Static Scan Results
scanned 3h ago · by rust-scannerStatic analysis flagged 8 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
HighEntropyStringsUrlStrings
Source & flagged code
1 flagged · loading sourcetunnel.tsView file
18const PROXY_PORT = 4142;
L19: const BIN_DIR = join(homedir(), '.copilot-proxy', 'bin');
L20:
...
L56: const getCloudflaredAssetName = (): string | null => {
L57: const platform = process.platform;
L58: const arch = process.arch;
...
L82: const DOWNLOAD_HEADERS: Record<string, string> = {
L83: 'User-Agent': 'copilot-for-cursor/1.0 (+https://github.com/jeffrey-cao/copilot-for-cursor)',
L84: Accept: 'application/octet-stream',
...
L89: if (!resp.ok || !resp.body) {
L90: const bodySnippet = await resp.text().catch(() => '').then(t => t.slice(0, 200));
L91: throw new Error(
High
Sandbox Evasion Gated Capability
Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
tunnel.tsView on unpkg · L18Findings
1 High3 Medium4 Low
HighSandbox Evasion Gated Capabilitytunnel.ts
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings