AI Security Review
scanned 3h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `bin/ai-workflow.js` exposes explicit `init --claude/--codex/--antigravity` migrations that write agent-control files.
- `bin/ai-workflow.js` writes project `AGENTS.md`, `CLAUDE.md`, `.agents/`, `.codex/`, and `.github/agents/` when selected.
- `chunk-4FI5ODAM.js` invokes the OpenCode CLI/SDK to execute user-supplied workflow prompts.
- `bin/ai-workflow.js` can run named project npm scripts during remediation.
- `package.json` has no preinstall, install, postinstall, prepare, or other lifecycle hook.
- CLI execution is gated behind user-invoked commands; importing/installing does not run the CLI.
- No credential harvesting, secret reads, outbound HTTP client, or hard-coded exfiltration endpoint was found.
- Dynamic `Function` in `chunk-FNT7DN3N.js` is bundled AJV validator code, not package payload execution.
- Agent-file writes are project-local and platform flags are explicit; no stealth persistence was found.
Source & flagged code
2 flagged · loading sourcePackage source references a known benign dynamic code generation pattern.
chunk-FNT7DN3N.jsView on unpkg · L2915This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
bin/ai-workflow.jsView on unpkg