AI Security Review
scanned 3d ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. The package mutates Claude Code's AI-agent skill directory automatically during npm postinstall. It installs package-supplied agent instructions and then executes a bundled Python sync script, creating an unconsented agent control-surface change at install time.
Decision evidence
public snapshot- package.json defines postinstall: node install.js and bin points to install.js
- install.js postinstall copies package files into ~/.claude/skills/hyper-animator
- install.js creates/updates ~/.claude/skills/hyper-animator/.env with MiniMax key fields
- install.js runs child_process execSync: python3 .../scripts/sync-catalog.py --workers 4 during install
- sync-catalog.py invokes hyperframes add and writes cached HTML under ~/.claude/skills/hyper-animator/references/source-cache
- SKILL.md is an AI-agent skill instruction file with command-running workflow guidance
- No credential harvesting or exfiltration code found in install.js
- MiniMax API use in minimax-gen.py and tts-gen.py appears user-invoked for audio generation
- No obfuscation, native binary loading, persistence daemon, or destructive install-time deletion found
- Network/API hosts are aligned with advertised animation/audio functionality
Source & flagged code
4 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time source drops package-supplied AI-agent/MCP control files or instructions.
install.jsView on unpkg · L12Package ships non-JavaScript build or shell helper files.
skills/hyper-animator/scripts/preview-gen.pyView on unpkg