I have a tool that I built in Go[0], so it has its own binary, would this help to facilitate helping people install those? I have seen tools coded in Rust and Go distributed by npm install and it always bothers me, especially with npm repeatedly being a hotbed of hacked accounts.

Tools that come to mind:

RTK (Rust Token Killer since googling the acronym yields terrible results, asking an LLM without spelling it out too)

Beads (what GuardRails was inspired by)

... and an endless list of tools people have made in place of making an MCP.

I too thought about having a "AI Package manager" just found the message I sent a friend several months back.

[0]: https://github.com/Giancarlos/guardrails