AI Security Review
scanned 8h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. No install-time attack behavior is established. An explicit `testsprite agent install` command writes persistent TestSprite instructions into selected project AI-agent configuration paths, including a managed section in `AGENTS.md`.
Decision evidence
public snapshot- `dist/commands/agent.js` implements explicit `testsprite agent install` project-file writes.
- `dist/lib/agent-targets.js` targets `AGENTS.md` and agent instruction directories including `.claude`, `.cursor`, and `.github`.
- Agent installation persists TestSprite verification/onboarding instructions that can influence coding-agent behavior.
- `dist/index.js` performs a TTY-gated update check and writes a local update cache.
- `package.json` has no `preinstall`, `install`, or `postinstall` lifecycle hook.
- Agent writes require an explicit CLI subcommand and constrain paths beneath the selected `--dir`.
- `dist/commands/agent.js` rejects symlink traversal and preserves content outside its Codex managed section.
- No child-process, shell, eval/vm, dynamic payload-loading, credential harvesting, or unconsented exfiltration was found.
Source & flagged code
3 flagged · loading source`dist/commands/agent.js` implements explicit `testsprite agent install` project-file writes.
dist/commands/agent.jsView on unpkg`dist/lib/agent-targets.js` targets `AGENTS.md` and agent instruction directories including `.claude`, `.cursor`, and `.github`.
dist/lib/agent-targets.jsView on unpkg`dist/index.js` performs a TTY-gated update check and writes a local update cache.
dist/index.jsView on unpkg