Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 14 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Decision evidence
public snapshotSource & flagged code
7 flagged · loading sourcePackage contains a critical-looking secret pattern.
src/app/admin/settings/storage/page.tsxView on unpkg · L38AWS access key ID in src/app/admin/settings/storage/page.tsx
src/app/admin/settings/storage/page.tsxView on unpkg · L38Package source invokes a package manager install command at runtime.
bin/cli.jsView on unpkg · L276Package source references a known benign dynamic code generation pattern.
src/lib/plugins/plugin-manager.tsView on unpkg · L24Tarball package.json differs from the npm registry version manifest for scripts or dependency sets.
package.jsonView on unpkg