Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 44 finding(s) at 86.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Decision evidence
public snapshotSource & flagged code
35 flagged · loading sourcePackage text addresses the security reviewer or scanner and tries to influence the review outcome.
README.mdView on unpkgPackage contains a critical-looking secret pattern.
dist/eval/rule-corpus.jsView on unpkg · L628Source executes local commands and sends command output to an external endpoint.
dist/eval/rule-corpus.jsView on unpkg · L18Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
dist/eval/rule-corpus.jsView on unpkg · L2789OpenSSH private key in dist/eval/rule-corpus.js
dist/eval/rule-corpus.jsView on unpkg · L628OpenSSH private key in dist/eval/rule-corpus.js
dist/eval/rule-corpus.jsView on unpkg · L635Source reaches cloud instance metadata or link-local credential endpoints.
dist/eval/rule-corpus.jsView on unpkg · L18Google API key in dist/eval/rule-corpus.js
dist/eval/rule-corpus.jsView on unpkg · L616Google API key in dist/eval/rule-corpus.js
dist/eval/rule-corpus.jsView on unpkg · L623Package source references dynamic require/import behavior.
dist/eval/rule-corpus.jsView on unpkg · L3937Package source references child process execution.
dist/measurement/write.jsView on unpkg · L15A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/cli/tc-pipeline.jsView on unpkg · L15GitHub personal access token in dist/eval/corpus.js
dist/eval/corpus.jsView on unpkg · L197RSA private key in rules/tool-poisoning/ATR-2026-00010-mcp-malicious-response.yaml
rules/tool-poisoning/ATR-2026-00010-mcp-malicious-response.yamlView on unpkg · L297RSA private key in rules/context-exfiltration/ATR-2026-00150-credential-in-tool-response.yaml
rules/context-exfiltration/ATR-2026-00150-credential-in-tool-response.yamlView on unpkg · L98RSA private key in rules/context-exfiltration/ATR-2026-00150-credential-in-tool-response.yaml
rules/context-exfiltration/ATR-2026-00150-credential-in-tool-response.yamlView on unpkg · L101GitHub personal access token in rules/context-exfiltration/ATR-2026-00150-credential-in-tool-response.yaml
rules/context-exfiltration/ATR-2026-00150-credential-in-tool-response.yamlView on unpkg · L107RSA private key in rules/context-exfiltration/ATR-2026-00150-credential-in-tool-response.yaml
rules/context-exfiltration/ATR-2026-00150-credential-in-tool-response.yamlView on unpkg · L110OpenSSH private key in rules/context-exfiltration/ATR-2026-00150-credential-in-tool-response.yaml
rules/context-exfiltration/ATR-2026-00150-credential-in-tool-response.yamlView on unpkg · L133RSA private key in rules/context-exfiltration/ATR-2026-00142-piggyback-transition-words.yaml
rules/context-exfiltration/ATR-2026-00142-piggyback-transition-words.yamlView on unpkg · L85RSA private key in rules/context-exfiltration/ATR-2026-00142-piggyback-transition-words.yaml
rules/context-exfiltration/ATR-2026-00142-piggyback-transition-words.yamlView on unpkg · L87RSA private key in rules/context-exfiltration/ATR-2026-00142-piggyback-transition-words.yaml
rules/context-exfiltration/ATR-2026-00142-piggyback-transition-words.yamlView on unpkg · L89RSA private key in rules/context-exfiltration/ATR-2026-00142-piggyback-transition-words.yaml
rules/context-exfiltration/ATR-2026-00142-piggyback-transition-words.yamlView on unpkg · L129AWS access key ID in rules/context-exfiltration/ATR-2026-00152-obfuscated-credential-leak.yaml
rules/context-exfiltration/ATR-2026-00152-obfuscated-credential-leak.yamlView on unpkg · L107AWS access key ID in rules/context-exfiltration/ATR-2026-00021-api-key-exposure.yaml
rules/context-exfiltration/ATR-2026-00021-api-key-exposure.yamlView on unpkg · L196OpenSSH private key in rules/context-exfiltration/ATR-2026-00021-api-key-exposure.yaml
rules/context-exfiltration/ATR-2026-00021-api-key-exposure.yamlView on unpkg · L208Google API key in rules/context-exfiltration/ATR-2026-00021-api-key-exposure.yaml
rules/context-exfiltration/ATR-2026-00021-api-key-exposure.yamlView on unpkg · L205RSA private key in rules/context-exfiltration/ATR-2026-00113-credential-theft.yaml
rules/context-exfiltration/ATR-2026-00113-credential-theft.yamlView on unpkg · L124RSA private key in rules/context-exfiltration/ATR-2026-00136-tool-response-data-piggyback.yaml
rules/context-exfiltration/ATR-2026-00136-tool-response-data-piggyback.yamlView on unpkg · L104RSA private key in rules/context-exfiltration/ATR-2026-00136-tool-response-data-piggyback.yaml
rules/context-exfiltration/ATR-2026-00136-tool-response-data-piggyback.yamlView on unpkg · L113RSA private key in rules/context-exfiltration/ATR-2026-00136-tool-response-data-piggyback.yaml
rules/context-exfiltration/ATR-2026-00136-tool-response-data-piggyback.yamlView on unpkg · L151AWS access key ID in rules/context-exfiltration/ATR-2026-00141-example-format-key-leak.yaml
rules/context-exfiltration/ATR-2026-00141-example-format-key-leak.yamlView on unpkg · L93