AI Security Review
scanned 3h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. Explicit initialization mutates the host repository’s Claude and MCP integration files. Launching the dashboard may background-update the package from its GitHub repository after a remote-head check. No install-time execution or credential-exfiltration path was found.
Decision evidence
public snapshot- `scripts/install.mjs` invoked by explicit `roadmapped init`/`upgrade` merges a `roadmapped` server into host `.mcp.json`.
- `scripts/install.mjs` writes a Claude `SessionStart` command hook in host `.claude/settings.json` and copies a skill to `.claude/skills/roadmapped`.
- `scripts/install.mjs` appends/updates host `CLAUDE.md` instructions that direct agents to run `npx roadmapped dashboard`.
- `bin/roadmapped.mjs` calls `autoUpdate` on `roadmapped dashboard`; `src/lib/updateNotifier.ts` can detached-spawn `npm install github:5e1y/roadmapped && npx roadmapped upgrade`.
- `scripts/install.mjs` can download a pinned `uv` release, verifies its SHA-256, extracts it, and writes it under the host configuration path.
- `package.json` has no `preinstall`, `install`, or `postinstall` lifecycle hook.
- Agent configuration writes are reached only through explicit `roadmapped init` or `roadmapped upgrade`, not package installation or import.
- The MCP entry targets the package-owned `scripts/mcp-server.mjs`; source inspection found no credential harvesting or exfiltration.
- CLI dynamic imports resolve package-local paths, and dashboard probing/API serve only `localhost`.
Source & flagged code
6 flagged · loading sourcePackage source references child process execution.
bin/roadmapped.mjsView on unpkg · L20Manifest entrypoint contains risky behavior absent from dist/build output.
bin/roadmapped.mjsView on unpkg · L20Package source references dynamic require/import behavior.
bin/roadmapped.mjsView on unpkg · L20Package source invokes a package manager install command at runtime.
src/lib/updateNotifier.tsView on unpkg · L122This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
scripts/install.mjsView on unpkg