registry  /  @certd/plugin-plus  /  1.42.0

@certd/plugin-plus@1.42.0

This template should help get you started developing with Vue 3 and TypeScript in Vite. The template uses Vue 3 `<script setup>` SFCs, check out the [script setup docs](https://v3.vuejs.org/api/sfc-script-setup.html#sfc-script-setup) to learn more.

AI Security Review

scanned 2h ago · by lpm-firewall-ai

No source-grounded attack surface assessment could be completed in this response.

Static reason
One or more suspicious static signals were detected.
Trigger
unknown
Impact
unknown
Mechanism
unknown
Rationale
Filesystem inspection is required by the task before a clean/suspicious/malicious verdict, but the inspection step failed before file reads were performed.

Decision evidence

public snapshot
AI called this Manual Review at 0.0% confidence as Unknown with high false-positive risk.
Evidence for warning
  • Inspection was not completed due to an internal tool-output formatting error before filesystem commands could be run.
Evidence against
    Behavioral surface
    Source
    Filesystem
    Supply chain
    HighEntropyStringsMinifiedUrlStrings
    Manifest
    NoLicense
    scanned 3 file(s), 19.8 KB of source, external domains: account.dcloud.net.cn, console.xinnet.com, dcp.xinnet.com, domain.xinnet.com, login.xinnet.com, testaa.5678.jp, unicloud-api.dcloud.net.cn, unicloud.dcloud.net.cn, www.xinnet.com

    Source & flagged code

    2 flagged · loading source
    dist/index.jsView file
    1patternName = private_key_rsa severity = critical line = 1 matchedText = import e...us};
    Critical
    Critical Secret

    Package contains a critical-looking secret pattern.

    dist/index.jsView on unpkg · L1
    1patternName = private_key_rsa severity = critical line = 1 matchedText = import e...us};
    Critical
    Secret Pattern

    RSA private key in dist/index.js

    dist/index.jsView on unpkg · L1

    Findings

    2 Critical5 Low
    CriticalCritical Secretdist/index.js
    CriticalSecret Patterndist/index.js
    LowScripts Present
    LowFilesystem
    LowHigh Entropy Strings
    LowUrl Strings
    LowNo License