Static Scan Results
scanned 3d ago · by rust-scannerStatic analysis completed at 65.0% confidence. No malicious behavior was detected; 9 low-signal pattern(s) were surfaced and cleared.
Static reason
No blocking static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessEnvironmentVarsFilesystemNetworkShell
HighEntropyStringsMinifiedUrlStrings
Source & flagged code
3 flagged · loading sourcedist/cli.jsView file
474import { Command as Command4 } from "commander";
L475: import { spawn } from "child_process";
L476: import { existsSync as existsSync2 } from "fs";
High
583stdio: "inherit",
L584: shell: true,
L585: env
High
573const grpcPort = await findAvailablePort(DEFAULT_GRPC_PORT, MAX_GRPC_PORT);
L574: apiUrl = `http://localhost:${port.toString()}`;
L575: process.env.HARNESS_API_URL = apiUrl;
L576: const env = {
...
L581: };
L582: server = startBundledServer(env) ?? spawn("pnpm", ["--filter", "@omega/server", "dev"], {
L583: stdio: "inherit",
High
Same File Env Network Execution
A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/cli.jsView on unpkg · L573Findings
3 High2 Medium4 Low
HighChild Processdist/cli.js
HighShelldist/cli.js
HighSame File Env Network Executiondist/cli.js
MediumNetwork
MediumEnvironment Vars
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings