AI Security Review
scanned 2h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `telodocs new` copies `template/AGENTS.md` into the user-selected project.
- The scaffold writes `.env` with a known default API key.
- `package.json` has only `prepublishOnly`; install does not execute package code.
- `new` is an explicit CLI command, validates the target, and only scaffolds selected project files.
- `serve` starts the packaged server via explicit `dev`/`start` commands; no runtime package-manager install occurs.
- Search spawns bundled ripgrep only for requested docs searches and constrains paths to `docs/`.
- No source evidence of secret harvesting, exfiltration, remote payload loading, eval, or destructive actions.
Source & flagged code
3 flagged · loading sourcePackage source references child process execution.
dist/server/search/search.service.jsView on unpkg · L55Package source invokes a package manager install command at runtime.
dist/cli/commands/serve.jsView on unpkg · L20This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/cli/commands/new.jsView on unpkg