Static Scan Results
scanned 9d ago · by rust-scannerStatic analysis flagged 12 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNativeBindingsNetworkShellWebSocket
HighEntropyStringsUrlStrings
Source & flagged code
4 flagged · loading sourcedist/screens/Investigation.jsView file
2import { useCallback, useEffect, useMemo, useRef, useState } from "react";
L3: import { spawn } from "node:child_process";
L4: import { Box, Static, Text, useApp, useInput } from "ink";
High
Child Process
Package source references child process execution.
dist/screens/Investigation.jsView on unpkg · L2271const startMs = Date.now();
L272: const proc = spawn(cmd, { shell: true });
L273: shellProcRef.current = proc;
High
bin/herald.jsView file
5const __dirname = dirname(fileURLToPath(import.meta.url));
L6: await import(resolve(__dirname, '../dist/main.js'));
Medium
Dynamic Require
Package source references dynamic require/import behavior.
bin/herald.jsView on unpkg · L5dist/main.jsView file
270if (wasUpgradeRequested()) {
L271: const { spawnSync } = await import("node:child_process");
L272: process.stdout.write("\nRunning: npm install -g @herald-ai/herald\n\n");
L273: const result = spawnSync("npm", ["install", "-g", "@herald-ai/herald"], { stdio: "inherit" });
High
Runtime Package Install
Package source invokes a package manager install command at runtime.
dist/main.jsView on unpkg · L270Findings
3 High4 Medium5 Low
HighChild Processdist/screens/Investigation.js
HighShelldist/screens/Investigation.js
HighRuntime Package Installdist/main.js
MediumDynamic Requirebin/herald.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings