AI Security Review
scanned 8d ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- dist/core.cjs is heavily obfuscated and oversized, limiting source auditability.
- Runtime connects to Whalent gateway and README says daemon fetches configs, auto-starts workers, and accepts remote upgrade/restart commands.
- dist/core.cjs references Codex/Claude/opencode integration, WebSocket, spawn/execFile, writeFileSync, rmSync, chmodSync, and WHALENT_* env controls.
- dist/index.cjs supervises and auto-updates wrapper/core via npm/global package operations.
- package.json preinstall only runs scripts/preinstall-check.cjs, which checks Node >=20 and exits on unsupported versions.
- No install-time writes to Claude/Codex/Cursor/MCP control surfaces found; risky behavior is in user-invoked whalent CLI/runtime.
- README documents Whalent Memory agent, token use, gateway connection, helper cache, and remote daemon behavior.
- Network endpoints observed are package-aligned or provider endpoints: memory.whalent.com, registry.npmjs.org, Anthropic/OpenAI APIs.
Source & flagged code
8 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/index.cjsView on unpkgSource contains an obfuscator-style string-array loader that reconstructs and executes hidden code.
dist/index.cjsView on unpkg · L1Package source references dynamic require/import behavior.
dist/index.cjsView on unpkg · L1A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/index.cjs#virtual:normalized:round1View on unpkg · L1Package contains source files above the static scanner size ceiling.
dist/core.cjsView on unpkgPackage contains an oversized executable-looking CLI entrypoint.
dist/core.cjsView on unpkg