registry  /  @emailmaker/emailmaker  /  1.1.37

@emailmaker/emailmaker@1.1.37

⚠ Under review

<p align="left"> <a href="https://emailmaker.ru/" target="blank"><img src="https://emcdn.ru/389992/240402_17_0uOwHpL.png" width="500" alt="EmailMaker" /></a> </p>

Static Scan Results

scanned 7h ago · by rust-scanner

Static analysis flagged 13 finding(s) at 86.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
High-risk behavior combination matched malicious policy.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessDynamicRequireEnvironmentVarsFilesystemNetwork
Supply chain
HighEntropyStringsMinifiedObfuscatedTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 199 file(s), 23.6 MB of source, external domains: a.klaviyo.com, api-b2b.backenster.com, api.brevo.com, api.cc.email, api.createsend.com, api.emailmaker.ru, api.enkod.ru, api.eu.amplitude.com, api.getresponse.com, api.giphy.com, api.hubapi.com, api.sendsay.ru, api.unsplash.com, api2.amplitude.com, app.amplitude.com, app.bentonow.com, app.emailmaker.ru, app.eu.amplitude.com, apps.stag2.amplitude.com, bit.ly, bugzilla.mozilla.org, cdn.amplitude.com, cdn.ampproject.org, cdn.jsdelivr.net, cdn.useblocks.io, code.google.com, code.visualstudio.com, developer.mozilla.org, developers.google.com, diagnostics.prod.eu-central-1.amplitude.com, diagnostics.prod.us-west-2.amplitude.com, drafts.csswg.org, emailmaker.ru, emcdn.ru, en.wikipedia.org, example.com, fb.me, fonts.googleapis.com, fonts.gstatic.com, giphy.com, github.com, googlechrome.github.io, hacks.mozilla.org, help.yahoo.com, html.spec.whatwg.org, html2pdf.emcdn.ru, htmlhint.com, images.unsplash.com, mailganer.com, microsoft.com
Oversized source lightweight scan
assets/ts.worker-CH550FfQ.js6.58 MB file, sampled 256 KB
FilesystemNetworkChildProcessEnvironmentVars
monacoeditorwork/ts.worker.bundle.js6.58 MB file, sampled 256 KB
FilesystemNetworkChildProcessEnvironmentVarsMinified
static/core/b8e0a832.js2.30 MB file, sampled 256 KB
HighEntropyStringsMinifiedUrlStringscdn.ampproject.orgemailmaker.rufonts.googleapis.comwidget.cloudpayments.ru
static/core/ef4e808c.js2.35 MB file, sampled 256 KB
NetworkChildProcessMinifiedUrlStringswww.w3.org

Source & flagged code

5 flagged · loading source
iframe/js/sanitize-html/sanitize-html.jsView file
255*/ 'use strict'; L256: var base64 = require('base64-js'); L257: var ieee754 = require('ieee754');
Medium
Dynamic Require

Package source references dynamic require/import behavior.

iframe/js/sanitize-html/sanitize-html.jsView on unpkg · L255
iframe/js/iframe-eblock.jsView file
1const iframe_eblock_js_Ri=iframe_eblock_js_G;function iframe_eblock_js_O(){const bm=['zw0TDMLUzgvUDa','Bw9IAwXLugfKzgLUzW','Bw9KDwXLswq','yMfJA2DYB3vUzfjLCgvHDa','w2vTpsjNCM91CcjD'...
High
Obfuscated Payload Loader

Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.

iframe/js/iframe-eblock.jsView on unpkg · L1
monacoeditorwork/html.worker.bundle.jsView file
27contains invisible/control Unicode U+2060 (word joiner) `,"nexist;":`∄`,"nexists;":`∄`,"Nfr;":`𝔑`,"nfr;":`𝔫`,"ngE;":`≧̸`,"nge;":`≱`,"ngeq;":`≱`,"ngeqq;":`≧̸`,"ngeqslant;":`⩾̸`,"nges;":`⩾̸`,"nGg;":`⋙̸`,"ngsim;":`≵`,"nGt;":`≫⃒`,"ngt;":`≯`,"ngtr;":`≯`,"nGtv;":`≫̸`,"nhArr;":`⇎`,"nharr;":`↮`,"nhpar;"
Critical
Trojan Source Unicode

Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.

monacoeditorwork/html.worker.bundle.jsView on unpkg · L27
iframe/fonts/line-awesome/la-solid-900.woffView file
path = iframe/fonts/line-awesome/la-solid-900.woff kind = high_entropy_blob sizeBytes = 125421 magicHex = [redacted]
High
Ships High Entropy Blob

Package ships high-entropy non-source blobs.

iframe/fonts/line-awesome/la-solid-900.woffView on unpkg
monacoeditorwork/ts.worker.bundle.jsView file
path = monacoeditorwork/ts.worker.bundle.js kind = oversized_source_file sizeBytes = 6901939 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

monacoeditorwork/ts.worker.bundle.jsView on unpkg

Findings

1 Critical3 High4 Medium5 Low
CriticalTrojan Source Unicodemonacoeditorwork/html.worker.bundle.js
HighObfuscated Payload Loaderiframe/js/iframe-eblock.js
HighShips High Entropy Blobiframe/fonts/line-awesome/la-solid-900.woff
HighOversized Source Filemonacoeditorwork/ts.worker.bundle.js
MediumDynamic Requireiframe/js/sanitize-html/sanitize-html.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings