AI Security Review
scanned 2h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. Starting the server automatically modifies supported AI-agent telemetry configuration, directing telemetry to a local receiver. Explicit `setup` additionally installs package-owned hooks/skills. No install-time execution or outbound exfiltration endpoint was confirmed.
Decision evidence
public snapshot- `standalone/server.js` runs `applyAutoConfig()` when the server starts.
- Auto-configuration writes Claude, Codex, and Copilot telemetry settings pointing to local OTLP.
- `standalone/cli.js` setup installs AgentLens hooks and a skill through explicit `setup`.
- Runtime reads AI-agent logs/configuration and persists collected telemetry under `~/.agentlens`.
- `package.json` has only `prepublishOnly`; no preinstall/install/postinstall hook.
- `standalone/server.js` binds UI, OTLP, and MCP services to `127.0.0.1` by default.
- Observed telemetry endpoints are localhost-only; no outbound credential-exfiltration host was found.
- `scripts/safe_config_edit.py` limits config writes to declared paths and verifies diffs/backups.
Source & flagged code
7 flagged · loading sourceSource appears to send environment or credential material to an external endpoint.
standalone/server.jsView on unpkg · L154A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
standalone/server.jsView on unpkg · L154Package source references child process execution.
standalone/server.jsView on unpkg · L9250A single source file combines environment access, network access, and code or shell execution; review context before blocking.
standalone/server.jsView on unpkg · L36239Package source references a known benign dynamic code generation pattern.
standalone/server.jsView on unpkg · L3071Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
standalone/cli.jsView on unpkg · L45Package ships non-JavaScript build or shell helper files.
scripts/safe_config_edit.pyView on unpkg