Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 11 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
HighEntropyStringsUrlStrings
Source & flagged code
3 flagged · loading sourcebackend/src/db/auto-push.tsView file
18*/
L19: import { execSync } from 'node:child_process';
L20:
High
Child Process
Package source references child process execution.
backend/src/db/auto-push.tsView on unpkg · L1841try {
L42: execSync('bunx drizzle-kit push --force', { stdio: 'inherit' });
L43: } catch (err) {
High
Runtime Package Install
Package source invokes a package manager install command at runtime.
backend/src/db/auto-push.tsView on unpkg · L41backend/test-migration.shView file
•path = backend/test-migration.sh
kind = build_helper
sizeBytes = 650
magicHex = [redacted]
Medium
Ships Build Helper
Package ships non-JavaScript build or shell helper files.
backend/test-migration.shView on unpkgFindings
3 High4 Medium4 Low
HighChild Processbackend/src/db/auto-push.ts
HighShell
HighRuntime Package Installbackend/src/db/auto-push.ts
MediumNetwork
MediumEnvironment Vars
MediumShips Build Helperbackend/test-migration.sh
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings