registry  /  @100xprompt/cli-darwin-arm64  /  0.0.0-dev-scoped1

@100xprompt/cli-darwin-arm64@0.0.0-dev-scoped1

AI Security Review

scanned 18h ago · by lpm-firewall-ai

No confirmed malicious attack surface. The only lifecycle action is macOS codesigning of the package-owned native binary; agent and provider capabilities appear runtime/user-invoked.

Static reason
One or more suspicious static signals were detected.
Trigger
npm install postinstall; later user-invoked binary runtime
Impact
No unconsented persistence, exfiltration, or foreign agent control-surface mutation confirmed
Mechanism
package-owned binary codesign and runtime AI CLI
Rationale
Static inspection found suspicious primitives expected for a native AI CLI, but the lifecycle hook is limited to codesigning its own binary and no unconsented control-surface mutation or exfiltration was confirmed. Runtime network and agent features appear package-aligned and user-invoked.
Evidence
package.jsonbin/100xpromptbin/index.js.mapbin/worker.js.mapbin/parser.worker.js.map./bin/100xprompt
Network endpoints7
api.100xprompt.aiapi.100xprompt.com/v1api.dev.100xprompt.ai100xprompt.comapi.github.comapi.openai.com/v1api.anthropic.com/v1

Decision evidence

public snapshot
AI called this Clean at 82.0% confidence as Benign with low false-positive risk.
Evidence for block
  • Ships large native Mach-O executable at bin/100xprompt
  • package.json postinstall runs codesign against ./bin/100xprompt
  • Runtime source maps show an agent CLI with model/provider network support
Evidence against
  • Postinstall only removes/reapplies ad-hoc signature to package-owned binary
  • No install-time writes to home/project AI-agent control surfaces found
  • No credential harvesting or exfiltration behavior confirmed from inspected maps
  • Network endpoints are package/provider aligned for an AI CLI
  • No package.json bin/main import-time JavaScript entrypoint
Behavioral surface
SourceNo risky source behavior triggered.
Supply chainNo supply-chain packaging signals triggered.
Manifest
NoLicense
scanned 0 file(s), 0 B of source

Source & flagged code

3 flagged · loading source
package.jsonView file
scripts.postinstall = codesign --remove-signature ./bin/100xprompt || true; codesign --sign - --force --preserve-metadata=entitlements,requirements,flags,runtime ./bin/100xprompt || true
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
scripts.postinstall = codesign --remove-signature ./bin/100xprompt || true; codesign --sign - --force --preserve-metadata=entitlements,requirements,flags,runtime ./bin/100xprompt || true
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg
bin/100xpromptView file
path = bin/100xprompt kind = native_binary sizeBytes = 112361920 magicHex = [redacted]
Medium
Ships Native Binary

Package ships native binary artifacts.

bin/100xpromptView on unpkg

Findings

1 High2 Medium2 Low
HighInstall Time Lifecycle Scriptspackage.json
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumShips Native Binarybin/100xprompt
LowScripts Present
LowNo License