Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 2 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcess
UrlStrings
Source & flagged code
1 flagged · loading sourcebin/badness.jsView file
3L4: const { execFileSync } = require("node:child_process");
L5:
L6: function detectLibc() {
L7: if (process.platform !== "linux") return null;
L8: try {
...
L40: `Supported platforms: linux (x64/arm64, gnu+musl), darwin (x64/arm64), win32 (x64/arm64).\n` +
L41: `See https://jolars.github.io/badness/ for alternative install methods.`,
L42: );
...
L62: } catch (err) {
L63: process.stderr.write(`${err.message}\n`);
L64: process.exit(1);
High
Sandbox Evasion Gated Capability
Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
bin/badness.jsView on unpkg · L3Findings
1 High1 Low
HighSandbox Evasion Gated Capabilitybin/badness.js
LowUrl Strings