Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 5 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
HighEntropyStringsUrlStrings
Source & flagged code
1 flagged · loading sourcedist/manifest.jsView file
60actorId: "agent-a",
L61: allowedOrigin: "https://api.example",
L62: maximumUses: 1,
...
L178: const results = await Promise.all([
L179: scenario("egress/private-network", async () => {
L180: const harness = await create();
L181: await rejects(() => harness.request("https://169.254.169.254/latest"));
L182: }),
...
L819: function IsNonEscaped(pattern, index, char) {
L820: return pattern[index] === char && pattern.charCodeAt(index - 1) !== 92;
L821: }
High
Cloud Metadata Access
Source reaches cloud instance metadata or link-local credential endpoints.
dist/manifest.jsView on unpkg · L60Findings
1 High1 Medium3 Low
HighCloud Metadata Accessdist/manifest.js
MediumStructural Risk Force Deep Review
LowScripts Present
LowHigh Entropy Strings
LowUrl Strings