Back to plugin

Security audit

Telnyx SMS/MMS Channel

Security checks across malware telemetry and agentic risk

Overview

This looks like a real Telnyx SMS plugin, but its allowlist behavior can unintentionally let anyone who knows the phone number reach the assistant when the allowlist is empty.

Before installing, set webhookPublicKey and explicit allowFrom phone numbers; do not leave the allowlist empty unless you are comfortable with anyone texting the number. Verify the package identity if installing manually, monitor Telnyx usage, and remember that SMS/MMS content may be stored in agent conversation context.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

No suspicious patterns detected.