AI Security Review
scanned 3h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- package.json exposes bin yaac -> dist/cli.js
- dist/cli.js user-invoked session creation writes Codex hooks/config and Claude/OpenCode settings under ~/.yaac project dirs
- dist/cli.js runs agent CLIs with permissive modes such as codex --yolo and claude --dangerously-skip-permissions
- dist/cli.js stores host credentials under ~/.yaac/.credentials and proxy-injects them into aligned service traffic
- package.json has no preinstall/install/postinstall lifecycle hooks
- dist/cli.js top level defines CLI commands; actions require explicit yaac commands or daemon/web use
- Daemon binds 127.0.0.1 and uses bearer/bootstrap auth for local web access
- Network endpoints are package-aligned: api.anthropic.com, api.openai.com, github.com, openrouter.ai, api.neuralwatt.com, claude.ai
- Credential handling is documented in README.md and tied to local sandbox/proxy functionality
Source & flagged code
7 flagged · loading sourceSource appears to send environment or credential material to an external endpoint.
dist/cli.jsView on unpkg · L24A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/cli.jsView on unpkg · L24Source writes installer persistence such as shell profile or service configuration.
dist/cli.jsView on unpkg · L24Package ships non-JavaScript build or shell helper files.
dist/k8s/proxy/entrypoint.shView on unpkgPackage ships compressed or archive-like blobs.
dist/k8s/vcluster/vcluster-0.34.3.tgzView on unpkgPackage ships a nested archive or MCP bundle that was inventoried but not recursively analyzed.
dist/k8s/vcluster/vcluster-0.34.3.tgzView on unpkgPackage ships high-entropy non-source blobs.
dist/frontend/assets/inter-greek-wght-normal-CkhJZR-_.woff2View on unpkg