Static Scan Results
scanned 1h ago · by rust-scannerStatic analysis flagged 10 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsEvalFilesystemNetwork
HighEntropyStringsUrlStrings
Source & flagged code
5 flagged · loading sourceassets/spa/main.jsView file
17756patternName = generic_password
severity = medium
line = 17756
matchedText = password...rd",
Medium
17830patternName = generic_password
severity = medium
line = 17830
matchedText = password...rd",
Medium
18211patternName = generic_password
severity = medium
line = 18211
matchedText = password...rt",
Medium
18285patternName = generic_password
severity = medium
line = 18285
matchedText = password...rt",
Medium
src/lib/common/tracing/tracing.service.jsView file
85* `tsc` nor the app's webpack bundle needs the (optional, possibly-absent)
L86: * package. `eval('require')` is opaque to webpack's static analysis, so the
L87: * bundler never tries to resolve/externalize it. Returns `null` when the
Low
Eval
Package source references a known benign dynamic code generation pattern.
src/lib/common/tracing/tracing.service.jsView on unpkg · L85Findings
6 Medium4 Low
MediumSecret Patternassets/spa/main.js
MediumNetwork
MediumEnvironment Vars
MediumSecret Patternassets/spa/main.js
MediumSecret Patternassets/spa/main.js
MediumSecret Patternassets/spa/main.js
LowEvalsrc/lib/common/tracing/tracing.service.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings