Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 12 finding(s) at 86.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
High-risk behavior combination matched malicious policy.
Decision evidence
public snapshotBehavioral surface
ChildProcessEnvironmentVarsEvalFilesystemNetworkShell
HighEntropyStringsMinifiedObfuscatedTelemetryUrlStrings
Source & flagged code
3 flagged · loading sourceubol-extension/rulesets/scripting/scriptlet/main/ublock-badware.jsView file
1531L1532: const $scriptletArgs$ = /* 21 */ ["DOMContentLoaded","fullscreenEnabled","tigervip2","atob","new Function(atob(","String.prototype.includes","0","undefined","condition","/^checkout...
L1533:
Low
Eval
Package source references a known benign dynamic code generation pattern.
ubol-extension/rulesets/scripting/scriptlet/main/ublock-badware.jsView on unpkg · L1531ubol-extension/rulesets/scripting/scriptlet/main/ublock-filters.jsView file
16You should have received a copy of the GNU General Public License
L17: along with this program. If not, see {http://www.gnu.org/licenses/}.
L18:
...
L35: this.separatorChar = this.actualSeparatorChar = separatorChar;
L36: this.separatorCode = this.actualSeparatorCode = separatorChar.charCodeAt(0);
L37: this.mustQuote = mustQuote;
...
L655: const [ , mime, content ] =
L656: /^data:([^,]*),(.+)$/.exec(elem.src.trim()) ||
L657: [ '', '', '' ];
...
L1459: };
L1460: self.fetch = new Proxy(self.fetch, {
L1461: apply: applyHandler
Critical
Global Object Hijack Exfiltration
Source reassigns a global/builtin to a Proxy that forwards intercepted runtime data to an external endpoint.
ubol-extension/rulesets/scripting/scriptlet/main/ublock-filters.jsView on unpkg · L16ubol-extension/css/fonts/Inter/Inter-Regular.woff2View file
•path = ubol-extension/css/fonts/Inter/Inter-Regular.woff2
kind = high_entropy_blob
sizeBytes = 111268
magicHex = [redacted]
High
Ships High Entropy Blob
Package ships high-entropy non-source blobs.
ubol-extension/css/fonts/Inter/Inter-Regular.woff2View on unpkgFindings
1 Critical1 High3 Medium7 Low
CriticalGlobal Object Hijack Exfiltrationubol-extension/rulesets/scripting/scriptlet/main/ublock-filters.js
HighShips High Entropy Blobubol-extension/css/fonts/Inter/Inter-Regular.woff2
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowEvalubol-extension/rulesets/scripting/scriptlet/main/ublock-badware.js
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings