Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 8 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
CryptoFilesystemNetwork
HighEntropyStringsUrlStrings
Source & flagged code
2 flagged · loading sourcedist/cli.jsView file
28patternName = generic_password
severity = medium
line = 28
matchedText = console....ge);
Medium
dist/api/Auth.jsView file
28this.logger = logger;
L29: this.lgeapi_url = `https://${this.gateway.country_code.toLowerCase()}.lgeapi.com/`;
L30: }
...
L56: };
L57: const preLoginResponse = await requestClient.post(this.gateway.login_base_url + 'preLogin', qs.stringify(preLoginData), { headers });
L58: const preLogin = preLoginResponse.data;
...
L347: signature(message, secret) {
L348: return crypto.createHmac('sha1', Buffer.from(secret)).update(message).digest('base64');
L349: }
Low
Weak Crypto
Package source references weak cryptographic algorithms.
dist/api/Auth.jsView on unpkg · L28Findings
2 Medium6 Low
MediumSecret Patterndist/cli.js
MediumNetwork
LowNon Install Lifecycle Scripts
LowScripts Present
LowWeak Cryptodist/api/Auth.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings