Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 6 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetwork
HighEntropyStringsUrlStrings
Source & flagged code
1 flagged · loading sourcedist/cli.jsView file
72}
L73: stream.write("", () => resolve());
L74: });
...
L76: async function flushAndExit(code) {
L77: await Promise.all([drain(process.stdout), drain(process.stderr)]);
L78: process.exit(code);
...
L416: if (scopes.length > 1) throw new Error(`${scopes.join(" and ")} are mutually exclusive — see cdkrd --help`);
L417: if (values["--profile"] !== void 0) process.env.CDKRD_EXPLICIT_PROFILE = "1";
L418: return {
...
L847: * itself contain `.`, `[`, `|`, OR `/` (a Cognito ResourceServer URI identifier
L848: * `https://api.example.com/v2`, an ARN, a log-group name). None of those are property or
L849: * resource separators; they are DATA inside one atomic id, so the segment-bounded ancestor
High
Cloud Metadata Access
Source reaches cloud instance metadata or link-local credential endpoints.
dist/cli.jsView on unpkg · L72Findings
1 High2 Medium3 Low
HighCloud Metadata Accessdist/cli.js
MediumNetwork
MediumEnvironment Vars
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings