AI Security Review
scanned 2h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `bin/tokencap.js` writes workspace-root `AGENTS.md` under explicit `tokencap agent`.
- `src/agent/buildAgent.js` creates AI-oriented instructions under `.tokencap/agent/`.
- `package.json` activates the VS Code extension on startup; save events can regenerate project-context files.
- `package.json` has no preinstall, install, or postinstall lifecycle hook.
- No HTTP client, credential harvesting, environment-secret access, or data exfiltration was found.
- Process execution is limited to local git inspection and an explicit local-file browser opener.
- Agent-control write is not performed by install or automatic extension activation.
Source & flagged code
3 flagged · loading source`bin/tokencap.js` writes workspace-root `AGENTS.md` under explicit `tokencap agent`.
bin/tokencap.jsView on unpkg`src/agent/buildAgent.js` creates AI-oriented instructions under `.tokencap/agent/`.
src/agent/buildAgent.jsView on unpkg`package.json` activates the VS Code extension on startup; save events can regenerate project-context files.
package.jsonView on unpkg