I would like to package native executable inside my source code and use it using child_process module. is there any downside to this?
Is this executable something you wrote, or open source?
In that case, it should be pretty safe because you (and the community that uses that software generally) can make sure there’s nothing in the code that looks dangerous to your users. Watch out for performance issues. You should test to make sure it closes or doesn’t run away if your app crashes or other unexpected stuff happens.