Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 11 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessEnvironmentVarsFilesystemNetworkShell
HighEntropyStringsUrlStrings
Source & flagged code
2 flagged · loading sourcebin/aide-wrapper.tsView file
18L19: import { execFileSync, spawnSync } from "child_process";
L20: import {
High
Child Process
Package source references child process execution.
bin/aide-wrapper.tsView on unpkg · L18280if (!existsSync(nodeModules)) {
L281: log("node_modules missing — running bun install to restore dependencies");
L282: try {
L283: const result = spawnSync("bun", ["install", "--frozen-lockfile"], {
L284: cwd: PLUGIN_ROOT,
High
Runtime Package Install
Package source invokes a package manager install command at runtime.
bin/aide-wrapper.tsView on unpkg · L280Findings
3 High3 Medium5 Low
HighChild Processbin/aide-wrapper.ts
HighShell
HighRuntime Package Installbin/aide-wrapper.ts
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings