AI Security Review
scanned 2h ago · by lpm-firewall-aiNo confirmed malicious attack surface is established. The package is a lazy native CLI bootstrapper that downloads, verifies, caches, and executes a ControlKeel binary only when invoked.
Decision evidence
public snapshot- lib/install.js downloads a native binary from GitHub Releases on first CLI/programmatic use.
- bin/controlkeel.js and index.js spawn the downloaded binary with user-supplied arguments.
- lib/install.js uses process.env only for CONTROLKEEL_SKIP_SIGNATURE and CONTROLKEEL_REQUIRE_SIGNATURE signature verification toggles.
- package.json has no preinstall/install/postinstall lifecycle scripts.
- Download source is hardcoded to aryaminus/controlkeel GitHub Releases and package version 0.3.59.
- lib/install.js verifies SHA-256 checksums before caching the binary and optionally verifies cosign signatures.
- No credential harvesting, broad filesystem scanning, agent config mutation, persistence, or destructive behavior found in package source.
- Network and execution behavior are package-aligned and activated by running/importing the CLI, not npm install.
Source & flagged code
3 flagged · loading sourceA single source file combines environment access, network access, and code or shell execution; review context before blocking.
lib/install.jsView on unpkg · L200Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
lib/install.jsView on unpkg · L6