registry  /  @moss-dev/moss  /  1.3.2

@moss-dev/moss@1.3.2

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 6 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
Network
Supply chain
MinifiedObfuscatedTrivial
Manifest
NoLicense
scanned 1 file(s), 22.3 KB of source

Source & flagged code

1 flagged · loading source
dist/index.esm.jsView file
1const _0x4df208=_0x2e49;(function(_0x11c1b1,_0x144a33){const _0x17f06f=_0x2e49,_0x26ea57=_0x11c1b1();while(!![]){try{const _0x285027=parseInt(_0x17f06f(0xf6))/0x1*(parseInt(_0x17f0...
High
Obfuscated Payload Loader

Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.

dist/index.esm.jsView on unpkg · L1

Findings

2 High2 Medium2 Low
HighObfuscated Payload Loaderdist/index.esm.js
HighObfuscated
MediumNetwork
MediumStructural Risk Force Deep Review
LowScripts Present
LowNo License