AI Security Review
scanned 2h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. Starting `roadmapped dashboard` can silently update from the package's GitHub repository. The background update invokes `roadmapped upgrade`, which modifies first-party AI-agent integration and Git hook configuration in the host repository.
Decision evidence
public snapshot- `bin/roadmapped.mjs` runs `autoUpdate` whenever `roadmapped dashboard` starts.
- `src/lib/updateNotifier.ts` checks `https://github.com/5e1y/roadmapped.git` then backgrounds `npm install github:5e1y/roadmapped && npx roadmapped upgrade`.
- `scripts/install.mjs` upgrade merges `.mcp.json`, `.claude/settings.json`, `CLAUDE.md`, a package skill, and a pre-commit hook.
- The update source is moving GitHub `main`, not a pinned version or commit.
- `package.json` has no `preinstall`, `install`, `postinstall`, or `prepare` hook.
- Mutations originate from explicit CLI/dashboard use and target Roadmapped-owned entries.
- No credential harvesting, data exfiltration, hidden remote payload URL, or destructive wipe was found.
Source & flagged code
6 flagged · loading sourcePackage source references child process execution.
bin/roadmapped.mjsView on unpkg · L20Manifest entrypoint contains risky behavior absent from dist/build output.
bin/roadmapped.mjsView on unpkg · L20Package source references dynamic require/import behavior.
bin/roadmapped.mjsView on unpkg · L20This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
src/lib/updateNotifier.tsView on unpkgPackage source invokes a package manager install command at runtime.
src/lib/updateNotifier.tsView on unpkg · L124