AI Security Review
scanned 3h ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. The package automatically mutates a consuming project's Claude/AI-agent control surface during npm postinstall. This is unconsented lifecycle installation of hooks, commands, agents, rules, and plugin metadata into project .claude paths.
Decision evidence
public snapshot- package.json defines postinstall: node scripts/npm-install.js --auto
- scripts/npm-install.js uses INIT_CWD/process.cwd as TARGET project root
- postinstall copies core/hooks, commands, agents, rules, scripts, gates into TARGET .claude/*
- postinstall also writes .claude-plugin/plugin.json and marketplace.json
- copied .claude-plugin/hooks/hooks.json wires Claude hooks to package shell commands
- No credential harvesting or external exfiltration found in inspected install script
- core/hooks/telemetry-sender.sh writes local .claude/state/telemetry.jsonl only
- scripts/yana-rt-wrapper.js only execFileSyncs explicit/system/package runtime candidates
- No large hidden binary payloads found by size scan
Source & flagged code
25 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgPackage source references child process execution.
core/hooks/gitnexus-hook.jsView on unpkg · L15Package source invokes a package manager install command at runtime.
core/hooks/gitnexus-hook.jsView on unpkg · L127Package source references dynamic require/import behavior.
core/gates/structured-output-validator.jsView on unpkg · L7Install-time source drops package-supplied AI-agent/MCP control files or instructions.
scripts/npm-install.jsView on unpkg · L3Package ships non-JavaScript build or shell helper files.
core/gates/identity-gate.shView on unpkgPackage hides binary, compressed, or executable-looking payloads in test/fixture/hidden paths.
.claude-plugin/hooks/yana-audit-rewake.shView on unpkgHardcoded password in core/agents/test-engineer.md
core/agents/test-engineer.mdView on unpkg · L116Hardcoded password in core/agents/test-engineer.md
core/agents/test-engineer.mdView on unpkg · L155Hardcoded password in core/agents/test-engineer.md
core/agents/test-engineer.mdView on unpkg · L168Hardcoded password in core/agents/test-engineer.md
core/agents/test-engineer.mdView on unpkg · L174Hardcoded password in core/agents/test-engineer.md
core/agents/test-engineer.mdView on unpkg · L175Hardcoded password in core/agents/test-engineer.md
core/agents/test-engineer.mdView on unpkg · L188Hardcoded password in core/commands/api-scaffold.md
core/commands/api-scaffold.mdView on unpkg · L1540Hardcoded password in core/commands/test-harness.md
core/commands/test-harness.mdView on unpkg · L1197Hardcoded password in core/commands/test-harness.md
core/commands/test-harness.mdView on unpkg · L1235Hardcoded password in core/commands/test-harness.md
core/commands/test-harness.mdView on unpkg · L1251Hardcoded password in core/commands/test-harness.md
core/commands/test-harness.mdView on unpkg · L1277Hardcoded password in core/commands/test-harness.md
core/commands/test-harness.mdView on unpkg · L1298Hardcoded password in core/commands/db-migrate.md
core/commands/db-migrate.mdView on unpkg · L1401Hardcoded password in core/commands/db-migrate.md
core/commands/db-migrate.mdView on unpkg · L1411Hardcoded password in core/commands/config-validate.md
core/commands/config-validate.mdView on unpkg · L688Hardcoded password in core/commands/config-validate.md
core/commands/config-validate.mdView on unpkg · L701Hardcoded password in core/commands/config-validate.md
core/commands/config-validate.mdView on unpkg · L715