AI Security Review
scanned 6h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. At runtime, this AI-agent management desktop app can modify a created workspace's `.claude/settings.json` to add command hooks. It also launches its bundled local dashboard server and agent tooling. No unconsented install-time foreign agent-control mutation was confirmed.
Decision evidence
public snapshot- `server/workspace-4ZufqeMe.js` writes workspace `.claude/settings.json` hooks.
- Hooks invoke scripts under `~/.overdeck/hooks` on Claude session and prompt events.
- Runtime server spawns local agent/dashboard processes and forwards environment values.
- `server/remote-agents-CmbIKw7E.js` can provision Claude credentials to user-selected remote VMs.
- `package.json` postinstall only runs `electron-rebuild` and ignores failure.
- `bin/overdeck.mjs` runs only when the user invokes its CLI.
- `dist-electron/main.js` starts bundled `server/server.js` on loopback with a random auth token.
- No bidi controls were found in the flagged bundled asset; flagged large assets are normal bundled dependencies.
Source & flagged code
13 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgPackage contains a critical-looking secret pattern.
server/public/assets/chunk-EIO257PC-DnXo63uH.jsView on unpkg · L22AWS access key ID in server/public/assets/chunk-EIO257PC-DnXo63uH.js
server/public/assets/chunk-EIO257PC-DnXo63uH.jsView on unpkg · L22Package source references a known benign dynamic code generation pattern.
server/toml-CeLDATih.jsView on unpkg · L363Package source references dynamic require/import behavior.
dist-electron/preload.jsView on unpkg · L1Source combines credential-like environment material and outbound requests; review data flow before blocking.
server/remote-agents-CmbIKw7E.jsView on unpkg · L9Package metadata claims a different repository identity while copied source loads a runtime dependency bridge.
bin/overdeck.mjsView on unpkg · L58Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
server/public/assets/chunk-NNHCCRGN-oonlRMkZ.jsView on unpkg · L46Package contains source files above the static scanner size ceiling.
server/src-BswtmojL.jsView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
server/flywheel-BLoVNtJV.jsView on unpkgGoogle API key in server/public/assets/chunk-ZUYEQ4TG-B82Qm37l.js
server/public/assets/chunk-ZUYEQ4TG-B82Qm37l.jsView on unpkg · L1