Security audit
Telnyx SMS/MMS Channel
Security checks across malware telemetry and agentic risk
Overview
This looks like a real Telnyx SMS plugin, but its allowlist behavior can unintentionally let anyone who knows the phone number reach the assistant when the allowlist is empty.
Before installing, set webhookPublicKey and explicit allowFrom phone numbers; do not leave the allowlist empty unless you are comfortable with anyone texting the number. Verify the package identity if installing manually, monitor Telnyx usage, and remember that SMS/MMS content may be stored in agent conversation context.
VirusTotal
VirusTotal engine telemetry is currently stale for this artifact.
Static analysis
No suspicious patterns detected.
