AI Security Review
scanned 3h ago · by lpm-firewall-aiOn user invocation, the CLI can reuse an API key from another product's `~/.nexel/config.json` and transmit it to a gateway. User prompts and retained session content are also sent to that gateway for agent execution.
Decision evidence
public snapshot- `dist/config.js` reads foreign `~/.nexel/config.json` as an API-key fallback.
- `dist/gateway.js` sends the selected API key as a Bearer token to `cfg.baseUrl`.
- `dist/react.js` forwards user tasks and persisted history to the hosted gateway.
- `dist/tools.js` lets the remote model invoke web research requests through the gateway.
- `package.json` has only `prepublishOnly`; no install lifecycle hook.
- No child-process, shell, eval, VM, or native binary execution found.
- Writes are limited to user-invoked `~/.kortex` config/history/access-key and explicit document export.
- No source evidence of stealth persistence, deletion, or install-time mutation.
Source & flagged code
4 flagged · loading source`dist/config.js` reads foreign `~/.nexel/config.json` as an API-key fallback.
dist/config.jsView on unpkg`dist/gateway.js` sends the selected API key as a Bearer token to `cfg.baseUrl`.
dist/gateway.jsView on unpkg`dist/react.js` forwards user tasks and persisted history to the hosted gateway.
dist/react.jsView on unpkg`dist/tools.js` lets the remote model invoke web research requests through the gateway.
dist/tools.jsView on unpkg