Static Scan Results
scanned 3d ago · by rust-scannerStatic analysis flagged 17 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Decision evidence
public snapshotSource & flagged code
9 flagged · loading sourcePackage source references dynamic require/import behavior.
bin/agent-device.mjsView on unpkg · L17Package source references weak cryptographic algorithms.
dist/src/5913.jsView on unpkg · L1Package ships non-JavaScript build or shell helper files.
src/platforms/linux/atspi-dump.pyView on unpkgPackage ships high-entropy non-source blobs.
android-snapshot-helper/dist/agent-device-android-snapshot-helper-0.18.2.apkView on unpkgPackage ships compressed or archive-like blobs.
android-snapshot-helper/dist/agent-device-android-snapshot-helper-0.18.2.apkView on unpkgPackage ships a nested archive or MCP bundle that was inventoried but not recursively analyzed.
android-snapshot-helper/dist/agent-device-android-snapshot-helper-0.18.2.apkView on unpkgThis package version adds a dangerous source file absent from the previous stored version.
dist/src/8875.jsView on unpkg