Static Scan Results
scanned 3h ago · by rust-scannerStatic analysis flagged 8 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemShell
HighEntropyStrings
Source & flagged code
2 flagged · loading sourcecore/hooks/session-verify/session-verify.mjsView file
20import { readFileSync, existsSync } from 'node:fs'
L21: import { spawnSync } from 'node:child_process'
L22: import { join } from 'node:path'
High
Child Process
Package source references child process execution.
core/hooks/session-verify/session-verify.mjsView on unpkg · L20bin/berserqir.jsView file
4// Usage:
L5: // npx berserqir install [--profiles front,back,ops,infra] [--dir <target>] [--yes] [--force] [--dry-run]
L6: // npx berserqir update | version | help
...
L15: const crypto = require('node:crypto')
L16: const { spawnSync } = require('node:child_process')
L17: const readline = require('node:readline/promises')
High
Runtime Package Install
Package source invokes a package manager install command at runtime.
bin/berserqir.jsView on unpkg · L4Findings
3 High2 Medium3 Low
HighChild Processcore/hooks/session-verify/session-verify.mjs
HighShell
HighRuntime Package Installbin/berserqir.js
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings