AI Security Review
scanned 2h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `dist/lib/setup-mcp.js` writes MCP client entries only after explicit `setup-mcp` invocation.
- `dist/utils/agents.js` targets project and user AI-client config paths, including `.mcp.json` and `~/.copilot/mcp-config.json`.
- `dist/lib/install-server.js` can download, extract, chmod, and later run a managed server binary after explicit `install-plugin --with-server`.
- `dist/utils/connection.js` defaults MCP traffic to `https://ai-game.dev/mcp`.
- `package.json` has no `preinstall`, `install`, or `postinstall` lifecycle hook.
- `bin/godot-cli.js` only imports the command entrypoint; command actions require user CLI input.
- `dist/utils/server-source.js` restricts release downloads to `github.com` and checks SHA-256 before extraction.
- `dist/utils/credentials.js` stores tokens locally with mode `0600` and adds `credentials.json` to `.gitignore`; no unrelated collection or exfiltration found.
Source & flagged code
4 flagged · loading source`dist/lib/setup-mcp.js` writes MCP client entries only after explicit `setup-mcp` invocation.
dist/lib/setup-mcp.jsView on unpkg`dist/utils/agents.js` targets project and user AI-client config paths, including `.mcp.json` and `~/.copilot/mcp-config.json`.
dist/utils/agents.jsView on unpkg`dist/lib/install-server.js` can download, extract, chmod, and later run a managed server binary after explicit `install-plugin --with-server`.
dist/lib/install-server.jsView on unpkg`dist/utils/connection.js` defaults MCP traffic to `https://ai-game.dev/mcp`.
dist/utils/connection.jsView on unpkg