Static Scan Results
scanned 14d ago · by rust-scannerStatic analysis flagged 4 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
FilesystemShell
Source & flagged code
2 flagged · loading sourcedist/plugin.jsView file
1import { execa } from 'execa';
L2: import { promises } from 'fs';
High
30ctx.logger.info(`Running \`npx prisma migrate status\` in ${ctx.projectPath}...`);
L31: const res = await execa("npx", ["prisma", "migrate", "status"], {
L32: cwd: ctx.projectPath,
High
Runtime Package Install
Package source invokes a package manager install command at runtime.
dist/plugin.jsView on unpkg · L30Findings
2 High2 Low
HighShelldist/plugin.js
HighRuntime Package Installdist/plugin.js
LowScripts Present
LowFilesystem