registry  /  @styleui/next-plugin  /  1.0.12

@styleui/next-plugin@1.0.12

StyleUI Next.js Plugin (Phase 2 - The Bridge)

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 6 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
DynamicRequire
Supply chain
ObfuscatedTrivial
Manifest
NoLicense
scanned 3 file(s), 12.7 KB of source

Source & flagged code

2 flagged · loading source
dist/index.jsView file
1'use strict';const _0x2016ea=_0x4460;function _0x4472(){const _0x51ba01=['\x49\x46\x68\x4e\x53','\x64\x65\x76\x65\x6c\x6f\x70\x6d\x65\x6e\x74','\x33\x30\x33\x39\x31\x31\x32\x44\x47...
High
Obfuscated Payload Loader

Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.

dist/index.jsView on unpkg · L1
1'use strict';const _0x2016ea=_0x4460;function _0x4472(){const _0x51ba01=['\x49\x46\x68\x4e\x53','\x64\x65\x76\x65\x6c\x6f\x70\x6d\x65\x6e\x74','\x33\x30\x33\x39\x31\x31\x32\x44\x47...
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/index.jsView on unpkg · L1

Findings

2 High2 Medium2 Low
HighObfuscated Payload Loaderdist/index.js
HighObfuscated
MediumDynamic Requiredist/index.js
MediumStructural Risk Force Deep Review
LowScripts Present
LowNo License