Static Scan Results
scanned 2d ago · by rust-scannerStatic analysis completed at 65.0% confidence. No malicious behavior was detected; 9 low-signal pattern(s) were surfaced and cleared.
Static reason
No blocking static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemShell
HighEntropyStringsUrlStrings
Source & flagged code
3 flagged · loading sourceCases.tsView file
4import * as netm from "node:net";
L5: import * as cp from "node:child_process";
L6: import * as cryptom from "node:crypto";
High
3import * as fsm from "node:fs";
L4: import * as netm from "node:net";
L5: import * as cp from "node:child_process";
L6: import * as cryptom from "node:crypto";
...
L18: export function exec_dyn_head(tool: string): void { try { cp.spawn(tool, ["curl"]); } catch {} }
L19: export function env_read(): void { void process.env.X; }
L20: export function clock_now(): void { void Date.now(); }
High
Same File Env Network Execution
A single source file combines environment access, network access, and code or shell execution; review context before blocking.
Cases.tsView on unpkg · L3watch.mjsView file
16*/
L17: import { spawnSync } from "node:child_process";
L18: import crypto from "node:crypto";
...
L63: const r = spawnSync("node", [path.join(HERE, "scan.mjs"), target, "--out", out], { encoding: "utf8" });
L64: return { ok: r.status === 0, ms: Date.now() - t0, stderr: r.stderr };
L65: }
Low
Findings
3 High1 Medium5 Low
HighChild ProcessCases.ts
HighShell
HighSame File Env Network ExecutionCases.ts
MediumEnvironment Vars
LowScripts Present
LowWeak Cryptowatch.mjs
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings