Static Scan Results
scanned 3h ago · by rust-scannerStatic analysis flagged 7 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystem
HighEntropyStrings
Source & flagged code
3 flagged · loading sourcelib/adapter-prisma.jsView file
3const crypto = require('crypto');
L4: const { execSync } = require('child_process');
L5: const cuid = require('cuid');
High
Child Process
Package source references child process execution.
lib/adapter-prisma.jsView on unpkg · L373_runPrismaCmd(cmd) {
L74: // speed up npx command
L75: const localBin = path.join(__dirname, '../node_modules/.bin/prisma');
...
L83:
L84: return execSync(`${bin} ${cmd} --schema ${this.schemaPath}`, {
L85: env: { ...process.env, DATABASE_URL: this._url() },
High
Runtime Package Install
Package source invokes a package manager install command at runtime.
lib/adapter-prisma.jsView on unpkg · L73index.jsView file
1const { PrismaAdapter, PrismaListAdapter, PrismaFieldAdapter } = require('./lib/adapter-prisma');
L2:
Medium
Findings
2 High3 Medium2 Low
HighChild Processlib/adapter-prisma.js
HighRuntime Package Installlib/adapter-prisma.js
MediumDynamic Requireindex.js
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowFilesystem
LowHigh Entropy Strings