Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 6 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetwork
HighEntropyStringsUrlStrings
Source & flagged code
1 flagged · loading sourcedist/cli.jsView file
75}
L76: stream.write("", () => resolve());
L77: });
...
L79: async function flushAndExit(code) {
L80: await Promise.all([drain(process.stdout), drain(process.stderr)]);
L81: process.exit(code);
...
L421: if (scopes.length > 1) throw new Error(`${scopes.join(" and ")} are mutually exclusive — see cdkrd --help`);
L422: if (values["--profile"] !== void 0) process.env.CDKRD_EXPLICIT_PROFILE = "1";
L423: const parsed = {
...
L584: const encoding = buf[0] === 255 && buf[1] === 254 ? "utf-16le" : buf[0] === 254 && buf[1] === 255 ? "utf-16be" : looksUtf16(buf, true) ? "utf-16le" : looksUtf16(buf, false) ? "utf-...
L585: return new TextDecoder(encoding).decode(buf);
L586: }
High
Cloud Metadata Access
Source reaches cloud instance metadata or link-local credential endpoints.
dist/cli.jsView on unpkg · L75Findings
1 High2 Medium3 Low
HighCloud Metadata Accessdist/cli.js
MediumNetwork
MediumEnvironment Vars
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings