Static Scan Results
scanned 4d ago · by rust-scannerStatic analysis completed at 65.0% confidence. No malicious behavior was detected; 8 low-signal pattern(s) were surfaced and cleared.
Static reason
No blocking static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemShell
HighEntropyStringsUrlStrings
WildcardDependency
Source & flagged code
1 flagged · loading sourcedist/cli/index.jsView file
23function dataDir() {
L24: return process.env.LOOPS_DATA_DIR || join(homedir(), ".hasna", "loops");
L25: }
...
L690: archivedFromStatus: row.archived_from_status ? row.archived_from_status : undefined,
L691: schedule: JSON.parse(row.schedule_json),
L692: target: JSON.parse(row.target_json),
...
L720: pid: row.pid ?? undefined,
L721: exitCode: row.exit_code ?? undefined,
L722: durationMs: row.duration_ms ?? undefined,
...
L930: }
L931: function ensurePrivateStorePath(file) {
L932: const dir = dirname(file);
Medium
Install Persistence
Source writes installer persistence such as shell profile or service configuration.
dist/cli/index.jsView on unpkg · L23Findings
3 Medium5 Low
MediumEnvironment Vars
MediumInstall Persistencedist/cli/index.js
MediumWildcard Dependency
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings