registry  /  @treeship/cli-darwin-x64  /  0.18.0

@treeship/cli-darwin-x64@0.18.0

Treeship CLI binary for darwin x64

AI Security Review

scanned 4d ago · by lpm-firewall-ai

No confirmed malicious attack surface. The install hook downloads a platform CLI binary from the project's GitHub release and verifies it against an npm-shipped SHA-256 before making it executable.

Static reason
One or more suspicious static signals were detected.
Trigger
npm install/postinstall
Impact
Installs the Treeship CLI binary into the package directory; no source evidence of exfiltration, persistence, destructive behavior, or AI-agent control mutation.
Mechanism
checksum-verified platform binary download
Rationale
Static inspection shows a postinstall downloader, but its behavior is narrowly package-aligned and checksum-gated, with no credential access, code execution beyond installing the CLI binary, or unrelated control-surface mutation. The scanner's lifecycle/network hints are explained by expected platform-binary packaging behavior.
Evidence
package.jsonpostinstall.jsbinary.jsexpected-checksum.txtREADME.mdbin/treeship.partialbin/treeship
Network endpoints2
github.com/zerkerlabs/treeship/releases/download/v0.18.0/treeship-darwin-x86_64github.com/zerkerlabs/treeship

Decision evidence

public snapshot
AI called this Clean at 93.0% confidence as Benign with low false-positive risk.
Evidence for block
  • package.json defines postinstall: node postinstall.js
  • postinstall.js downloads a native CLI binary during install
  • postinstall.js writes bin/treeship.partial, renames to bin/treeship, and chmods executable
Evidence against
  • Download URL is package-aligned GitHub release for zerkerlabs/treeship version 0.18.0
  • expected-checksum.txt contains a 64-char SHA-256 and postinstall.js aborts on mismatch
  • No child_process, eval, credential/env harvesting, broad filesystem scanning, or agent config writes found
  • binary.js only exports the local bin/treeship path
  • Package contains only package.json, postinstall.js, binary.js, README.md, and expected-checksum.txt
Behavioral surface
Source
CryptoFilesystemNetwork
Supply chain
UrlStrings
ManifestNo manifest risk signals triggered.
scanned 2 file(s), 5.12 KB of source, external domains: github.com

Source & flagged code

2 flagged · loading source
package.jsonView file
scripts.postinstall = node postinstall.js
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
scripts.postinstall = node postinstall.js
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg

Findings

1 High2 Medium3 Low
HighInstall Time Lifecycle Scriptspackage.json
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumNetwork
LowScripts Present
LowFilesystem
LowUrl Strings