AI Security Review
scanned 2h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. Explicit initialization installs project-scoped Claude Code hooks and an OpenCode plugin. These influence AI-agent tool events but are not installed during npm installation.
Decision evidence
public snapshot- `bin/jonggrang.js` runs hook setup only through explicit `jonggrang init`.
- `lib/hooks.js` writes project `.claude/settings.json` hooks and an auto-discovered `.opencode/plugins/jonggrang.js`.
- Generated hooks invoke copied package scripts during AI-agent tool events.
- `bin/jonggrang.js` runs `npm install` only from explicit `jonggrang web`, not package lifecycle.
- `package.json` has no preinstall, install, postinstall, or prepare hook.
- No reviewed hook source contains outbound network or credential-exfiltration logic.
- Hook source primarily blocks sensitive-file and secret-command access.
- Server defaults to `127.0.0.1`; reviewed GitLab requests are a configured product integration.
Source & flagged code
13 flagged · loading sourcePackage contains a critical-looking secret pattern.
client/dist/assets/ProjectSettingsView-fAz79_zI.jsView on unpkg · L1OpenSSH private key in client/dist/assets/ProjectSettingsView-fAz79_zI.js
client/dist/assets/ProjectSettingsView-fAz79_zI.jsView on unpkg · L1Package source references child process execution.
apis/projects/orchestration-run.jsView on unpkg · L16Package source references dynamic require/import behavior.
apis/secrets/index.jsView on unpkg · L2Package source references weak cryptographic algorithms.
lib/bot-reviewer/index.jsView on unpkg · L1Source writes installer persistence such as shell profile or service configuration.
hooks/pi/jonggrang-extension.tsView on unpkg · L17This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
bin/jonggrang.jsView on unpkgPackage source invokes a package manager install command at runtime.
bin/jonggrang.jsView on unpkg · L2886Package ships non-JavaScript build or shell helper files.
hooks/claude/secret-final-check.shView on unpkgPackage ships high-entropy non-source blobs.
client/dist/assets/primeicons-C6QP2o4f.woff2View on unpkgHardcoded password in skills/library/testing/unit-testing-patterns/SKILL.md
skills/library/testing/unit-testing-patterns/SKILL.mdView on unpkg · L17OpenSSH private key in client/dist/assets/SettingsView-feUFpZAq.js
client/dist/assets/SettingsView-feUFpZAq.jsView on unpkg · L164