lintai docs

Appearance

Rule Reference

SEC450lintai-ai-securitysupply-chainhardeningstablemarkdownwarn

AI markdown: npm http registry

AI-native markdown installs JavaScript packages from an insecure `http://` registry

Public lane
supply-chain
Category
hardening
Provider
lintai-ai-security
Scope
per-file
Surface
markdown
Tier
stable
Severity
warn
Confidence
high
Detection
structural
Remediation
message only
How to read this lane

Reproducibility, provenance, and dependency hardening review.

How to read this category

Least-privilege, provenance, or operational hygiene signal.

Activation Model

Preset Activation

These presets explain where this rule appears in the product experience.

supply-chainsidecar lane

Lifecycle

Stable Lifecycle Contract

State

stable

Graduation rationale

Checks AI-native markdown for `npm`, `pnpm`, `yarn`, and `bun` install examples that point dependency resolution at `http://` registries.

Deterministic signal basis

MarkdownSignals exact `npm install`, `npm i`, `pnpm add/install`, `yarn add`, or `bun add` token analysis with `--registry http://` detection inside parsed markdown regions.

Malicious corpus
skill-npm-http-registry
Benign corpus
skill-npm-https-registry-safe
structured evidence required remediation reviewed
Canonical note

Structural stable rule positioned as a supply-chain hardening control: high-precision and actionable, but not a blanket claim of direct repository compromise.

Nearby Signals

Related Rules

SEC417AI markdown: unpinned pip git installAI-native markdown installs Python packages from an unpinned `git+https://` sourcesupply-chainhardeningmarkdown
SEC448AI markdown: pip trusted-hostAI-native markdown installs Python packages with `--trusted-host`supply-chainhardeningmarkdown
SEC449AI markdown: pip http indexAI-native markdown installs Python packages from an insecure `http://` package indexsupply-chainhardeningmarkdown
SEC451AI markdown: cargo http git installAI-native markdown installs Rust packages from an insecure `http://` git sourcesupply-chainhardeningmarkdown
SEC452AI markdown: cargo http indexAI-native markdown installs Rust packages from an insecure `http://` indexsupply-chainhardeningmarkdown
SEC453AI markdown: pip http sourceAI-native markdown installs Python packages from an insecure direct `http://` sourcesupply-chainhardeningmarkdown

SEC450 / MD-NPM-HTTP-REGISTRY

SEC450 flags AI-native markdown when an npm, pnpm, yarn, or bun install example uses --registry http://... or --registry=http://....

Why It Matters

JavaScript package install examples that force --registry http://... disable normal TLS protection for package resolution. In AI-native markdown, users often copy these commands directly.

Trigger Shape

lintai reports this rule when AI-native markdown contains an exact package-install command such as:

  • npm install ... --registry http://...
  • npm i ... --registry http://...
  • pnpm install ... --registry http://...
  • pnpm add ... --registry http://...
  • yarn add ... --registry http://...
  • bun add ... --registry http://...
  • npm install ... --registry=http://...
  • pnpm add ... --registry=http://...
  • yarn add ... --registry=http://...
  • bun add ... --registry=http://...

The finding points to the http:// source.

Clean Cases

  • npm install ... --registry https://...
  • pnpm add ... --registry https://...
  • yarn add ... --registry https://...
  • bun add ... --registry https://...
  • unrelated prose that does not contain an exact install command with --registry http://

Trigger Example

bash
npm install demo --registry http://registry.example.test/

Safer Example

bash
pnpm add demo --registry https://registry.example.test/

Remediation

Use a normal TLS-verified https:// package registry instead of an http:// registry.