Loading npm security reports…
A persistent sticky-note layer for Claude Code, exposed as an MCP server.
LPM treats this as warn-only first-party agent extension lifecycle risk. This is a Claude Code extension with lifecycle hooks that persist explicitly formatted assistant notes. Its optional network path only posts notes to a user-configured Discord webhook; no concrete malicious chain is established.
This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
src/dashboard.jsView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
src/dashboard.jsView on unpkg