Back to plugin

Security audit

Oversee Agent Management

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed telemetry plugin, but it can send agent files and optionally chat/tool content externally, and its in-chat controls and privacy wording need careful review before installation.

Install only if you trust the configured Oversee endpoint and understand that agent identity files leave your machine at startup. Keep output capture and readUserData off unless needed, restrict who can run `/oversee capture on`, and verify the publisher clarifies the LLM-output privacy claim before using this in sensitive environments.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec, suspicious.env_credential_access, suspicious.exposed_secret_literal (+1 more)

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/index.mjs:3959
Evidence
const match = TRACE_PARENT_REGEX.exec(traceParent);

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
dist/index.mjs:2130
Evidence
const processEnv = (0, environment_1.parseEnvironment)(process.env);

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
dist/index.mjs:57274
Evidence
privateKey: [REDACTED]

Sensitive-looking file read is paired with a network send.

Warn
Code
suspicious.potential_exfiltration
Location
dist/index.mjs:6382
Evidence
const result = await fs_1.promises.readFile("/etc/hostid", { encoding: "utf8" });