registry  /  @aztec/noir-contracts.js  /  5.0.1

@aztec/noir-contracts.js@5.0.1

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 4 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
SourceNo risky source behavior triggered.
Supply chainNo supply-chain packaging signals triggered.
Manifest
NoLicense
scanned 104 file(s), 324 KB of source

Source & flagged code

2 flagged · loading source
artifacts/handshake_registry_contract-HandshakeRegistry.jsonView file
10384patternName = google_api_key severity = high line = 10384 matchedText = "bytecod...oA",
High
High Secret

Package contains a high-severity secret pattern.

artifacts/handshake_registry_contract-HandshakeRegistry.jsonView on unpkg · L10384
10384patternName = google_api_key severity = high line = 10384 matchedText = "bytecod...oA",
High
Secret Pattern

Google API key in artifacts/handshake_registry_contract-HandshakeRegistry.json

artifacts/handshake_registry_contract-HandshakeRegistry.jsonView on unpkg · L10384

Findings

2 High2 Low
HighHigh Secretartifacts/handshake_registry_contract-HandshakeRegistry.json
HighSecret Patternartifacts/handshake_registry_contract-HandshakeRegistry.json
LowScripts Present
LowNo License