do you have a proof of concept that there is a security problem? This would also have implications for OSX!
On command line you will always be prompted for a password, so no automated scripts can be executed. For package management you always have to start it by actualy clicking.
You say: "I just want to be prompted to verify that I am who I claim to be. ", you are, when you login on startup.
Please show your security concerns with an example