Static Scan Results
scanned 8d ago · by rust-scannerStatic analysis flagged 14 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
HighEntropyStringsMinifiedObfuscatedProtestwareTelemetryUrlStrings
Source & flagged code
3 flagged · loading sourcedist/chunk-JGRVQJHX.jsView file
25867// ../integration-commoncrawl/src/plugin-installer.ts
L25868: import { spawn } from "child_process";
L25869: import fs4 from "fs/promises";
High
Child Process
Package source references child process execution.
dist/chunk-JGRVQJHX.jsView on unpkg · L25867dist/cli.jsView file
10353databasePath,
L10354: apiUrl: env.apiUrl || existingConfig?.apiUrl || `http://localhost:${process.env.CANONRY_PORT || "4100"}`,
L10355: providers: Object.keys(mergedProviders ?? {}),
...
L10368: // src/commands/daemon.ts
L10369: import { spawn } from "child_process";
L10370: import fs9 from "fs";
High
Same File Env Network Execution
A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/cli.jsView on unpkg · L10353dist/chunk-6PHBWPPN.jsView file
187var _require = createRequire(import.meta.url);
L188: var { version: VERSION } = _require("../package.json");
L189: var TELEMETRY_ENDPOINT = "https://canonry.ai/api/telemetry";
L190: var TIMEOUT_MS = 3e3;
...
L201: function isTelemetryEnabled() {
L202: if (process.env.CANONRY_TELEMETRY_DISABLED === "1") return false;
L203: if (process.env.DO_NOT_TRACK === "1") return false;
L204: if (process.env.CI) return false;
L205: if (!configExists()) return true;
...
L243: try {
L244: const hostname = os.hostname() || "";
L245: const mac = firstNonInternalMac();
High
Host Fingerprint Exfiltration
Source collects local host identity data and sends it to an external endpoint.
dist/chunk-6PHBWPPN.jsView on unpkg · L187Findings
4 High4 Medium6 Low
HighChild Processdist/chunk-JGRVQJHX.js
HighShell
HighSame File Env Network Executiondist/cli.js
HighHost Fingerprint Exfiltrationdist/chunk-6PHBWPPN.js
MediumNetwork
MediumEnvironment Vars
MediumProtestware
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings