registry  /  @argusoft/medplat-form-engine  /  1.0.25

@argusoft/medplat-form-engine@1.0.25

MEDplat Form Engine

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 11 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEnvironmentVarsEvalFilesystemNetworkShell
Supply chain
HighEntropyStringsObfuscatedUrlStrings
ManifestNo manifest risk signals triggered.
scanned 89 file(s), 5.01 MB of source, external domains: api.example.com, cdn.jsdelivr.net, docs.oasis-open.org, example.com, github.com, motion.dev, openoffice.org, purl.oclc.org, purl.org, schemas.microsoft.com, schemas.openxmlformats.org, sheetjs.openxmlformats.org, www.w3.org
Oversized source lightweight scan
dist/index-D-tzB8q9.js2.61 MB file, sampled 256 KB
ChildProcessEvalHighEntropyStringsUrlStringsgithub.com
dist/pdfmake-Cf-381ou-BaK7yjWi.js2.66 MB file, sampled 256 KB
FilesystemChildProcessEvalShellUrlStringsgithub.com

Source & flagged code

2 flagged · loading source
dist/ManageUser-BnEPFSPT-CdTt3N9e.jsView file
644patternName = generic_password severity = medium line = 644 matchedText = password...23",
Medium
Secret Pattern

Package contains a possible secret pattern.

dist/ManageUser-BnEPFSPT-CdTt3N9e.jsView on unpkg · L644
dist/index-D-tzB8q9.jsView file
path = dist/index-D-tzB8q9.js kind = oversized_source_file sizeBytes = 2738183 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

dist/index-D-tzB8q9.jsView on unpkg

Findings

1 High4 Medium6 Low
HighOversized Source Filedist/index-D-tzB8q9.js
MediumSecret Patterndist/ManageUser-BnEPFSPT-CdTt3N9e.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowEval
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings