Static Scan Results
scanned 4d ago · by rust-scannerStatic analysis flagged 15 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Decision evidence
public snapshotSource & flagged code
5 flagged · loading sourcePackage contains a critical-looking secret pattern.
dist/renderer/main_window/assets/index-DTrCNVev.jsView on unpkg · L882Supabase service role key (JWT) in dist/renderer/main_window/assets/index-DTrCNVev.js
dist/renderer/main_window/assets/index-DTrCNVev.jsView on unpkg · L882Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.
dist/renderer/main_window/assets/index-DTrCNVev.jsView on unpkg · L1Package source references dynamic require/import behavior.
dist/renderer/main_window/assets/index-DTrCNVev.jsView on unpkg · L373Package source references a known benign dynamic code generation pattern.
dist/renderer/main_window/assets/index-DTrCNVev.jsView on unpkg · L813