CLI setup command that installs first-party session hooks for agent tools, documented as opt-in.
Decision evidence
public snapshot- dist/src/commands/setup.js exposes explicit `gitsheets-axi setup hooks` command that calls `installSessionStartHooks` with marker `gitsheets-axi`.
- README.md documents opt-in SessionStart hooks for Claude Code, Codex, and OpenCode.
- dist/src/commands/push.js can run user-invoked `git push`; dist/src/commands/init.js and infer.js run bounded `git show`.
- package.json has no preinstall/install/postinstall lifecycle scripts.
- dist/bin/gitsheets-axi.js only imports cli main; no install-time execution found.
- No fetch/http client or non-registry network endpoint in package code.
- Data mutations are CLI commands scoped to gitsheets repositories/records and explicit user input.
- Only env reference is `GITSHEETS_AXI_NO_STDIN` in dist/src/util/stdin.js.
Source & flagged code
2 flagged · loading sourcedist/src/commands/setup.js exposes explicit `gitsheets-axi setup hooks` command that calls `installSessionStartHooks` with marker `gitsheets-axi`.
dist/src/commands/setup.jsView on unpkgdist/src/commands/push.js can run user-invoked `git push`; dist/src/commands/init.js and infer.js run bounded `git show`.
dist/src/commands/push.jsView on unpkg