AI Security Review
scanned 2h ago · by lpm-firewall-aiExplicit setup persists an MCP server into AI-client configuration. Its default server command resolves an unscoped, version-unpinned npm package on later agent startup.
Decision evidence
public snapshot- `src/install.js` writes MCP entries for detected AI clients when `vibeguard install` is invoked.
- The configured command is unpinned `npx -y vibeguard mcp`, while this archive is `@yagyeshvyas/vibeguard`.
- `src/hook.js` can add a project `.claude/settings.json` PostToolUse command hook through explicit setup.
- `package.json` references `scripts/postinstall.js`, but that file is absent from the archive.
- `src/mcp-audit.js` uses invisible Unicode only in a detector regex for hostile config content.
- Reviewed network code performs user-invoked URL/CVE scanning; no secret-exfiltration path was confirmed.
Source & flagged code
14 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgPackage text addresses the security reviewer or scanner and tries to influence the review outcome.
README.mdView on unpkgSource reaches cloud instance metadata or link-local credential endpoints.
bin/cli.jsView on unpkg · L51Package source invokes a package manager install command at runtime.
bin/cli.jsView on unpkg · L1206Package source references dynamic require/import behavior.
bin/cli.jsView on unpkg · L3Source writes installer persistence such as shell profile or service configuration.
bin/cli.jsView on unpkg · L51Package source references a known benign dynamic code generation pattern.
bin/cli.jsView on unpkg · L1193Package source references weak cryptographic algorithms.
src/scanner.jsView on unpkg · L34Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
src/mcp-audit.jsView on unpkg · L40A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
src/mcp-audit.jsView on unpkgPackage ships non-JavaScript build or shell helper files.
src/shell-hook.ps1View on unpkg