popcorn-xp

This is an execution-based lifecycle hook configuration that runs three bash scripts from `${CLAUDE_PLUGIN_ROOT}/hooks/scripts/` on common lifecycle events. No direct malicious indicators appear in the fragment, but it creates a strong supply-chain risk point: if `${CLAUDE_PLUGIN_ROOT}` is manipulable or the referenced scripts are tampered with, arbitrary code execution could occur. Review and integrity-verify the referenced shell scripts and the mechanism that sets/controls `${CLAUDE_PLUGIN_ROOT}`.