AI Security Review
scanned 2h ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. Installing the package triggers a postinstall script without an explicit user command. It creates broad AI-agent integration directories, symlinks package skills into them, and writes agent instruction files.
Decision evidence
public snapshot- `package.json` runs `scripts/install-skills.mjs` as `postinstall`.
- Installer invokes all-platform skill installation automatically.
- Installer symlinks bundled skills into AI-agent home directories including `~/.codex/skills` and `~/.cursor/skills`.
- Installer writes bundled agent Markdown into agent directories including `~/.claude/agents`.
- Postinstall also auto-detects a project and runs `peaks upgrade --to 2.0 --auto`.
- No outbound network API call was found in executable package code.
- Installer skips existing unmanaged targets and supports opt-out environment variables.
- Bundled agent/skill content is package-local rather than remotely fetched.
Source & flagged code
12 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgPackage source references child process execution.
dist/shared/process.jsView on unpkg · L1Package source references shell execution.
dist/services/upgrade/upgrade-service.jsView on unpkg · L182Package source references dynamic require/import behavior.
dist/cli/commands/loop-eval-commands.jsView on unpkg · L478Package source references weak cryptographic algorithms.
dist/services/code/job-shape-decision.jsView on unpkg · L92Install-time source drops package-supplied AI-agent/MCP control files or instructions.
scripts/install-skills.mjsView on unpkg · L1Package source invokes a package manager install command at runtime.
dist/cli/commands/playwright-commands.jsView on unpkg · L27Source file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/cli/commands/playwright-commands.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/services/code-review/ocr-service.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/services/artifacts/artifact-service.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/services/runtime/vendors/codex.jsView on unpkgSource file is highly similar to a previously finalized malicious package; route for source-aware review.
dist/services/runtime/vendors/copilot.jsView on unpkg