Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 6 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetwork
HighEntropyStringsUrlStrings
Source & flagged code
1 flagged · loading sourcedist/cli.jsView file
66}
L67: stream.write("", () => resolve());
L68: });
...
L70: async function flushAndExit(code) {
L71: await Promise.all([drain(process.stdout), drain(process.stderr)]);
L72: process.exit(code);
...
L404: context,
L405: region: values["--region"] ?? process.env.AWS_REGION ?? process.env.AWS_DEFAULT_REGION,
L406: profile: values["--profile"] ?? process.env.AWS_PROFILE,
...
L833: if (existsSync("cdk.json")) {
L834: const json = JSON.parse(readFileSync("cdk.json", "utf8"));
L835: if (typeof json.app === "string" && json.app.length > 0) return json.app;
High
Cloud Metadata Access
Source reaches cloud instance metadata or link-local credential endpoints.
dist/cli.jsView on unpkg · L66Findings
1 High2 Medium3 Low
HighCloud Metadata Accessdist/cli.js
MediumNetwork
MediumEnvironment Vars
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings