AI Security Review
scanned 2h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `vortex global-setup` writes global Claude settings and hooks.
- Global setup writes `~/.claude/CLAUDE.md` and `vortex-global.json`.
- Hooks invoke `@vortex-os/base/bin/vortex.mjs` on Claude session events.
- `vortex init` copies agent-router templates into project control files.
- `package.json` has no preinstall/install/postinstall lifecycle hook.
- `bin/vortex.mjs` only dispatches explicitly invoked CLI arguments.
- Configuration mutation is behind explicit CLI commands, not import/install execution.
- No remote endpoint, credential collection, or exfiltration path was confirmed.
Source & flagged code
3 flagged · loading sourceThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/index.jsView on unpkgPackage source references dynamic require/import behavior.
dist/index.jsView on unpkg · L4356Package source references weak cryptographic algorithms.
dist/dist-3RWY3T7B.jsView on unpkg · L1864