registry  /  @messaia/cdk  /  21.1.0-rc.18

@messaia/cdk@21.1.0-rc.18

This project was generated using [Angular CLI](https://github.com/angular/angular-cli) version 20.0.0.

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 5 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEval
Supply chain
HighEntropyStrings
Manifest
NoLicense
scanned 1 file(s), 1.47 MB of source

Source & flagged code

3 flagged · loading source
fesm2022/messaia-cdk.mjsView file
2216patternName = generic_password severity = medium line = 2216 matchedText = password...rd',
Medium
Secret Pattern

Package contains a possible secret pattern.

fesm2022/messaia-cdk.mjsView on unpkg · L2216
9233patternName = generic_password severity = medium line = 9233 matchedText = static ɵ... });
Medium
Secret Pattern

Hardcoded password in fesm2022/messaia-cdk.mjs

fesm2022/messaia-cdk.mjsView on unpkg · L9233
2695if (equalToOperator !== null) { L2696: functionSetter = new Function(match[1], "return " + equalToOperator.input); L2697: }
Low
Eval

Package source references a known benign dynamic code generation pattern.

fesm2022/messaia-cdk.mjsView on unpkg · L2695

Findings

2 Medium3 Low
MediumSecret Patternfesm2022/messaia-cdk.mjs
MediumSecret Patternfesm2022/messaia-cdk.mjs
LowEvalfesm2022/messaia-cdk.mjs
LowHigh Entropy Strings
LowNo License