Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 8 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessNetwork
HighEntropyStringsMinifiedUrlStrings
Source & flagged code
2 flagged · loading sourcedist/src/ui/viewer/components/Branding.jsView file
10* - The literal docmentis.com URL is not rendered in any `href` attribute;
L11: * a click handler decodes it from a base64 `data-h` attribute at runtime,
L12: * defeating `a[href*="docmentis.com"]` selectors.
...
L29: const __getComputedStyle = typeof window !== "undefined" ? window.getComputedStyle.bind(window) : undefined;
L30: // "https://docmentis.com" — held base64 so `a[href*="docmentis.com"]` and
L31: // text-scans of the bundle do not find it on the rendered element.
...
L70: const url = atob(link.dataset.h ?? "");
L71: window.open(url, "_blank", "noopener,noreferrer");
L72: }
High
Base64 Obscured Url
Source decodes a Base64-obscured HTTP endpoint at runtime.
dist/src/ui/viewer/components/Branding.jsView on unpkg · L10dist/src/wasm/udoc_bg.wasmView file
•path = dist/src/wasm/udoc_bg.wasm
kind = wasm_module
sizeBytes = 19056378
magicHex = [redacted]
Medium
Findings
1 High3 Medium4 Low
HighBase64 Obscured Urldist/src/ui/viewer/components/Branding.js
MediumNetwork
MediumShips Wasm Moduledist/src/wasm/udoc_bg.wasm
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowHigh Entropy Strings
LowUrl Strings