AI Security Review
scanned 2h ago · by lpm-firewall-aiPostinstall prepares a platform-specific Depot executable when its optional dependency is unavailable. The source shows package-local binary setup, not a confirmed malicious attack surface.
Decision evidence
public snapshot- `package.json` runs `node install.js` on postinstall.
- `install.js` can invoke npm and download a platform binary fallback.
- `install.js` fetches `https://registry.npmjs.org/...` and writes an executable.
- Fallback is limited to declared `@depot/cli-*` platform packages at the package version.
- Network access targets the npm registry only; no credential collection or exfiltration is present.
- Environment reads only select `DEPOT_BINARY_PATH` and package-manager metadata.
- Runtime wrapper executes the selected Depot binary only when the user invokes the CLI/API.
- No eval, remote script execution, AI-agent configuration mutation, or persistence beyond package-local binary setup found.
Source & flagged code
7 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgA single source file combines environment access, network access, and code or shell execution; review context before blocking.
install.jsView on unpkg · L25Source spawns a local helper that also contains network and dynamic execution context; review data flow before blocking.
install.jsView on unpkg · L25Package source invokes a package manager install command at runtime.
install.jsView on unpkg · L172Package source references dynamic require/import behavior.
install.jsView on unpkg · L25