Static Scan Results
scanned 3h ago · by rust-scannerStatic analysis flagged 12 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessEnvironmentVarsEvalFilesystemNetworkShell
HighEntropyStringsObfuscatedTelemetryUrlStrings
Oversized source lightweight scan
dist/ErrorContextProvider-BnLUtXr3.js2.61 MB file, sampled 256 KB
dist/ErrorContextProvider-Dv379vmw.js7.25 MB file, sampled 256 KB
dist/pdfmake-Cf-381ou-CKcSM_ag-CHRqO4d-.js2.66 MB file, sampled 256 KB
FilesystemChildProcessEvalShellUrlStringsgithub.com
Source & flagged code
3 flagged · loading sourcedist/ManageUser-Gv38VHMu-B68GprdY-Dh5RrVUt.jsView file
644patternName = generic_password
severity = medium
line = 644
matchedText = password...23",
Medium
Secret Pattern
Package contains a possible secret pattern.
dist/ManageUser-Gv38VHMu-B68GprdY-Dh5RrVUt.jsView on unpkg · L644dist/ManageAllForms-BrBSYMBd.jsView file
1153const S = g.setterMethod.replace(/#\w+#/g, "0");
L1154: new Function(S);
L1155: }
Low
Eval
Package source references a known benign dynamic code generation pattern.
dist/ManageAllForms-BrBSYMBd.jsView on unpkg · L1153dist/ErrorContextProvider-BnLUtXr3.jsView file
•path = dist/ErrorContextProvider-BnLUtXr3.js
kind = oversized_source_file
sizeBytes = 2735938
magicHex = [redacted]
High
Oversized Source File
Package contains source files above the static scanner size ceiling.
dist/ErrorContextProvider-BnLUtXr3.jsView on unpkgFindings
1 High4 Medium7 Low
HighOversized Source Filedist/ErrorContextProvider-BnLUtXr3.js
MediumSecret Patterndist/ManageUser-Gv38VHMu-B68GprdY-Dh5RrVUt.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowEvaldist/ManageAllForms-BrBSYMBd.js
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings