AI Security Review
scanned 5h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- src/cli/create.ts scaffolds AI assistant files by default during `toiljs create` unless `--no-ai` or deselected.
- src/compiler/docs.ts defines CLAUDE.md, AGENTS.md, Cursor, and Copilot pointer-file contents for generated projects.
- package.json has no preinstall/install/postinstall hooks; only prepublishOnly build.
- src/cli/notify.ts npm registry update check is bounded, opt-out, cache-only, and package-aligned.
- src/cli/proc.ts child_process use supports explicit CLI actions such as create/configure/update/build.
- src/compiler/plugin.ts AI proxy is devserver-only, config-gated, same-origin checked, and uses user-configured keys/endpoints.
- No credential harvesting, stealth persistence, destructive behavior, or import/install-time execution found.
Source & flagged code
4 flagged · loading sourcePackage source references child process execution.
tests/data-parity/generated-parity.tsView on unpkg · L9Package source references dynamic require/import behavior.
tests/data-parity/generated-parity.tsView on unpkg · L60A single source file combines environment access, network access, and code or shell execution; review context before blocking.
build/compiler/plugin.jsView on unpkg · L1