Static Scan Results
scanned 3h ago · by rust-scannerStatic analysis flagged 10 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessEnvironmentVarsFilesystemShell
HighEntropyStrings
Source & flagged code
5 flagged · loading sourcetests/helpers.test.tsView file
63patternName = aws_access_key
severity = critical
line = 63
matchedText = assert.d..."]);
Critical
Critical Secret
Package contains a critical-looking secret pattern.
tests/helpers.test.tsView on unpkg · L6363patternName = aws_access_key
severity = critical
line = 63
matchedText = assert.d..."]);
Critical
79patternName = private_key_openssh
severity = critical
line = 79
matchedText = assert.d..."]);
Critical
87patternName = aws_access_key
severity = critical
line = 87
matchedText = const co...34";
Critical
skills/caveman-compress/scripts/benchmark.pyView file
•path = skills/caveman-compress/scripts/benchmark.py
kind = build_helper
sizeBytes = 2425
magicHex = [redacted]
Medium
Ships Build Helper
Package ships non-JavaScript build or shell helper files.
skills/caveman-compress/scripts/benchmark.pyView on unpkgFindings
4 Critical3 Medium3 Low
CriticalCritical Secrettests/helpers.test.ts
CriticalSecret Patterntests/helpers.test.ts
CriticalSecret Patterntests/helpers.test.ts
CriticalSecret Patterntests/helpers.test.ts
MediumEnvironment Vars
MediumShips Build Helperskills/caveman-compress/scripts/benchmark.py
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings