registry  /  @stackone/core  /  3.9.0

@stackone/core@3.9.0

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 6 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
Crypto
Supply chain
HighEntropyStringsMinifiedTrivial
Manifest
WildcardDependency
scanned 3 file(s), 130 KB of source

Source & flagged code

3 flagged · loading source
dist/index.cjsView file
1patternName = private_key_rsa severity = critical line = 1 matchedText = Object.d...----
Critical
Critical Secret

Package contains a critical-looking secret pattern.

dist/index.cjsView on unpkg · L1
1patternName = private_key_rsa severity = critical line = 1 matchedText = Object.d...----
Critical
Secret Pattern

RSA private key in dist/index.cjs

dist/index.cjsView on unpkg · L1
dist/index.mjsView file
1patternName = private_key_rsa severity = critical line = 1 matchedText = import{t...----
Critical
Secret Pattern

RSA private key in dist/index.mjs

dist/index.mjsView on unpkg · L1

Findings

3 Critical1 Medium2 Low
CriticalCritical Secretdist/index.cjs
CriticalSecret Patterndist/index.cjs
CriticalSecret Patterndist/index.mjs
MediumWildcard Dependency
LowScripts Present
LowHigh Entropy Strings