AI Security Review
scanned 18h ago · by lpm-firewall-aiNo confirmed malicious attack surface. The only lifecycle action is macOS codesigning of the package-owned native binary; agent and provider capabilities appear runtime/user-invoked.
Static reason
One or more suspicious static signals were detected.
Trigger
npm install postinstall; later user-invoked binary runtime
Impact
No unconsented persistence, exfiltration, or foreign agent control-surface mutation confirmed
Mechanism
package-owned binary codesign and runtime AI CLI
Rationale
Static inspection found suspicious primitives expected for a native AI CLI, but the lifecycle hook is limited to codesigning its own binary and no unconsented control-surface mutation or exfiltration was confirmed. Runtime network and agent features appear package-aligned and user-invoked.
Evidence
package.jsonbin/100xpromptbin/index.js.mapbin/worker.js.mapbin/parser.worker.js.map./bin/100xprompt
Network endpoints7
api.100xprompt.aiapi.100xprompt.com/v1api.dev.100xprompt.ai100xprompt.comapi.github.comapi.openai.com/v1api.anthropic.com/v1
Decision evidence
public snapshotAI called this Clean at 82.0% confidence as Benign with low false-positive risk.
Evidence for block
- Ships large native Mach-O executable at bin/100xprompt
- package.json postinstall runs codesign against ./bin/100xprompt
- Runtime source maps show an agent CLI with model/provider network support
Evidence against
- Postinstall only removes/reapplies ad-hoc signature to package-owned binary
- No install-time writes to home/project AI-agent control surfaces found
- No credential harvesting or exfiltration behavior confirmed from inspected maps
- Network endpoints are package/provider aligned for an AI CLI
- No package.json bin/main import-time JavaScript entrypoint
Behavioral surface
NoLicense
Source & flagged code
3 flagged · loading sourcepackage.jsonView file
•scripts.postinstall = codesign --remove-signature ./bin/100xprompt || true; codesign --sign - --force --preserve-metadata=entitlements,requirements,flags,runtime ./bin/100xprompt || true
High
Install Time Lifecycle Scripts
Package defines install-time lifecycle scripts.
package.jsonView on unpkg•scripts.postinstall = codesign --remove-signature ./bin/100xprompt || true; codesign --sign - --force --preserve-metadata=entitlements,requirements,flags,runtime ./bin/100xprompt || true
Medium
Ambiguous Install Lifecycle Script
Install-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgbin/100xpromptView file
•path = bin/100xprompt
kind = native_binary
sizeBytes = 112361920
magicHex = [redacted]
Medium
Findings
1 High2 Medium2 Low
HighInstall Time Lifecycle Scriptspackage.json
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumShips Native Binarybin/100xprompt
LowScripts Present
LowNo License