AI Security Review
scanned 2h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `dist/index.js` dispatches `install` only when explicitly invoked.
- `dist/install-4NVVSMNV.js` writes MCP entries to Claude, Cursor, Claude Code, and Windsurf configs.
- Installer stores `SEND16_API_KEY` in generated host configuration.
- Generated MCP config runs `npx -y send16-mcp` on host startup.
- `package.json` has no preinstall, install, postinstall, or prepare lifecycle hook.
- No child-process, shell, eval, native loading, or hidden import-time filesystem writes were found.
- `dist/index.js` sends authenticated requests only to configured Send16 API base URL.
- Config mutation is guarded behind the explicit `send16-mcp install` command.
Source & flagged code
2 flagged · loading source`dist/index.js` dispatches `install` only when explicitly invoked.
dist/index.jsView on unpkg`dist/install-4NVVSMNV.js` writes MCP entries to Claude, Cursor, Claude Code, and Windsurf configs.
dist/install-4NVVSMNV.jsView on unpkg