Loading npm security reports…
Теневой наблюдатель кодовой базы для OpenCode — автоматическая память, аналитика и предсказание проблем
LPM treats this as warn-only first-party agent extension lifecycle risk. Install-time code creates OpenCode TUI extension configuration and copies a first-party plugin into the user's OpenCode config directory. At plugin runtime, it persistently updates OpenCode's CRUSH.md AI-instruction file with package-directed autonomous tool-use rules. No exfiltration or remote execution is established.
Package defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgPackage defines install-time lifecycle scripts.
package.jsonView on unpkg · L40Install-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkg · L40