registry  /  @paulnsorensen/hallouminate-nightly  /  0.0.0-experimental.36.1

@paulnsorensen/hallouminate-nightly@0.0.0-experimental.36.1

EXPERIMENTAL rolling build of paulnsorensen/hallouminate off main — NOT the official `hallouminate` package

AI Security Review

scanned 2h ago · by lpm-firewall-ai

Install-time code fetches a mutable nightly native archive, extracts it into the package, and later launches it. The inspected JavaScript does not itself harvest data or alter external control surfaces.

Static reason
One or more suspicious static signals were detected.
Trigger
`npm install` runs postinstall; invoking `hallouminate` runs the downloaded binary.
Impact
A changed or compromised nightly release can supply executable code not contained in the reviewed package source.
Mechanism
postinstall remote-native-binary download and runtime launch
Rationale
This is a staged remote-payload carrier with install-time package-local mutation and no independently pinned artifact integrity. It warrants a warning, not a block, because the inspected source shows no concrete malicious chain or foreign/broad AI-agent mutation.
Evidence
package.jsoninstall.jsrun.jsbin/hallouminate
Network endpoints1
github.com/paulnsorensen/hallouminate/releases/download/nightly/

Decision evidence

public snapshot
AI called this Suspicious at 91.0% confidence as Dangerous Capability with low false-positive risk.
Evidence for warning
  • `package.json` runs `node install.js` on postinstall.
  • `install.js` downloads a version-independent nightly `.tar.xz` during installation.
  • The SHA-256 file is fetched from the same mutable release location as the archive.
  • `install.js` extracts the remote archive into `bin/` and marks its binary executable.
  • `run.js` executes the downloaded `bin/hallouminate` binary.
Evidence against
  • Only three source files are present and were inspected.
  • No credential, environment, home-directory, or arbitrary-file harvesting appears in source.
  • No data-exfiltration endpoint or foreign AI-agent configuration mutation appears.
  • Downloads are HTTPS-only, platform-restricted, and checksum-checked for transfer integrity.
Behavioral surface
Source
ChildProcessCryptoFilesystemNetwork
Supply chain
UrlStrings
ManifestNo manifest risk signals triggered.
scanned 2 file(s), 7.46 KB of source, external domains: github.com

Source & flagged code

2 flagged · loading source
package.jsonView file
scripts.postinstall = node install.js
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
scripts.postinstall = node install.js
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg

Findings

1 High2 Medium3 Low
HighInstall Time Lifecycle Scriptspackage.json
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumNetwork
LowScripts Present
LowFilesystem
LowUrl Strings