Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 6 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetwork
HighEntropyStringsUrlStrings
Source & flagged code
1 flagged · loading sourcedist/cli.jsView file
73}
L74: stream.write("", () => resolve());
L75: });
...
L77: async function flushAndExit(code) {
L78: await Promise.all([drain(process.stdout), drain(process.stderr)]);
L79: process.exit(code);
...
L417: if (scopes.length > 1) throw new Error(`${scopes.join(" and ")} are mutually exclusive — see cdkrd --help`);
L418: if (values["--profile"] !== void 0) process.env.CDKRD_EXPLICIT_PROFILE = "1";
L419: return {
...
L578: const encoding = buf[0] === 255 && buf[1] === 254 ? "utf-16le" : buf[0] === 254 && buf[1] === 255 ? "utf-16be" : looksUtf16(buf, true) ? "utf-16le" : looksUtf16(buf, false) ? "utf-...
L579: return new TextDecoder(encoding).decode(buf);
L580: }
High
Cloud Metadata Access
Source reaches cloud instance metadata or link-local credential endpoints.
dist/cli.jsView on unpkg · L73Findings
1 High2 Medium3 Low
HighCloud Metadata Accessdist/cli.js
MediumNetwork
MediumEnvironment Vars
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings