Static Scan Results
scanned 6d ago · by rust-scannerStatic analysis flagged 12 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessDynamicRequireEnvironmentVarsFilesystemNetworkShell
HighEntropyStringsUrlStrings
Source & flagged code
4 flagged · loading sourcesrc/hooks/hooks.jsView file
22const ffmpegPath = require("ffmpeg-static");
L23: const { execSync } = require("child_process");
L24: const { attachAiBugReport } = require("[redacted]");
High
Child Process
Package source references child process execution.
src/hooks/hooks.jsView on unpkg · L22index.jsView file
16pathToCamelCase
L17: } = require("./src/helper/imports/commons");
L18:
Medium
Dynamic Require
Package source references dynamic require/import behavior.
index.jsView on unpkg · L16src/helper/executers/projectCreator.jsView file
25if (!noDeps) {
L26: execSync("npm i artes@latest", { cwd: projectDir, stdio: "inherit" });
L27: console.log("📦 Setting up browsers...");
High
Runtime Package Install
Package source invokes a package manager install command at runtime.
src/helper/executers/projectCreator.jsView on unpkg · L25docs/functionDefinitions.mdView file
2387patternName = generic_password
severity = medium
line = 2387
matchedText = body: { ..." },
Medium
Secret Pattern
Hardcoded password in docs/functionDefinitions.md
docs/functionDefinitions.mdView on unpkg · L2387Findings
3 High5 Medium4 Low
HighChild Processsrc/hooks/hooks.js
HighShell
HighRuntime Package Installsrc/helper/executers/projectCreator.js
MediumDynamic Requireindex.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
MediumSecret Patterndocs/functionDefinitions.md
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings