agent-security-scanner-mcp 4.0.0 → 4.0.1

package/README.md

@@ -2,20 +2,18 @@
 
 <img src="./prooflayer-logo.png" alt="ProofLayer Logo" width="400"/>
 
-# prooflayer-agent-security
+# agent-security-scanner-mcp
 
 **Security scanner for AI coding agents and autonomous assistants**
 
 Scans code for vulnerabilities, detects hallucinated packages, blocks prompt injection, and provides LLM-powered semantic code review — via MCP (Claude Code, Cursor, Windsurf, Cline) or CLI (OpenClaw, CI/CD).
 
-[![npm downloads](https://img.shields.io/npm/dt/prooflayer-agent-security.svg)](https://www.npmjs.com/package/prooflayer-agent-security)
-[![npm version](https://img.shields.io/npm/v/prooflayer-agent-security.svg)](https://www.npmjs.com/package/prooflayer-agent-security)
+[![npm downloads](https://img.shields.io/npm/dt/agent-security-scanner-mcp.svg)](https://www.npmjs.com/package/agent-security-scanner-mcp)
+[![npm version](https://img.shields.io/npm/v/agent-security-scanner-mcp.svg)](https://www.npmjs.com/package/agent-security-scanner-mcp)
 [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
 [![Benchmark: 97.7% precision](https://img.shields.io/badge/precision-97.7%25-brightgreen.svg)](benchmarks/RESULTS.md)
 [![CI](https://github.com/sinewaveai/agent-security-scanner-mcp/actions/workflows/test.yml/badge.svg)](https://github.com/sinewaveai/agent-security-scanner-mcp/actions/workflows/test.yml)
 
-> **Package renamed:** Previously `agent-security-scanner-mcp`. The old name still works for backwards compatibility.
-
 </div>
 
 ---
@@ -47,10 +45,10 @@ npm install -g @prooflayer/security-scanner
 ### 🔬 Full Version (Advanced)
 **Enterprise-grade scanner** with AST analysis, taint tracking, cross-file analysis, and LLM-powered semantic review
 
-[![npm](https://img.shields.io/npm/v/prooflayer-agent-security.svg)](https://www.npmjs.com/package/prooflayer-agent-security)
+[![npm](https://img.shields.io/npm/v/agent-security-scanner-mcp.svg)](https://www.npmjs.com/package/agent-security-scanner-mcp)
 
 ```bash
-npm install -g prooflayer-agent-security
+npm install -g agent-security-scanner-mcp
 ```
 
 - 🧬 **AST + Taint Analysis** - deep code understanding
@@ -65,6 +63,8 @@ Continue reading below for full version documentation →
 
 ---
 
+> **New in v4.0.0:** LLM-powered semantic code review agent with intent profiling — understands what your project is supposed to do and flags patterns that violate that intent. Same `eval()` call = safe in a build tool, dangerous in an e-commerce app. Supports Claude CLI (no API key needed!), Anthropic, and OpenAI. [See code-review-agent](#-llm-powered-code-review-agent-new-in-v400).
+>
 > **New in v3.11.0:** ClawHub ecosystem security scanning — scanned all 16,532 ClawHub skills and found 46% have critical vulnerabilities. New `scan-clawhub` CLI for batch scanning, 40+ prompt injection patterns, jailbreak detection (DAN mode, dev mode), data exfiltration checks. [See ClawHub Security Dashboard](https://www.proof-layer.com/dashboard).
 >
 > **Also in v3.10.0:** ClawProof OpenClaw plugin — 6-layer deep skill scanner (`scan_skill`) with ClawHavoc malware signatures (27 rules, 121 patterns covering reverse shells, crypto miners, info stealers, C2 beacons, and OpenClaw-specific attacks), package supply chain verification, and rug pull detection.
@@ -91,14 +91,12 @@ Continue reading below for full version documentation →
 ## Quick Start
 
 ```bash
-npx prooflayer-agent-security init claude-code
+npx agent-security-scanner-mcp init claude-code
 ```
 
 Restart your client after running init. That's it — the scanner is active.
 
 > **Other clients:** Replace `claude-code` with `cursor`, `claude-desktop`, `windsurf`, `cline`, `kilo-code`, `opencode`, or `cody`. Run with no argument for interactive client selection.
->
-> **Note:** `npx agent-security-scanner-mcp` still works for backwards compatibility.
 
 ## Recommended Workflows
 
@@ -189,19 +187,20 @@ Same code, different verdicts based on what the project is supposed to do:
 
 ### Quick Start
 
+After installing `agent-security-scanner-mcp`, the `cr-agent` CLI is automatically available:
+
 ```bash
-cd code-review-agent
-npm install
-npm run build
+# Install the package (cr-agent is included)
+npm install -g agent-security-scanner-mcp
 
 # Analyze a project (no API key needed with claude-cli!)
-npx tsx bin/cr-agent.ts analyze ../path/to/project -p claude-cli -v
+npx cr-agent analyze ./path/to/project -p claude-cli --verbose
 
 # View intent profile only
-npx tsx bin/cr-agent.ts intent ../path/to/project -p claude-cli
+npx cr-agent intent ./path/to/project -p claude-cli
 
 # Output as SARIF for GitHub Code Scanning
-npx tsx bin/cr-agent.ts analyze ../path/to/project -f sarif
+npx cr-agent analyze ./path/to/project -f sarif -p claude-cli
 ```
 
 ### LLM Providers
@@ -843,17 +842,15 @@ Scan an entire project or directory for security vulnerabilities with aggregated
 ### Install
 
 ```bash
-npm install -g prooflayer-agent-security
+npm install -g agent-security-scanner-mcp
 ```
 
 Or use directly with `npx` — no install required:
 
 ```bash
-npx prooflayer-agent-security
+npx agent-security-scanner-mcp
 ```
 
-> **Backwards compatibility:** The old package name `agent-security-scanner-mcp` continues to work.
-
 ### Prerequisites
 
 - **Node.js >= 18.0.0** (required)
@@ -865,16 +862,16 @@ npx prooflayer-agent-security
 
 | Client | Command |
 |--------|---------|
-| Claude Code | `npx prooflayer-agent-security init claude-code` |
-| Claude Desktop | `npx prooflayer-agent-security init claude-desktop` |
-| Cursor | `npx prooflayer-agent-security init cursor` |
-| Windsurf | `npx prooflayer-agent-security init windsurf` |
-| Cline | `npx prooflayer-agent-security init cline` |
-| Kilo Code | `npx prooflayer-agent-security init kilo-code` |
-| OpenCode | `npx prooflayer-agent-security init opencode` |
-| Cody | `npx prooflayer-agent-security init cody` |
-| **OpenClaw** | `npx prooflayer-agent-security init openclaw` |
-| Interactive | `npx prooflayer-agent-security init` |
+| Claude Code | `npx agent-security-scanner-mcp init claude-code` |
+| Claude Desktop | `npx agent-security-scanner-mcp init claude-desktop` |
+| Cursor | `npx agent-security-scanner-mcp init cursor` |
+| Windsurf | `npx agent-security-scanner-mcp init windsurf` |
+| Cline | `npx agent-security-scanner-mcp init cline` |
+| Kilo Code | `npx agent-security-scanner-mcp init kilo-code` |
+| OpenCode | `npx agent-security-scanner-mcp init opencode` |
+| Cody | `npx agent-security-scanner-mcp init cody` |
+| **OpenClaw** | `npx agent-security-scanner-mcp init openclaw` |
+| Interactive | `npx agent-security-scanner-mcp init` |
 
 The `init` command auto-detects your OS, locates the config file, creates a backup, and adds the MCP server entry. **Restart your client after running init.**
 
@@ -896,7 +893,7 @@ Add to your MCP client config:
   "mcpServers": {
     "security-scanner": {
       "command": "npx",
-      "args": ["-y", "prooflayer-agent-security"]
+      "args": ["-y", "agent-security-scanner-mcp"]
     }
   }
 }
@@ -913,8 +910,8 @@ Add to your MCP client config:
 ### Diagnostics
 
 ```bash
-npx prooflayer-agent-security doctor        # Check setup health
-npx prooflayer-agent-security doctor --fix  # Auto-fix trivial issues
+npx agent-security-scanner-mcp doctor        # Check setup health
+npx agent-security-scanner-mcp doctor --fix  # Auto-fix trivial issues
 ```
 
 Checks Node.js version, Python availability, analyzer engine status, and scans all client configs.
@@ -924,7 +921,7 @@ Checks Node.js version, Python availability, analyzer engine status, and scans a
 ## Try It Out
 
 ```bash
-npx prooflayer-agent-security demo --lang js
+npx agent-security-scanner-mcp demo --lang js
 ```
 
 Creates a small file with 3 intentional vulnerabilities, runs the scanner, shows findings with CWE/OWASP references, and asks if you want to keep the file for testing.
@@ -939,28 +936,28 @@ Use the scanner directly from command line (for scripts, CI/CD, or OpenClaw):
 
 ```bash
 # Scan a prompt for injection attacks
-npx prooflayer-agent-security scan-prompt "ignore previous instructions"
+npx agent-security-scanner-mcp scan-prompt "ignore previous instructions"
 
 # Scan a file for vulnerabilities
-npx prooflayer-agent-security scan-security ./app.py --verbosity minimal
+npx agent-security-scanner-mcp scan-security ./app.py --verbosity minimal
 
 # Scan git diff (changed files only)
-npx prooflayer-agent-security scan-diff --base main --target HEAD
+npx agent-security-scanner-mcp scan-diff --base main --target HEAD
 
 # Scan entire project with grading
-npx prooflayer-agent-security scan-project ./src
+npx agent-security-scanner-mcp scan-project ./src
 
 # Check if a package is legitimate
-npx prooflayer-agent-security check-package flask pypi
+npx agent-security-scanner-mcp check-package flask pypi
 
 # Scan file imports for hallucinated packages
-npx prooflayer-agent-security scan-packages ./requirements.txt pypi
+npx agent-security-scanner-mcp scan-packages ./requirements.txt pypi
 
 # Install Claude Code hooks for automatic scanning
-npx prooflayer-agent-security init-hooks
+npx agent-security-scanner-mcp init-hooks
 
 # LLM-powered semantic code review (new in v4.0.0)
-cd code-review-agent && npx tsx bin/cr-agent.ts analyze ../path/to/project -p claude-cli
+npx cr-agent analyze ./path/to/project -p claude-cli --verbose
 ```
 
 **Exit codes:** `0` = safe, `1` = issues found. Use in scripts to block risky operations.
@@ -1016,7 +1013,7 @@ Automatically scan files after every edit with Claude Code hooks integration.
 ### Install Hooks
 
 ```bash
-npx prooflayer-agent-security init-hooks
+npx agent-security-scanner-mcp init-hooks
 ```
 
 This installs a `post-tool-use` hook that triggers security scanning after `Write`, `Edit`, or `MultiEdit` operations.
@@ -1024,7 +1021,7 @@ This installs a `post-tool-use` hook that triggers security scanning after `Writ
 ### With Prompt Guard
 
 ```bash
-npx prooflayer-agent-security init-hooks --with-prompt-guard
+npx agent-security-scanner-mcp init-hooks --with-prompt-guard
 ```
 
 Adds a `PreToolUse` hook that scans prompts for injection attacks before executing tools.
@@ -1039,7 +1036,7 @@ The command adds hooks to `~/.claude/settings.json`:
     "post-tool-use": [
       {
         "matcher": "Write|Edit|MultiEdit",
-        "command": "npx prooflayer-agent-security scan-security \"$TOOL_INPUT_file_path\" --verbosity minimal"
+        "command": "npx agent-security-scanner-mcp scan-security \"$TOOL_INPUT_file_path\" --verbosity minimal"
       }
     ]
   }
@@ -1061,7 +1058,7 @@ The command adds hooks to `~/.claude/settings.json`:
 ### Install
 
 ```bash
-npx prooflayer-agent-security init openclaw
+npx agent-security-scanner-mcp init openclaw
 ```
 
 This installs a skill to `~/.openclaw/workspace/skills/security-scanner/`.
@@ -1160,7 +1157,7 @@ AI coding agents introduce attack surfaces that traditional security tools weren
 | Property | Value |
 |----------|-------|
 | **Transport** | stdio |
-| **Package** | `prooflayer-agent-security` (npm) |
+| **Package** | `agent-security-scanner-mcp` (npm) |
 | **Tools** | 12 |
 | **Languages** | 12 |
 | **Ecosystems** | 7 |
@@ -1243,11 +1240,10 @@ All MCP tools support a `verbosity` parameter to minimize context window consump
 
 ## Changelog
 
-### v4.0.0 (2026-03-20) - LLM-Powered Code Review & Rename
+### v4.0.0 (2026-03-21) - LLM-Powered Code Review Agent
 
-**🚀 Major Release: Package renamed to `prooflayer-agent-security`**
+**🚀 Major Release: LLM-Powered Semantic Code Review**
 
-- **Package Rename:** `agent-security-scanner-mcp` → `prooflayer-agent-security` (old name still works for backwards compatibility)
 - **LLM-Powered Code Review Agent:** New `code-review-agent/` module for semantic security analysis
   - **Intent Profiling:** Understands project purpose to reduce false positives
   - **3 LLM Providers:** Anthropic, OpenAI, Claude CLI (no API key needed!)
@@ -1367,20 +1363,13 @@ All MCP tools support a `verbosity` parameter to minimize context window consump
 ### Default Package
 
 ```bash
-npm install -g prooflayer-agent-security
+npm install -g agent-security-scanner-mcp
 ```
 
 Includes:
 - **All 7 ecosystems** — npm, PyPI, RubyGems, crates.io, pub.dev, CPAN, raku.land (4.3M+ packages total)
 - **LLM-powered code review agent** — semantic security analysis with intent profiling
 
-### Legacy Package Name
-
-The old package name continues to work for backwards compatibility:
-
-```bash
-npm install -g agent-security-scanner-mcp
-```
 
 ---
 

package/code-review-agent/TODO.md

@@ -134,7 +134,7 @@ Stop analysis when estimated cost reaches a configurable threshold (e.g., `--max
 
 ### MCP server integration
 
-Expose cr-agent as an MCP tool in the parent prooflayer-agent-security server, so AI coding assistants can invoke semantic code review alongside the existing rules-based scanner.
+Expose cr-agent as an MCP tool in the parent agent-security-scanner-mcp server, so AI coding assistants can invoke semantic code review alongside the existing rules-based scanner.
 
 ### SARIF upload
 

package/code-review-agent/dist/bin/cr-agent.js

@@ -251,7 +251,7 @@ function toSarif(result) {
                     driver: {
                         name: 'cr-agent',
                         version: '0.1.0',
-                        informationUri: 'https://github.com/anthropics/agent-security-scanner-mcp',
+                        informationUri: 'https://github.com/sinewaveai/agent-security-scanner-mcp',
                         rules: result.findings.map((f, i) => ({
                             id: `CR${String(i + 1).padStart(3, '0')}`,
                             name: f.title.replace(/\s+/g, ''),

package/code-review-agent/dist/src/llm/claude-cli.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"claude-cli.d.ts","sourceRoot":"","sources":["../../../src/llm/claude-cli.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAC7B,OAAO,EAAE,KAAK,WAAW,EAAE,KAAK,WAAW,EAAyB,MAAM,eAAe,CAAC;AAe1F,qBAAa,iBAAkB,YAAW,WAAW;IACnD,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,YAAY,gBAAgB;gBAEzB,KAAK,CAAC,EAAE,MAAM;IAIpB,IAAI,CAAC,QAAQ,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAK9C,cAAc,CAAC,CAAC,EACpB,QAAQ,EAAE,WAAW,EAAE,EACvB,MAAM,EAAE,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,EACpB,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC,CAAC,CAAC;IAoDb,WAAW,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM;IAKjC,OAAO,CAAC,cAAc;IAgBtB,OAAO,CAAC,SAAS;CAyDlB"}
+{"version":3,"file":"claude-cli.d.ts","sourceRoot":"","sources":["../../../src/llm/claude-cli.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAC7B,OAAO,EAAE,KAAK,WAAW,EAAE,KAAK,WAAW,EAAyB,MAAM,eAAe,CAAC;AAe1F,qBAAa,iBAAkB,YAAW,WAAW;IACnD,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,YAAY,gBAAgB;gBAEzB,KAAK,CAAC,EAAE,MAAM;IAIpB,IAAI,CAAC,QAAQ,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAK9C,cAAc,CAAC,CAAC,EACpB,QAAQ,EAAE,WAAW,EAAE,EACvB,MAAM,EAAE,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,EACpB,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC,CAAC,CAAC;IAoDb,WAAW,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM;IAKjC,OAAO,CAAC,cAAc;IAgBtB,OAAO,CAAC,SAAS;CAwDlB"}

package/code-review-agent/dist/src/llm/claude-cli.js

@@ -72,10 +72,9 @@ export class ClaudeCliProvider {
     runClaude(prompt) {
         return new Promise((resolve, reject) => {
             const args = [
-                '-p', '-',
+                '-p',
                 '--output-format', 'json',
                 '--model', this.modelId,
-                '--no-session-persistence',
             ];
             const child = spawn('claude', args, {
                 stdio: ['pipe', 'pipe', 'pipe'],

package/code-review-agent/dist/src/llm/claude-cli.js.map

@@ -1 +1 @@
-{"version":3,"file":"claude-cli.js","sourceRoot":"","sources":["../../../src/llm/claude-cli.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,oBAAoB,CAAC;AAE3C,OAAO,EAAsC,qBAAqB,EAAE,MAAM,eAAe,CAAC;AAC1F,OAAO,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAE/C,MAAM,WAAW,GAAG,CAAC,CAAC;AAYtB,MAAM,OAAO,iBAAiB;IACnB,OAAO,CAAS;IAChB,YAAY,GAAG,YAAY,CAAC;IAErC,YAAY,KAAc;QACxB,IAAI,CAAC,OAAO,GAAG,KAAK,IAAI,QAAQ,CAAC;IACnC,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,QAAuB;QAChC,MAAM,MAAM,GAAG,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;QAC7C,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IAChC,CAAC;IAED,KAAK,CAAC,cAAc,CAClB,QAAuB,EACvB,MAAoB,EACpB,UAAkB;QAElB,MAAM,UAAU,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;QAC3C,MAAM,iBAAiB,GAAG;YACxB,iHAAiH;YACjH,gBAAgB,UAAU,EAAE;YAC5B,SAAS;YACT,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC;YACnC,KAAK;YACL,mDAAmD;SACpD,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAEb,IAAI,SAAS,GAAiB,IAAI,CAAC;QACnC,MAAM,iBAAiB,GAAG,CAAC,GAAG,QAAQ,CAAC,CAAC;QAExC,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,GAAG,WAAW,EAAE,OAAO,EAAE,EAAE,CAAC;YACvD,MAAM,MAAM,GAAG,IAAI,CAAC,cAAc,CAAC;gBACjC,GAAG,iBAAiB;gBACpB,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,iBAAiB,EAAE;aAC7C,CAAC,CAAC;YAEH,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YAEzC,2DAA2D;YAC3D,MAAM,OAAO,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;YAEjC,IAAI,MAAe,CAAC;YACpB,IAAI,CAAC;gBACH,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,SAAS,GAAG,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;gBAC1D,iBAAiB,CAAC,IAAI,CACpB,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,GAAG,EAAE,EACnC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,yCAAyC,SAAS,CAAC,OAAO,0CAA0C,EAAE,CAChI,CAAC;gBACF,SAAS;YACX,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YACxC,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;gBACnB,OAAO,MAAM,CAAC,IAAI,CAAC;YACrB,CAAC;YAED,SAAS,GAAG,IAAI,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YAC5C,iBAAiB,CAAC,IAAI,CACpB,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,GAAG,EAAE,EACnC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,4BAA4B,MAAM,CAAC,KAAK,CAAC,OAAO,iEAAiE,EAAE,CAC7I,CAAC;QACJ,CAAC;QAED,MAAM,IAAI,qBAAqB,CAAC,WAAW,EAAE,SAAU,CAAC,CAAC;IAC3D,CAAC;IAED,WAAW,CAAC,IAAY;QACtB,0DAA0D;QAC1D,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IACpC,CAAC;IAEO,cAAc,CAAC,QAAuB;QAC5C,MAAM,KAAK,GAAa,EAAE,CAAC;QAE3B,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;YAC3B,IAAI,GAAG,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;gBAC1B,KAAK,CAAC,IAAI,CAAC,0BAA0B,GAAG,CAAC,OAAO,IAAI,CAAC,CAAC;YACxD,CAAC;iBAAM,IAAI,GAAG,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;gBAC/B,KAAK,CAAC,IAAI,CAAC,GAAG,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;YAC/B,CAAC;iBAAM,IAAI,GAAG,CAAC,IAAI,KAAK,WAAW,EAAE,CAAC;gBACpC,KAAK,CAAC,IAAI,CAAC,wBAAwB,GAAG,CAAC,OAAO,IAAI,CAAC,CAAC;YACtD,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC5B,CAAC;IAEO,SAAS,CAAC,MAAc;QAC9B,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,MAAM,IAAI,GAAG;gBACX,IAAI,EAAE,GAAG;gBACT,iBAAiB,EAAE,MAAM;gBACzB,SAAS,EAAE,IAAI,CAAC,OAAO;gBACvB,0BAA0B;aAC3B,CAAC;YAEF,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,EAAE,IAAI,EAAE;gBAClC,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;gBAC/B,OAAO,EAAE,OAAO;aACjB,CAAC,CAAC;YAEH,IAAI,MAAM,GAAG,EAAE,CAAC;YAChB,IAAI,MAAM,GAAG,EAAE,CAAC;YAEhB,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,IAAY,EAAE,EAAE,GAAG,MAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;YAC1E,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,IAAY,EAAE,EAAE,GAAG,MAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;YAE1E,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,IAAI,EAAE,EAAE;gBACzB,IAAI,IAAI,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;oBAC1B,yEAAyE;oBACzE,MAAM,UAAU,GAAG,MAAM,CAAC,CAAC,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;oBACvD,MAAM,CAAC,IAAI,KAAK,CAAC,+BAA+B,IAAI,GAAG,UAAU,CAAC,CAAC,CAAC,KAAK,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;oBAC/F,OAAO;gBACT,CAAC;gBAED,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAoB,CAAC;oBACrD,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;wBACpB,MAAM,CAAC,IAAI,KAAK,CAAC,qBAAqB,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;wBACvE,OAAO;oBACT,CAAC;oBACD,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;gBACzB,CAAC;gBAAC,MAAM,CAAC;oBACP,OAAO,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;gBACzB,CAAC;YACH,CAAC,CAAC,CAAC;YAEH,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;gBACxB,MAAM,CAAC,IAAI,KAAK,CAAC,+BAA+B,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC;YACjF,CAAC,CAAC,CAAC;YAEH,qEAAqE;YACrE,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;gBAC9B,gFAAgF;gBAChF,IAAK,GAA6B,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;oBACpD,MAAM,CAAC,IAAI,KAAK,CAAC,yCAAyC,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC;gBAC3F,CAAC;YACH,CAAC,CAAC,CAAC;YAEH,qCAAqC;YACrC,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;YAC1B,KAAK,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC;QACpB,CAAC,CAAC,CAAC;IACL,CAAC;CACF;AAED,SAAS,aAAa,CAAC,GAAW;IAChC,oEAAoE;IACpE,yDAAyD;IACzD,MAAM,SAAS,GAAG,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAC5C,OAAO,SAAS,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;AAC9E,CAAC;AAED,SAAS,WAAW,CAAC,IAAY;IAC/B,gDAAgD;IAChD,MAAM,cAAc,GAAG,IAAI,CAAC,KAAK,CAAC,oCAAoC,CAAC,CAAC;IACxE,IAAI,cAAc,EAAE,CAAC;QACnB,OAAO,cAAc,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAClC,CAAC;IAED,qCAAqC;IACrC,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;IAC9C,IAAI,WAAW,EAAE,CAAC;QAChB,OAAO,WAAW,CAAC,CAAC,CAAC,CAAC;IACxB,CAAC;IAED,OAAO,IAAI,CAAC,IAAI,EAAE,CAAC;AACrB,CAAC"}
+{"version":3,"file":"claude-cli.js","sourceRoot":"","sources":["../../../src/llm/claude-cli.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,oBAAoB,CAAC;AAE3C,OAAO,EAAsC,qBAAqB,EAAE,MAAM,eAAe,CAAC;AAC1F,OAAO,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAE/C,MAAM,WAAW,GAAG,CAAC,CAAC;AAYtB,MAAM,OAAO,iBAAiB;IACnB,OAAO,CAAS;IAChB,YAAY,GAAG,YAAY,CAAC;IAErC,YAAY,KAAc;QACxB,IAAI,CAAC,OAAO,GAAG,KAAK,IAAI,QAAQ,CAAC;IACnC,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,QAAuB;QAChC,MAAM,MAAM,GAAG,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;QAC7C,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IAChC,CAAC;IAED,KAAK,CAAC,cAAc,CAClB,QAAuB,EACvB,MAAoB,EACpB,UAAkB;QAElB,MAAM,UAAU,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;QAC3C,MAAM,iBAAiB,GAAG;YACxB,iHAAiH;YACjH,gBAAgB,UAAU,EAAE;YAC5B,SAAS;YACT,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC;YACnC,KAAK;YACL,mDAAmD;SACpD,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAEb,IAAI,SAAS,GAAiB,IAAI,CAAC;QACnC,MAAM,iBAAiB,GAAG,CAAC,GAAG,QAAQ,CAAC,CAAC;QAExC,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,GAAG,WAAW,EAAE,OAAO,EAAE,EAAE,CAAC;YACvD,MAAM,MAAM,GAAG,IAAI,CAAC,cAAc,CAAC;gBACjC,GAAG,iBAAiB;gBACpB,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,iBAAiB,EAAE;aAC7C,CAAC,CAAC;YAEH,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YAEzC,2DAA2D;YAC3D,MAAM,OAAO,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;YAEjC,IAAI,MAAe,CAAC;YACpB,IAAI,CAAC;gBACH,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YAC/B,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,SAAS,GAAG,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;gBAC1D,iBAAiB,CAAC,IAAI,CACpB,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,GAAG,EAAE,EACnC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,yCAAyC,SAAS,CAAC,OAAO,0CAA0C,EAAE,CAChI,CAAC;gBACF,SAAS;YACX,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YACxC,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;gBACnB,OAAO,MAAM,CAAC,IAAI,CAAC;YACrB,CAAC;YAED,SAAS,GAAG,IAAI,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YAC5C,iBAAiB,CAAC,IAAI,CACpB,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,GAAG,EAAE,EACnC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,4BAA4B,MAAM,CAAC,KAAK,CAAC,OAAO,iEAAiE,EAAE,CAC7I,CAAC;QACJ,CAAC;QAED,MAAM,IAAI,qBAAqB,CAAC,WAAW,EAAE,SAAU,CAAC,CAAC;IAC3D,CAAC;IAED,WAAW,CAAC,IAAY;QACtB,0DAA0D;QAC1D,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IACpC,CAAC;IAEO,cAAc,CAAC,QAAuB;QAC5C,MAAM,KAAK,GAAa,EAAE,CAAC;QAE3B,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;YAC3B,IAAI,GAAG,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;gBAC1B,KAAK,CAAC,IAAI,CAAC,0BAA0B,GAAG,CAAC,OAAO,IAAI,CAAC,CAAC;YACxD,CAAC;iBAAM,IAAI,GAAG,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;gBAC/B,KAAK,CAAC,IAAI,CAAC,GAAG,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;YAC/B,CAAC;iBAAM,IAAI,GAAG,CAAC,IAAI,KAAK,WAAW,EAAE,CAAC;gBACpC,KAAK,CAAC,IAAI,CAAC,wBAAwB,GAAG,CAAC,OAAO,IAAI,CAAC,CAAC;YACtD,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC5B,CAAC;IAEO,SAAS,CAAC,MAAc;QAC9B,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,MAAM,IAAI,GAAG;gBACX,IAAI;gBACJ,iBAAiB,EAAE,MAAM;gBACzB,SAAS,EAAE,IAAI,CAAC,OAAO;aACxB,CAAC;YAEF,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,EAAE,IAAI,EAAE;gBAClC,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;gBAC/B,OAAO,EAAE,OAAO;aACjB,CAAC,CAAC;YAEH,IAAI,MAAM,GAAG,EAAE,CAAC;YAChB,IAAI,MAAM,GAAG,EAAE,CAAC;YAEhB,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,IAAY,EAAE,EAAE,GAAG,MAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;YAC1E,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,IAAY,EAAE,EAAE,GAAG,MAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;YAE1E,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,IAAI,EAAE,EAAE;gBACzB,IAAI,IAAI,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;oBAC1B,yEAAyE;oBACzE,MAAM,UAAU,GAAG,MAAM,CAAC,CAAC,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;oBACvD,MAAM,CAAC,IAAI,KAAK,CAAC,+BAA+B,IAAI,GAAG,UAAU,CAAC,CAAC,CAAC,KAAK,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;oBAC/F,OAAO;gBACT,CAAC;gBAED,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAoB,CAAC;oBACrD,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;wBACpB,MAAM,CAAC,IAAI,KAAK,CAAC,qBAAqB,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;wBACvE,OAAO;oBACT,CAAC;oBACD,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;gBACzB,CAAC;gBAAC,MAAM,CAAC;oBACP,OAAO,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;gBACzB,CAAC;YACH,CAAC,CAAC,CAAC;YAEH,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;gBACxB,MAAM,CAAC,IAAI,KAAK,CAAC,+BAA+B,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC;YACjF,CAAC,CAAC,CAAC;YAEH,qEAAqE;YACrE,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;gBAC9B,gFAAgF;gBAChF,IAAK,GAA6B,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;oBACpD,MAAM,CAAC,IAAI,KAAK,CAAC,yCAAyC,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC;gBAC3F,CAAC;YACH,CAAC,CAAC,CAAC;YAEH,qCAAqC;YACrC,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;YAC1B,KAAK,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC;QACpB,CAAC,CAAC,CAAC;IACL,CAAC;CACF;AAED,SAAS,aAAa,CAAC,GAAW;IAChC,oEAAoE;IACpE,yDAAyD;IACzD,MAAM,SAAS,GAAG,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAC5C,OAAO,SAAS,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;AAC9E,CAAC;AAED,SAAS,WAAW,CAAC,IAAY;IAC/B,gDAAgD;IAChD,MAAM,cAAc,GAAG,IAAI,CAAC,KAAK,CAAC,oCAAoC,CAAC,CAAC;IACxE,IAAI,cAAc,EAAE,CAAC;QACnB,OAAO,cAAc,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAClC,CAAC;IAED,qCAAqC;IACrC,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;IAC9C,IAAI,WAAW,EAAE,CAAC;QAChB,OAAO,WAAW,CAAC,CAAC,CAAC,CAAC;IACxB,CAAC;IAED,OAAO,IAAI,CAAC,IAAI,EAAE,CAAC;AACrB,CAAC"}

package/code-review-agent/src/llm/claude-cli.ts

@@ -108,10 +108,9 @@ export class ClaudeCliProvider implements LLMProvider {
   private runClaude(prompt: string): Promise<string> {
     return new Promise((resolve, reject) => {
       const args = [
-        '-p', '-',
+        '-p',
         '--output-format', 'json',
         '--model', this.modelId,
-        '--no-session-persistence',
       ];
 
       const child = spawn('claude', args, {

package/index.js

@@ -47,7 +47,7 @@ try {
 // Create MCP Server
 const server = new McpServer(
   {
-    name: "prooflayer-agent-security",
+    name: "agent-security-scanner-mcp",
     version: _pkgVersion,
   },
   {
@@ -306,7 +306,7 @@ const cliArgs = process.argv.slice(2);
     // CLI mode: scan-prompt <text> [--verbosity minimal|compact|full]
     const text = cliArgs[1];
     if (!text) {
-      console.error('Usage: prooflayer-agent-security scan-prompt <text> [--verbosity minimal|compact|full]');
+      console.error('Usage: agent-security-scanner-mcp scan-prompt <text> [--verbosity minimal|compact|full]');
       process.exit(1);
     }
     const verbosityIdx = cliArgs.indexOf('--verbosity');
@@ -326,7 +326,7 @@ const cliArgs = process.argv.slice(2);
   // CLI mode: scan-security <file> [--verbosity minimal|compact|full] [--format json|sarif]
   const filePath = cliArgs[1];
   if (!filePath) {
-    console.error('Usage: prooflayer-agent-security scan-security <file> [--verbosity minimal|compact|full] [--format json|sarif]');
+    console.error('Usage: agent-security-scanner-mcp scan-security <file> [--verbosity minimal|compact|full] [--format json|sarif]');
     process.exit(1);
   }
   const verbosityIdx = cliArgs.indexOf('--verbosity');
@@ -348,7 +348,7 @@ const cliArgs = process.argv.slice(2);
   const packageName = cliArgs[1];
   const ecosystem = cliArgs[2];
   if (!packageName || !ecosystem) {
-    console.error('Usage: prooflayer-agent-security check-package <name> <ecosystem>');
+    console.error('Usage: agent-security-scanner-mcp check-package <name> <ecosystem>');
     console.error('Ecosystems: npm, pypi, rubygems, crates, dart, perl, raku');
     process.exit(1);
   }
@@ -367,7 +367,7 @@ const cliArgs = process.argv.slice(2);
   const filePath = cliArgs[1];
   const ecosystem = cliArgs[2];
   if (!filePath || !ecosystem) {
-    console.error('Usage: prooflayer-agent-security scan-packages <file> <ecosystem> [--verbosity minimal|compact|full]');
+    console.error('Usage: agent-security-scanner-mcp scan-packages <file> <ecosystem> [--verbosity minimal|compact|full]');
     console.error('Ecosystems: npm, pypi, rubygems, crates, dart, perl, raku');
     process.exit(1);
   }
@@ -387,7 +387,7 @@ const cliArgs = process.argv.slice(2);
   // CLI mode: scan-project <dir> [--recursive] [--diff-only] [--cross-file] [--include '*.py'] [--exclude '*.test.js'] [--verbosity minimal|compact|full]
   const dirPath = cliArgs[1];
   if (!dirPath || dirPath.startsWith('--')) {
-    console.error('Usage: prooflayer-agent-security scan-project <directory> [--recursive] [--diff-only] [--cross-file] [--include <pattern>] [--exclude <pattern>] [--verbosity minimal|compact|full]');
+    console.error('Usage: agent-security-scanner-mcp scan-project <directory> [--recursive] [--diff-only] [--cross-file] [--include <pattern>] [--exclude <pattern>] [--verbosity minimal|compact|full]');
     process.exit(1);
   }
   const verbosityIdx = cliArgs.indexOf('--verbosity');
@@ -455,7 +455,7 @@ const cliArgs = process.argv.slice(2);
   // CLI mode: scan-mcp <path> [--verbosity minimal|compact|full]
   const serverPath = cliArgs[1];
   if (!serverPath) {
-    console.error('Usage: prooflayer-agent-security scan-mcp <server-path> [--verbosity minimal|compact|full]');
+    console.error('Usage: agent-security-scanner-mcp scan-mcp <server-path> [--verbosity minimal|compact|full]');
     process.exit(1);
   }
   const verbosityIdx = cliArgs.indexOf('--verbosity');
@@ -474,7 +474,7 @@ const cliArgs = process.argv.slice(2);
   const actionType = cliArgs[1];
   const actionValue = cliArgs[2];
   if (!actionType || !actionValue) {
-    console.error('Usage: prooflayer-agent-security scan-action <type> <value> [--verbosity minimal|compact|full]');
+    console.error('Usage: agent-security-scanner-mcp scan-action <type> <value> [--verbosity minimal|compact|full]');
     console.error('Types: bash, file_write, file_read, http_request, file_delete, cron, process_spawn, git, docker');
     process.exit(1);
   }
@@ -492,7 +492,7 @@ const cliArgs = process.argv.slice(2);
 } else if (cliArgs[0] === 'scan-skill') {
   const skillPath = cliArgs[1];
   if (!skillPath) {
-    console.error('Usage: prooflayer-agent-security scan-skill <skill-path> [--verbosity minimal|compact|full] [--baseline]');
+    console.error('Usage: agent-security-scanner-mcp scan-skill <skill-path> [--verbosity minimal|compact|full] [--baseline]');
     process.exit(1);
   }
   const verbosityIdx = cliArgs.indexOf('--verbosity');
@@ -529,7 +529,7 @@ const cliArgs = process.argv.slice(2);
   await import('./src/cli/scan-clawhub-safe.js');
   // Exit is handled by scan-clawhub-safe.js
 } else if (cliArgs[0] === '--help' || cliArgs[0] === '-h' || cliArgs[0] === 'help') {
-  console.log('\n  prooflayer-agent-security\n');
+  console.log('\n  agent-security-scanner-mcp\n');
   console.log('  Commands:');
   console.log('    init [client]        Set up MCP config for a client');
   console.log('    init-hooks           Install Claude Code hooks for auto-scanning');
@@ -557,14 +557,14 @@ const cliArgs = process.argv.slice(2);
   console.log('    --include <pattern>  Include only matching files (scan-project)');
   console.log('    --exclude <pattern>  Exclude matching files (scan-project)\n');
   console.log('  Examples:');
-  console.log('    npx prooflayer-agent-security init');
-  console.log('    npx prooflayer-agent-security scan-prompt "ignore previous instructions"');
-  console.log('    npx prooflayer-agent-security scan-security ./app.py --verbosity minimal');
-  console.log('    npx prooflayer-agent-security check-package flask pypi');
-  console.log('    npx prooflayer-agent-security scan-project ./src --verbosity minimal');
-  console.log('    npx prooflayer-agent-security scan-diff HEAD~1');
-  console.log('    npx prooflayer-agent-security report ./src --json');
-  console.log('    npx prooflayer-agent-security benchmark --save --compare-latest\n');
+  console.log('    npx agent-security-scanner-mcp init');
+  console.log('    npx agent-security-scanner-mcp scan-prompt "ignore previous instructions"');
+  console.log('    npx agent-security-scanner-mcp scan-security ./app.py --verbosity minimal');
+  console.log('    npx agent-security-scanner-mcp check-package flask pypi');
+  console.log('    npx agent-security-scanner-mcp scan-project ./src --verbosity minimal');
+  console.log('    npx agent-security-scanner-mcp scan-diff HEAD~1');
+  console.log('    npx agent-security-scanner-mcp report ./src --json');
+  console.log('    npx agent-security-scanner-mcp benchmark --save --compare-latest\n');
   process.exit(0);
 } else {
   // Normal MCP server mode

package/openclaw.plugin.json

@@ -1,5 +1,5 @@
 {
-  "name": "prooflayer-agent-security",
+  "name": "agent-security-scanner-mcp",
   "version": "4.0.0",
   "description": "Security scanner for OpenClaw: prompt injection firewall, package hallucination detection, code vulnerability scanning, auto-fix",
   "author": "Sinewave AI",

package/package.json

@@ -1,12 +1,13 @@
 {
   "name": "agent-security-scanner-mcp",
-  "version": "4.0.0",
+  "version": "4.0.1",
   "mcpName": "io.github.sinewaveai/agent-security-scanner-mcp",
   "description": "Security scanner MCP server for AI coding agents. Prompt injection firewall, package hallucination detection (4.3M+ packages), 1700+ vulnerability rules with AST & taint analysis, LLM-powered semantic code review, auto-fix. For Claude Code, Cursor, Windsurf, Cline, OpenClaw.",
   "main": "index.js",
   "type": "module",
   "bin": {
-    "agent-security-scanner-mcp": "index.js"
+    "agent-security-scanner-mcp": "index.js",
+    "cr-agent": "code-review-agent/dist/bin/cr-agent.js"
   },
   "scripts": {
     "start": "node index.js",

package/scripts/postinstall.js

@@ -1,14 +1,18 @@
 #!/usr/bin/env node
 /**
- * postinstall.js - Attempt to install Python dependencies for tree-sitter AST engine.
- * If installation fails, the scanner gracefully falls back to regex-only mode.
+ * postinstall.js - Setup script for agent-security-scanner-mcp
+ * 1. Install Python dependencies for tree-sitter AST engine (optional)
+ * 2. Install and build code-review-agent dependencies (optional)
  */
-import { execFileSync } from "child_process";
+import { execFileSync, execSync } from "child_process";
 import { join, dirname } from "path";
 import { fileURLToPath } from "url";
+import { existsSync } from "fs";
 
 const __dirname = dirname(fileURLToPath(import.meta.url));
-const requirementsPath = join(__dirname, "..", "requirements.txt");
+const rootDir = join(__dirname, "..");
+const requirementsPath = join(rootDir, "requirements.txt");
+const codeReviewAgentDir = join(rootDir, "code-review-agent");
 
 // Check if Python 3 is available
 function findPython() {
@@ -33,6 +37,7 @@ function isTreeSitterInstalled(pythonCmd) {
   }
 }
 
+// Setup Python dependencies
 const pythonCmd = findPython();
 
 if (!pythonCmd) {
@@ -58,3 +63,37 @@ if (!pythonCmd) {
     );
   }
 }
+
+// Setup code-review-agent (LLM-powered semantic analysis)
+if (existsSync(codeReviewAgentDir)) {
+  const distExists = existsSync(join(codeReviewAgentDir, "dist", "bin", "cr-agent.js"));
+
+  if (distExists) {
+    console.log("[postinstall] code-review-agent already built — cr-agent CLI available.");
+  } else {
+    console.log("[postinstall] Setting up code-review-agent (LLM-powered code review)...");
+    try {
+      // Install dependencies
+      execSync("npm install --omit=dev", {
+        cwd: codeReviewAgentDir,
+        timeout: 180000,
+        stdio: ["pipe", "pipe", "pipe"]
+      });
+
+      // Build TypeScript
+      execSync("npm run build", {
+        cwd: codeReviewAgentDir,
+        timeout: 60000,
+        stdio: ["pipe", "pipe", "pipe"]
+      });
+
+      console.log("[postinstall] code-review-agent installed — run: npx cr-agent --help");
+    } catch (err) {
+      console.log(
+        "[postinstall] Could not set up code-review-agent (optional LLM-powered review).\n" +
+        "             The main scanner still works. To set up manually:\n" +
+        "             cd node_modules/agent-security-scanner-mcp/code-review-agent && npm install && npm run build"
+      );
+    }
+  }
+}

package/server.json

@@ -1,6 +1,6 @@
 {
   "$schema": "https://static.modelcontextprotocol.io/schemas/2025-12-11/server.schema.json",
-  "name": "io.github.sinewaveai/prooflayer-agent-security",
+  "name": "io.github.sinewaveai/agent-security-scanner-mcp",
   "description": "MCP security scanner with prompt injection firewall, package hallucination detection, LLM-powered code review, and auto-fix.",
   "version": "4.0.0",
   "transport": "stdio",

package/src/cli/init-hooks.js

@@ -5,14 +5,14 @@
 import { existsSync, readFileSync, writeFileSync, copyFileSync, mkdirSync } from 'fs';
 import { join } from 'path';
 
-const SCANNER_HOOK_MARKER = 'prooflayer-agent-security';
+const SCANNER_HOOK_MARKER = 'agent-security-scanner-mcp';
 
 function buildHooksConfig(withPromptGuard) {
   const hooks = {
     'post-tool-use': [
       {
         matcher: 'Write|Edit|MultiEdit',
-        command: `npx prooflayer-agent-security scan-security "$TOOL_INPUT_FILE_PATH" --verbosity minimal`,
+        command: `npx agent-security-scanner-mcp scan-security "$TOOL_INPUT_FILE_PATH" --verbosity minimal`,
       },
     ],
   };
@@ -21,7 +21,7 @@ function buildHooksConfig(withPromptGuard) {
     hooks['pre-tool-use'] = [
       {
         matcher: 'Bash',
-        command: `npx prooflayer-agent-security scan-prompt "$TOOL_INPUT_COMMAND" --verbosity minimal`,
+        command: `npx agent-security-scanner-mcp scan-prompt "$TOOL_INPUT_COMMAND" --verbosity minimal`,
       },
     ];
   }

package/src/cli/init.js

@@ -7,7 +7,7 @@ import { createInterface } from "readline";
 
 const MCP_SERVER_ENTRY = {
   command: "npx",
-  args: ["-y", "prooflayer-agent-security"]
+  args: ["-y", "agent-security-scanner-mcp"]
 };
 
 function vscodeBase() {