registry  /  power-claude  /  3.0.62

power-claude@3.0.62

AI Security Review

scanned 13d ago · by lpm-firewall-ai

No confirmed malicious attack surface was established. The package has high-risk functionality because it manages Claude credentials, installs hooks, runs local proxy/CLI code, and ships obfuscated bundles.

Static reason
High-risk behavior combination matched malicious policy.; previous stored version diff introduced dangerous source
Trigger
User runs CLI/extension setup or proxy commands; npm install attempts a missing postinstall script.
Impact
Could alter ~/.power-claude and ~/.claude settings during user-invoked setup; no confirmed unauthorized exfiltration or destructive behavior.
Mechanism
Claude account rotation proxy and hook installer with obfuscated bundled JS
Rationale
Static inspection found dangerous and obfuscated primitives, but they align with the stated Claude account-rotation/proxy product and no concrete unconsented exfiltration, persistence, or install-time AI-agent control hijack was confirmed. The missing postinstall target and obfuscation make the package risky, but not enough for a malicious block on source facts alone.
Evidence
package.jsonbin/power-claude-cli.jsbin/power-claude-proxy.jsbin/power-claude-rotator.jsscripts/lib/first-run-setup.shscripts/lib/migrate.shout/uninstall-hook.js~/.power-claude/~/.claude/settings.json~/.claude/credentials.json
Network endpoints5
api.neural-llm.com/telemetryneural-llm.com/license/validateneural-llm.com/api/v1/power-claude/manifest.jsonapi.anthropic.com127.0.0.1

Decision evidence

public snapshot
AI called this Suspicious at 72.0% confidence as Dangerous Capability with medium false-positive risk.
Evidence for warning
  • bin/*.js are heavily obfuscated bundled executables
  • package.json defines postinstall: bash scripts/release/merge-drivers/register.sh, but that file is absent from package files
  • bin/power-claude-proxy.js handles ~/.claude credentials and proxies Claude/Anthropic traffic
  • scripts/lib/first-run-setup.sh can register Stop hooks in ~/.claude/settings.json
Evidence against
  • No install-time payload source was present; postinstall target is missing rather than readable malicious code
  • Hook registration is package-aligned and performed by first-run/CLI setup, not confirmed during import
  • Network endpoints found are aligned with license/telemetry/update checks and Claude API proxying
  • Scripts primarily copy package files into ~/.power-claude and manage rate-limit/account rotation state
  • No confirmed credential exfiltration to non-product endpoints found in inspected source
Behavioral surface
Source
ChildProcessCryptoDynamicRequireFilesystem
Supply chain
HighEntropyStringsMinifiedObfuscatedUrlStrings
Manifest
NoLicense
scanned 5 file(s), 1.50 MB of source, external domains: neural-llm.com
Oversized source lightweight scan
bin/power-claude-cli.js2.27 MB file, sampled 256 KB
FilesystemCryptoDynamicRequireObfuscatedHighEntropyStringsMinified
out/extension.js4.89 MB file, sampled 256 KB
FilesystemDynamicRequireObfuscatedHighEntropyStringsMinified

Source & flagged code

9 flagged · loading source
package.jsonView file
scripts.postinstall = bash scripts/release/merge-drivers/register.sh
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
scripts.postinstall = bash scripts/release/merge-drivers/register.sh
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg
bin/power-claude-rotator.jsView file
1#!/usr/bin/env node L2: 'use strict';const _0x4a6c15=_0x2994;(function(_0x1b633b,_0x447a27){const _0x11b0de=_0x2994,_0x836b3c=_0x1b633b();while(!![]){try{const _0xea3004=parseInt(_0x11b0de(0xee,'*vsM'))/0...
High
Obfuscated Payload Loader

Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.

bin/power-claude-rotator.jsView on unpkg · L1
1#!/usr/bin/env node L2: 'use strict';const _0x4a6c15=_0x2994;(function(_0x1b633b,_0x447a27){const _0x11b0de=_0x2994,_0x836b3c=_0x1b633b();while(!![]){try{const _0xea3004=parseInt(_0x11b0de(0xee,'*vsM'))/0...
Medium
Dynamic Require

Package source references dynamic require/import behavior.

bin/power-claude-rotator.jsView on unpkg · L1
data/vendor/jq/jq-darwin-amd64View file
path = data/vendor/jq/jq-darwin-amd64 kind = native_binary sizeBytes = 851328 magicHex = [redacted]
Medium
Ships Native Binary

Package ships native binary artifacts.

data/vendor/jq/jq-darwin-amd64View on unpkg
scripts/emergency/uninstall.shView file
path = scripts/emergency/uninstall.sh kind = build_helper sizeBytes = 17101 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

scripts/emergency/uninstall.shView on unpkg
bin/power-claude-cli.jsView file
path = bin/power-claude-cli.js kind = oversized_source_file sizeBytes = 2380970 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

bin/power-claude-cli.jsView on unpkg
path = bin/power-claude-cli.js kind = oversized_cli_entrypoint sizeBytes = 2380970 magicHex = [redacted]
Medium
Oversized Cli Entrypoint

Package contains an oversized executable-looking CLI entrypoint.

bin/power-claude-cli.jsView on unpkg
bin/power-claude-proxy.jsView file
matchType = previous_version_dangerous_delta matchedPackage = power-claude@3.0.53 matchedIdentity = npm:cG93ZXItY2xhdWRl:3.0.53 similarity = 0.600 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

bin/power-claude-proxy.jsView on unpkg

Findings

1 Critical4 High6 Medium5 Low
CriticalPrevious Version Dangerous Deltabin/power-claude-proxy.js
HighInstall Time Lifecycle Scriptspackage.json
HighObfuscated Payload Loaderbin/power-claude-rotator.js
HighObfuscated
HighOversized Source Filebin/power-claude-cli.js
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumDynamic Requirebin/power-claude-rotator.js
MediumShips Native Binarydata/vendor/jq/jq-darwin-amd64
MediumShips Build Helperscripts/emergency/uninstall.sh
MediumOversized Cli Entrypointbin/power-claude-cli.js
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings
LowNo License