Static Scan Results
scanned 15d ago · by rust-scannerStatic analysis flagged 7 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessEnvironmentVarsNetworkShell
HighEntropyStringsUrlStrings
CopyleftLicense
Source & flagged code
1 flagged · loading sourcebin/is-workflow-restarted.jsView file
12*
L13: * - CIRCLE_WORKFLOW_ID - provided by default by CircleCI and keeps the workflow id.
L14: * - CKE5_CIRCLE_TOKEN - an authorization token to talk to CircleCI REST API.
...
L22: CIRCLE_WORKFLOW_ID
L23: } = process.env;
L24:
L25: const requestUrl = `https://circleci.com/api/v2/workflow/${ CIRCLE_WORKFLOW_ID }`;
L26:
...
L34: fetch( requestUrl, requestOptions )
L35: .then( res => res.json() )
L36: .then( response => {
High
Sandbox Evasion Gated Capability
Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
bin/is-workflow-restarted.jsView on unpkg · L12Findings
1 High3 Medium3 Low
HighSandbox Evasion Gated Capabilitybin/is-workflow-restarted.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowHigh Entropy Strings
LowUrl Strings
LowCopyleft License