AI Security Review
scanned 2h ago · by lpm-firewall-aiReview flagged AI-agent configuration or capability changes. This remains warn-only unless evidence shows foreign-agent hijack through preinstall/install/postinstall, hidden persistence, exfiltration, remote code execution, or other concrete malicious behavior.
Decision evidence
public snapshot- `dist/commands-bulk.js` implements `vercel agent init`, which writes Vercel guidance into `AGENTS.md` or `CLAUDE.md` in the current project.
- The command can overwrite its marked section or append/create the agent instruction file.
- `dist/index.js` dispatches `agent` only when the user invokes that CLI subcommand.
- `package.json` has no `preinstall`, `install`, or `postinstall` lifecycle hook.
- `agent init` requires an interactive confirmation or explicit `--yes` when stdin is non-interactive.
- Writes are limited to the current project instruction file; no stealth persistence or foreign global agent configuration was found.
- No credential harvesting, payload download, or exfiltration chain was confirmed in inspected files.
- `dist/vc.js` only optionally launches a package-aligned native CLI binary, then loads the JS CLI.
Source & flagged code
12 flagged · loading sourceSource appears to send environment or credential material to an external endpoint.
dist/commands-bulk.jsView on unpkg · L2A package entrypoint or install-time lifecycle script reaches a source file with blocking dangerous behavior.
dist/commands-bulk.jsView on unpkg · L2A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/commands-bulk.jsView on unpkg · L7103Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/commands-bulk.jsView on unpkg · L2Source writes installer persistence such as shell profile or service configuration.
dist/commands-bulk.jsView on unpkg · L2Package source references weak cryptographic algorithms.
dist/commands-bulk.jsView on unpkg · L2Package source references dynamic require/import behavior.
dist/get-latest-worker.cjsView on unpkg · L16Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
dist/index.jsView on unpkg · L2Package contains source files above the static scanner size ceiling.
dist/chunks/chunk-TLHKETA6.jsView on unpkgThis package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/chunks/chunk-W346YNDN.jsView on unpkg