AI Security Review
scanned 4h ago · by lpm-firewall-aiLPM treats this as warn-only first-party agent extension lifecycle risk. The package is a thin JS wrapper for a platform-specific compiled CLI with an install-time binary cache. The unresolved risk is lifecycle copying of an executable into a first-party Trumbo home/app-data path, but no confirmed malicious source behavior is present.
Decision evidence
public snapshot- package.json defines postinstall: node ./postinstall.mjs || true
- postinstall.mjs copies platform binary from @trumbodev/cli-<platform>-<arch> during install
- local-binary-cache.mjs writes executable cache under ~/.trumbo/bin/trumbo or %LOCALAPPDATA%/Trumbo/bin/trumbo.exe
- bin/trumbo executes cached/platform binary and honors TRUMBO_BIN_PATH override
- No code in wrapper/postinstall writes Claude/Codex/Cursor/MCP control files
- No fetch/http client or exfiltration endpoint in executable JS sources
- Lifecycle behavior is package-aligned binary caching, not foreign agent hijack
- No eval/vm/Function or remote code loading in JS wrapper files
- bin/trumbo only runs on explicit CLI invocation after install
Source & flagged code
3 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgPackage ships non-JavaScript build or shell helper files.
bin/trumbo.cmdView on unpkg