AI Security Review
scanned 5h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. This is an OpenClaw LINE WORKS channel extension with an explicit setup surface that changes its own channel configuration. Runtime credentials and OAuth tokens are used for LINE WORKS messaging, mail, and attachment features; no install-time attack behavior is established.
Decision evidence
public snapshot- `src/setup-surface.ts` patches OpenClaw's `channels.lineworks` configuration during setup.
- `src/oauth-store.ts` persists OAuth refresh tokens under the OpenClaw home directory.
- `src/attachments.ts` forwards a bearer token when following a LINE WORKS attachment redirect.
- `src/attachments.ts` invokes `ffmpeg` for user-supplied local audio paths.
- `package.json` has no preinstall/install/postinstall lifecycle hook.
- `index.ts` and `setup-entry.ts` only register declared OpenClaw channel entries.
- Network calls target LINE WORKS auth/API endpoints for channel operations.
- Token files use a package-specific directory and restrictive `0700`/`0600` modes.
- No eval, dynamic payload loading, shell interpolation, destructive deletion, or unrelated exfiltration found.
Source & flagged code
4 flagged · loading source`src/setup-surface.ts` patches OpenClaw's `channels.lineworks` configuration during setup.
src/setup-surface.tsView on unpkg`src/oauth-store.ts` persists OAuth refresh tokens under the OpenClaw home directory.
src/oauth-store.tsView on unpkg`src/attachments.ts` forwards a bearer token when following a LINE WORKS attachment redirect.
src/attachments.tsView on unpkg`src/attachments.ts` invokes `ffmpeg` for user-supplied local audio paths.
src/attachments.tsView on unpkg