registry  /  @coreframe/scripts  /  0.1.7

@coreframe/scripts@0.1.7

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis completed at 65.0% confidence. No malicious behavior was detected; 9 low-signal pattern(s) were surfaced and cleared.

Static reason
No blocking static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessDynamicRequireEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsMinifiedUrlStrings
Manifest
NoLicense
scanned 35 file(s), 73.7 KB of source, external domains: github.com

Source & flagged code

1 flagged · loading source
dist/config.jsView file
1import{access as e}from"node:fs/promises";import{resolve as t}from"node:path";import{pathToFileURL as n}from"node:url";function r(e){return e}async function i({cwd:r=process.cwd()}...
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/config.jsView on unpkg · L1

Findings

4 Medium5 Low
MediumDynamic Requiredist/config.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings
LowNo License