AI Security Review
scanned 3h ago · by lpm-firewall-aiNo install-time malware was confirmed, but the user-invoked CLI mutates AI-agent control surfaces by registering a project MCP server and Claude Code hook/settings. This is package-aligned GroundWork setup, yet it creates agent-facing standing capability risk.
Decision evidence
public snapshot- bin/groundwork.js init always writes project .mcp.json registering serena via uvx serena-agent==1.5.3.
- bin/groundwork.js can add serena to .claude/settings.json enabledMcpjsonServers for Claude Code installs.
- bin/groundwork.js seeds a Claude Code PreToolUse hook command pointing to .groundwork/hooks/capture-reminder.js.
- migrations/gw-register-serena-mcp.js and gw-seed-capture-hook.js apply the same agent/MCP mutations during explicit update.
- package.json has no install/postinstall/prepare hook; only prepublishOnly build/check script.
- bin/groundwork.js dispatch requires explicit CLI commands such as init or update before project writes occur.
- src/hooks/capture-reminder.js is advisory, reads hook payload/project state, emits additionalContext, and exits 0 without blocking.
- Network use found is a TTY-only npm registry latest-version check; no credential harvesting or exfiltration found.
- Generator child_process uses are user-invoked scaffolding/bootstrap actions, not import-time execution.
Source & flagged code
7 flagged · loading sourceThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
bin/groundwork.jsView on unpkgManifest entrypoint contains risky behavior absent from dist/build output.
bin/groundwork.jsView on unpkg · L6Package source references shell execution.
src/generators/workspace-dev-cli/cli-src/src/util/proc.tsView on unpkg · L29Package source references dynamic require/import behavior.
migrations/_template/cli-migration.jsView on unpkg · L9Package source invokes a package manager install command at runtime.
dist/src/generators/nextjs-app/generator.jsView on unpkg · L284Package ships WebAssembly modules.
lib/repo-map/grammars/tree-sitter-go.wasmView on unpkg