Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 13 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessEnvironmentVarsFilesystemNetwork
HighEntropyStringsUrlStrings
Source & flagged code
6 flagged · loading sourceREADME.mdView file
•| `security/injection/override-attempt` | error | "Ignore previous instructions" style payload (defensive mentions are not flagged) |
High
Ai Reviewer Manipulation
Package text addresses the security reviewer or scanner and tries to influence the review outcome.
README.mdView on unpkgdist/test.jsView file
107patternName = github_pat
severity = critical
line = 107
matchedText = const pa...0');
Critical
107patternName = github_pat
severity = critical
line = 107
matchedText = const pa...0');
Critical
114patternName = github_pat
severity = critical
line = 114
matchedText = const pa...0');
Critical
233patternName = github_pat
severity = critical
line = 233
matchedText = fs.write...n');
Critical
184patternName = generic_password
severity = medium
line = 184
matchedText = const fi...n');
Medium
Findings
4 Critical1 High3 Medium5 Low
CriticalCritical Secretdist/test.js
CriticalSecret Patterndist/test.js
CriticalSecret Patterndist/test.js
CriticalSecret Patterndist/test.js
HighAi Reviewer ManipulationREADME.md
MediumNetwork
MediumEnvironment Vars
MediumSecret Patterndist/test.js
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings