registry  /  @birdybeep/cli  /  0.1.0

@birdybeep/cli@0.1.0

The BirdyBeep CLI — pair your machine, install agent adapters, and stream coding-agent lifecycle events to BirdyBeep.

AI Security Review

scanned 3h ago · by lpm-firewall-ai

Review flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.

Static reason
No blocking static signals were detected.
Trigger
User runs `birdybeep agent install`, `birdybeep hook`, `birdybeep doctor`, or `birdybeep test`.
Impact
Can modify supported AI-agent integration configuration through adapter dependencies and transmit invoked lifecycle/test events.
Mechanism
Explicit agent-adapter setup and event delivery
Rationale
This is not malicious based on inspected source, but it has a real, user-invoked AI-agent configuration and telemetry capability. Per policy, explicit user-command agent configuration mutation is a warn-level capability rather than a block.
Evidence
package.jsondist/bin.jsdist/chunk-HGH5CDKD.js
Network endpoints1
api.birdybeep.com

Decision evidence

public snapshot
AI called this Suspicious at 88.0% confidence as Dangerous Capability with low false-positive risk.
Evidence for warning
  • Explicit `birdybeep agent install` calls adapter `install()` for Claude, Codex, and OpenCode.
  • Explicit `birdybeep hook` parses harness stdin JSON and sends normalized lifecycle events.
  • `doctor` and `test` use the BirdyBeep API endpoint.
Evidence against
  • `package.json` has no preinstall, install, postinstall, or prepare lifecycle hook.
  • `dist/bin.js` only dispatches CLI arguments; import/install does not invoke adapter setup.
  • No child-process, eval/vm, dynamic code loading, destructive filesystem action, or credential harvesting appears in package code.
  • Agent configuration changes require an explicit `birdybeep agent install` command and detected harnesses.
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemNetwork
Supply chain
UrlStrings
ManifestNo manifest risk signals triggered.
scanned 5 file(s), 104 KB of source, external domains: api.birdybeep.com

Source & flagged code

0 flagged
No flagged code excerpts are attached to this scan.

Findings

5 Medium3 Low
MediumNetwork
MediumEnvironment Vars
MediumAi Review Evidence
MediumSuspicious Lifecycle Evidence
MediumAi Review Evidence
LowScripts Present
LowFilesystem
LowUrl Strings