AI Security Review
scanned 3d ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. The package mutates Claude Code's skill/control surface automatically at npm install time. It installs package-supplied agent instructions and scripts into ~/.claude/skills and attempts to execute a copied Python helper during postinstall.
Decision evidence
public snapshot- package.json runs postinstall: node install.js and maps bin to install.js.
- install.js postinstall copies package-controlled skills/hyper-animator into ~/.claude/skills/hyper-animator.
- install.js creates/updates ~/.claude/skills/hyper-animator/.env and chmods copied .sh files.
- install.js invokes child_process execSync to run copied scripts/sync-catalog.py during install.
- SKILL.md is AI-agent control content with operational instructions, git commands, file writes, rendering workflow, and external tool use.
- sync-catalog.py writes cache files under ~/.claude/skills/hyper-animator/references/source-cache and shells out to hyperframes.
- No obfuscated payloads or credential harvesting found in inspected files.
- MiniMax API calls in minimax-gen.py and tts-gen.py are user-invoked helper functions for advertised audio/video generation.
- Network endpoints mostly align with the package's animation/audio-generation purpose.
Source & flagged code
4 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgInstall-time source drops package-supplied AI-agent/MCP control files or instructions.
install.jsView on unpkg · L12Package ships non-JavaScript build or shell helper files.
skills/hyper-animator/scripts/preview-gen.pyView on unpkg