AI Security Review
scanned 4h ago · by lpm-firewall-aiLPM blocks this version under the AI-agent control-surface policy. Install-time code mutates an MCP control surface and starts persistent local services without an explicit user command. It also fetches mutable remote configuration and globally installs another npm package during lifecycle execution.
Decision evidence
public snapshot- package.json runs postinstall: node scripts/postinstall.mjs.
- scripts/postinstall.mjs lifecycle writes ~/.overmind/.mcp.json from downloaded .mcp.json.example.
- scripts/postinstall.mjs downloads mutable config from raw.githubusercontent.com during install.
- scripts/postinstall.mjs runs npm install -g overmind-postgres-mcp during install.
- scripts/postinstall.mjs starts Docker pgvector container with --restart unless-stopped at install time.
- .mcp.json.example registers local MCP servers including memory, postgres, and serveur_discord.
- Writes are mostly under ~/.overmind, a package-named directory.
- No confirmed credential exfiltration or destructive file deletion found in inspected files.
- Network endpoints are package/config dependency aligned rather than arbitrary C2.
- dist/bin/cli.js env-token handling appears to classify/local-format .env content, not transmit it.
Source & flagged code
9 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/lib/InstallHelper.jsView on unpkg · L1Install-time source drops package-supplied AI-agent/MCP control files or instructions.
scripts/postinstall.mjsView on unpkg · L10This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
scripts/postinstall.mjsView on unpkgPackage source invokes a package manager install command at runtime.
scripts/setup-windows.jsView on unpkg · L55Package ships non-JavaScript build or shell helper files.
bin/test_mcp.batView on unpkg