registry  /  @beignet/provider-locks-redis  /  0.0.30

@beignet/provider-locks-redis@0.0.30

Redis-backed lock and lease provider for Beignet

Static Scan Results

scanned 7h ago · by rust-scanner

Static analysis flagged 5 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
Eval
Supply chainNo supply-chain packaging signals triggered.
Manifest
WildcardDependency
scanned 2 file(s), 28.6 KB of source

Source & flagged code

3 flagged · loading source
dist/index.jsView file
363patternName = generic_password severity = medium line = 363 matchedText = parsed.p...ed";
Medium
Secret Pattern

Package contains a possible secret pattern.

dist/index.jsView on unpkg · L363
src/index.tsView file
536patternName = generic_password severity = medium line = 536 matchedText = if (pars...ed";
Medium
Secret Pattern

Hardcoded password in src/index.ts

src/index.tsView on unpkg · L536
71export interface RedisLocksClient { L72: eval( L73: script: string,
Low
Eval

Package source references a known benign dynamic code generation pattern.

src/index.tsView on unpkg · L71

Findings

3 Medium2 Low
MediumSecret Patterndist/index.js
MediumWildcard Dependency
MediumSecret Patternsrc/index.ts
LowScripts Present
LowEvalsrc/index.ts