AI Security Review
scanned 4h ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. Installation mutates global Claude Code and Codex agent-skill directories. This occurs automatically during npm postinstall, before the user invokes the CLI.
Decision evidence
public snapshot- `package.json` runs `postinstall: node scripts/install-skill.js`.
- `scripts/install-skill.js` unconditionally copies packaged `SKILL.md` to `~/.claude/skills/ttj-skills-browser/SKILL.md`.
- The same postinstall writes a converted skill to `~/.agents/skills/ttj-skills-browser/SKILL.md`.
- Postinstall also creates `~/.ttj-skills-browser-installed` without user invocation.
- Installer does not read credentials or transmit data.
- No obfuscated payload, dynamic code loading, or remote execution was found.
- Runtime network use is package-aligned: npm version lookup and browser launch.
Source & flagged code
3 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgSource gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/utils.jsView on unpkg · L5Install-time source drops package-supplied AI-agent/MCP control files or instructions.
scripts/install-skill.jsView on unpkg · L14