registry  /  @dereekb/firebase  /  13.25.0

@dereekb/firebase@13.25.0

@dereekb/firebase =======

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 7 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEvalFilesystemNetwork
Supply chain
HighEntropyStrings
Manifest
NoLicense
scanned 8 file(s), 3.28 MB of source

Source & flagged code

1 flagged · loading source
eslint/index.cjs.jsView file
4254value: function withAst(node) { L4255: var _$_class_private_field_get; L4256: if (_class_private_field_get$5(this, _node$1) || !(node === null || node === void 0 ? void 0 : node.input)) return this;
High
Obfuscated Payload Loader

Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.

eslint/index.cjs.jsView on unpkg · L4254

Findings

1 High2 Medium4 Low
HighObfuscated Payload Loadereslint/index.cjs.js
MediumNetwork
MediumStructural Risk Force Deep Review
LowEval
LowFilesystem
LowHigh Entropy Strings
LowNo License