AI Security Review
scanned 3h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Static reason
No blocking static signals were detected.
Trigger
User runs `birdybeep agent install`, `birdybeep hook`, `birdybeep doctor`, or `birdybeep test`.
Impact
Can modify supported AI-agent integration configuration through adapter dependencies and transmit invoked lifecycle/test events.
Mechanism
Explicit agent-adapter setup and event delivery
Rationale
This is not malicious based on inspected source, but it has a real, user-invoked AI-agent configuration and telemetry capability. Per policy, explicit user-command agent configuration mutation is a warn-level capability rather than a block.
Evidence
package.jsondist/bin.jsdist/chunk-HGH5CDKD.js
Network endpoints1
api.birdybeep.com
Decision evidence
public snapshotAI called this Suspicious at 88.0% confidence as Dangerous Capability with low false-positive risk.
Evidence for warning
- Explicit `birdybeep agent install` calls adapter `install()` for Claude, Codex, and OpenCode.
- Explicit `birdybeep hook` parses harness stdin JSON and sends normalized lifecycle events.
- `doctor` and `test` use the BirdyBeep API endpoint.
Evidence against
- `package.json` has no preinstall, install, postinstall, or prepare lifecycle hook.
- `dist/bin.js` only dispatches CLI arguments; import/install does not invoke adapter setup.
- No child-process, eval/vm, dynamic code loading, destructive filesystem action, or credential harvesting appears in package code.
- Agent configuration changes require an explicit `birdybeep agent install` command and detected harnesses.
Behavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetwork
UrlStrings
Source & flagged code
0 flaggedNo flagged code excerpts are attached to this scan.
Findings
5 Medium3 Low
MediumNetwork
MediumEnvironment Vars
MediumAi Review Evidence
MediumSuspicious Lifecycle Evidence
MediumAi Review Evidence
LowScripts Present
LowFilesystem
LowUrl Strings