AI Security Review
scanned 15d ago · by lpm-firewall-aiNo confirmed malicious attack surface was established by source inspection. The package has high-risk, obfuscated CLI/proxy code and can mutate Claude/Power Claude user configuration when invoked, but those behaviors align with its advertised function.
Decision evidence
public snapshot- package.json defines postinstall: bash scripts/release/merge-drivers/register.sh, but scripts/release is absent from package.
- bin/power-claude-cli.js, bin/power-claude-proxy.js, and bin/power-claude-rotator.js are heavily obfuscated bundled JS.
- scripts/lib/first-run-setup.sh can copy hooks/libs into ~/.power-claude and register a Stop hook in ~/.claude/settings.json.
- Package ships native jq binaries under data/vendor/jq/.
- package.json documents telemetry and license/update calls to neural-llm endpoints.
- Missing scripts/release/register.sh means the install lifecycle has no readable payload in this package and likely fails rather than mutates state.
- CLI/home-dir writes are package-aligned for a Claude account-rotation VS Code/CLI tool and appear user-invoked via first-run/install flows.
- Network endpoints seen are product/license/telemetry/update or localhost proxy endpoints, not unrelated exfiltration hosts.
- Telemetry description in package.json states sanitization/redaction and no prompt content or credentials.
- No confirmed credential exfiltration or destructive behavior found in inspected source paths.
Source & flagged code
8 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource contains an obfuscator-style string-array loader that reconstructs and executes hidden code.
bin/power-claude-rotator.jsView on unpkg · L1Package source references dynamic require/import behavior.
bin/power-claude-rotator.jsView on unpkg · L1Package ships native binary artifacts.
data/vendor/jq/jq-darwin-amd64View on unpkgPackage ships non-JavaScript build or shell helper files.
scripts/emergency/uninstall.shView on unpkgPackage contains source files above the static scanner size ceiling.
bin/power-claude-cli.jsView on unpkgPackage contains an oversized executable-looking CLI entrypoint.
bin/power-claude-cli.jsView on unpkg