Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 9 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
EvalFilesystemNetwork
HighEntropyStringsMinified
Source & flagged code
4 flagged · loading sourcevendor/manifold.wasm.base64.jsView file
2patternName = aws_access_key
severity = critical
line = 2
matchedText = export d...IiV"
Critical
Critical Secret
Package contains a critical-looking secret pattern.
vendor/manifold.wasm.base64.jsView on unpkg · L22patternName = aws_access_key
severity = critical
line = 2
matchedText = export d...IiV"
Critical
Secret Pattern
AWS access key ID in vendor/manifold.wasm.base64.js
vendor/manifold.wasm.base64.jsView on unpkg · L2vendor/manifold.jsView file
1async function Module(moduleArg={}){var moduleRtn;var Module=moduleArg;var ENVIRONMENT_IS_WEB=!!globalThis.window;var ENVIRONMENT_IS_WORKER=!!globalThis.WorkerGlobalScope;var ENVIR...
L2: ;return moduleRtn}export default Module;
Low
Eval
Package source references a known benign dynamic code generation pattern.
vendor/manifold.jsView on unpkg · L1vendor/manifold.wasmView file
•path = vendor/manifold.wasm
kind = wasm_module
sizeBytes = 541470
magicHex = [redacted]
Medium
Findings
2 Critical3 Medium4 Low
CriticalCritical Secretvendor/manifold.wasm.base64.js
CriticalSecret Patternvendor/manifold.wasm.base64.js
MediumNetwork
MediumShips Wasm Modulevendor/manifold.wasm
MediumStructural Risk Force Deep Review
LowScripts Present
LowEvalvendor/manifold.js
LowFilesystem
LowHigh Entropy Strings