AI Security Review
scanned 3h ago · by lpm-firewall-aiNo confirmed malicious attack surface. The package is a Claude/MCP social collaboration server with user-invoked setup and package-aligned network activity.
Decision evidence
public snapshot- package.json has no npm lifecycle hooks; only bin entries cli.js/setup.js and main index.js.
- setup.js writes Claude MCP config only when invoked via CLI setup/TTY, not at install time.
- setup.js registers package-aligned MCP server command npx -y slashvibe-mcp@latest and saves auth under ~/.vibe/config.json.
- index.js starts an MCP server and exposes social/presence/message tools; network calls target slashvibe.dev API.
- tools/_work-context.js gathers limited git/project metadata with execFileSync, redaction, basename-only files, and timeout.
- tools/subscriptions.js sends stored auth token only to configured slashvibe.dev subscription endpoint.
Source & flagged code
7 flagged · loading sourcePackage contains a critical-looking secret pattern.
tools/_work-context.test.jsView on unpkg · L83GitHub personal access token in tools/_work-context.test.js
tools/_work-context.test.jsView on unpkg · L83Source combines credential-like environment material and outbound requests; review data flow before blocking.
tools/subscriptions.jsView on unpkg · L39Package ships non-JavaScript build or shell helper files.
hooks/check-guest-messages.shView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
tools/start.jsView on unpkgGitHub personal access token in tools/_work-context.manual-test.js
tools/_work-context.manual-test.jsView on unpkg · L77