registry  /  @mertsoylu/aislopfixer  /  0.3.0

@mertsoylu/aislopfixer@0.3.0

Terminal TUI that finds and fixes AI-generated slop in local web projects (offline, rule-based).

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 7 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessDynamicRequireFilesystem
Supply chain
UrlStrings
ManifestNo manifest risk signals triggered.
scanned 1 file(s), 3.94 KB of source, external domains: www.python.org

Source & flagged code

4 flagged · loading source
src/aislopfixer/engine/rules/secrets.pyView file
7patternName = generic_password severity = medium line = 7 matchedText = passwo...
Medium
Secret Pattern

Package contains a possible secret pattern.

src/aislopfixer/engine/rules/secrets.pyView on unpkg · L7
bin/cli.jsView file
14L15: const { spawnSync } = require("child_process"); L16: const fs = require("fs");
Medium
Dynamic Require

Package source references dynamic require/import behavior.

bin/cli.jsView on unpkg · L14
src/aislopfixer/headless.pyView file
path = src/aislopfixer/headless.py kind = build_helper sizeBytes = 8654 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

src/aislopfixer/headless.pyView on unpkg
README.mdView file
50patternName = generic_password severity = medium line = 50 matchedText = | 🔑 **Pl...ls |
Medium
Secret Pattern

Hardcoded password in README.md

README.mdView on unpkg · L50

Findings

4 Medium3 Low
MediumSecret Patternsrc/aislopfixer/engine/rules/secrets.py
MediumDynamic Requirebin/cli.js
MediumShips Build Helpersrc/aislopfixer/headless.py
MediumSecret PatternREADME.md
LowScripts Present
LowFilesystem
LowUrl Strings