Static Scan Results
scanned 3h ago · by rust-scannerStatic analysis flagged 6 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetwork
HighEntropyStringsUrlStrings
Source & flagged code
1 flagged · loading sourcedist/cli.jsView file
74}
L75: stream.write("", () => resolve());
L76: });
...
L78: async function flushAndExit(code) {
L79: await Promise.all([drain(process.stdout), drain(process.stderr)]);
L80: process.exit(code);
...
L420: if (scopes.length > 1) throw new Error(`${scopes.join(" and ")} are mutually exclusive — see cdkrd --help`);
L421: if (values["--profile"] !== void 0) process.env.CDKRD_EXPLICIT_PROFILE = "1";
L422: const parsed = {
...
L583: const encoding = buf[0] === 255 && buf[1] === 254 ? "utf-16le" : buf[0] === 254 && buf[1] === 255 ? "utf-16be" : looksUtf16(buf, true) ? "utf-16le" : looksUtf16(buf, false) ? "utf-...
L584: return new TextDecoder(encoding).decode(buf);
L585: }
High
Cloud Metadata Access
Source reaches cloud instance metadata or link-local credential endpoints.
dist/cli.jsView on unpkg · L74Findings
1 High2 Medium3 Low
HighCloud Metadata Accessdist/cli.js
MediumNetwork
MediumEnvironment Vars
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings