registry  /  @clovapi/cli  /  0.2.0

@clovapi/cli@0.2.0

Global npm launcher for the clovapi CLI

AI Security Review

scanned 10d ago · by lpm-firewall-ai

No confirmed malicious attack surface was established. The package is a global CLI launcher whose install script downloads and installs a platform binary for clovapi, with checksum verification and documented endpoints.

Static reason
One or more suspicious static signals were detected.
Trigger
npm postinstall or user running clovapi
Impact
Installs and executes the clovapi CLI binary when invoked by the user
Mechanism
download-and-install CLI binary launcher
Rationale
Static inspection shows install-time binary download and child_process use, but both are aligned with the documented CLI launcher behavior and scoped to installing/replacing the clovapi executable. I found no source evidence of exfiltration, destructive behavior, stealth persistence, dependency confusion, or unconsented agent-control mutation.
Evidence
package.jsonbin/clovapi.jsscripts/install.jsscripts/paths.jsscripts/win-replace.jsREADME.md~/.config/clovapi/bin/clovapi~/.config/clovapi/bin/version.txt%APPDATA%/clovapi/bin/clovapi.exevendor/clovapi
Network endpoints2
downloads.clovapi.com/clovapi/<versionTag>github.com/joohw/clovapi/releases/download/<versionTag>

Decision evidence

public snapshot
AI called this Clean at 87.0% confidence as Benign with medium false-positive risk.
Evidence for block
  • package.json defines postinstall: node scripts/install.js
  • scripts/install.js downloads platform archives during install
  • scripts/win-replace.js can spawn existing clovapi proxy stop and powershell.exe on Windows
Evidence against
  • bin/clovapi.js only forwards user CLI args to installed clovapi binary
  • scripts/install.js verifies archive SHA-256 against checksums.txt before installing
  • Download hosts are package-aligned: downloads.clovapi.com and GitHub releases for joohw/clovapi
  • Writes are limited to clovapi config/bin paths and package vendor fallback
  • No credential harvesting, broad filesystem enumeration, persistence, or AI-agent control-surface writes found
  • Only bundled vendor file is vendor/.gitkeep; no hidden binary payload in package
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystemNetwork
Supply chain
UrlStrings
ManifestNo manifest risk signals triggered.
scanned 4 file(s), 11.7 KB of source, external domains: downloads.clovapi.com, github.com

Source & flagged code

2 flagged · loading source
package.jsonView file
scripts.postinstall = node scripts/install.js
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
scripts.postinstall = node scripts/install.js
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg

Findings

1 High3 Medium3 Low
HighInstall Time Lifecycle Scriptspackage.json
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumNetwork
MediumEnvironment Vars
LowScripts Present
LowFilesystem
LowUrl Strings