AI Security Review
scanned 5h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- dist/index.js: init can write AI agent files like AGENTS.md, .claude/CLAUDE.md, .github/hooks/ultracite.json.
- dist/index.js: optional hooks configure agents/editors to run package-manager ultracite fix after file edits.
- dist/index.js: init can install dependencies and skills via nypm/cross-spawn when user selects options.
- package.json has no preinstall/install/postinstall lifecycle scripts.
- dist/index.js exposes commander CLI commands init/check/fix/doctor; config mutation is under explicit CLI init options/prompts.
- dist/index.js write helper refuses paths outside cwd and symlink targets.
- No credential harvesting, exfiltration endpoint, remote payload fetch, or stealth persistence found.
- check/fix run local linters/formatters package-aligned with the tool purpose.
Source & flagged code
3 flagged · loading sourceThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/index.jsView on unpkgPackage source references dynamic require/import behavior.
dist/index.jsView on unpkg · L207Package source references a known benign dynamic code generation pattern.
dist/index.jsView on unpkg · L78