registry  /  @fern-api/php-dynamic-snippets  /  2.11.1

@fern-api/php-dynamic-snippets@2.11.1

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 7 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcess
Supply chain
HighEntropyStringsMinifiedObfuscatedUrlStrings
Manifest
NoLicense
scanned 2 file(s), 264 KB of source, external domains: feross.org, lodash.com, openjsf.org, underscorejs.org

Source & flagged code

2 flagged · loading source
dist/index.jsView file
27patternName = generic_password severity = medium line = 27 matchedText = `,gt=cla...or};
Medium
Secret Pattern

Package contains a possible secret pattern.

dist/index.jsView on unpkg · L27
dist/index.cjsView file
27patternName = generic_password severity = medium line = 27 matchedText = `,nt=cla...r});
Medium
Secret Pattern

Hardcoded password in dist/index.cjs

dist/index.cjsView on unpkg · L27

Findings

3 Medium4 Low
MediumSecret Patterndist/index.js
MediumStructural Risk Force Deep Review
MediumSecret Patterndist/index.cjs
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings
LowNo License