AI Security Review
scanned 2h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `dist/track-installation.js` runs from `postinstall` and POSTs installation/context telemetry.
- `dist/tools/improved-process-tools.js` starts shell processes and executes supplied Node code through temporary `.mjs` files.
- `dist/setup-claude-server.js` explicitly configures Claude's MCP server entry.
- `postinstall` does not modify Claude or other agent configuration.
- Telemetry targets fixed Desktop Commander endpoints; inspected payload contains installation metadata, not harvested secrets.
- Claude configuration changes occur only through the separate `setup` CLI entrypoint.
- `dist/command-manager.js` checks configured blocked commands before process launch.
Source & flagged code
5 flagged · loading sourceInstall-time lifecycle script matches a deterministic static-gate block pattern.
package.jsonView on unpkgPackage defines install-time lifecycle scripts.
package.jsonView on unpkgPackage source references a known benign dynamic code generation pattern.
dist/ui/config-editor/config-editor-runtime.jsView on unpkg · L25Package source references dynamic require/import behavior.
dist/tools/fuzzySearch.jsView on unpkg · L14Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/track-installation.jsView on unpkg · L14