Static Scan Results
scanned 3h ago · by rust-scannerStatic analysis flagged 4 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessFilesystemShell
UrlStrings
Source & flagged code
1 flagged · loading sourceindex.jsView file
2L3: const { execSync } = require('child_process');
L4: const fs = require('fs');
...
L6:
L7: const repoUrl = 'https://gitlab.txninfra.com/kuldeep_pradhan/isu-node-boilerplate.git';
L8: const projectName = process.argv[2];
...
L15:
L16: const targetPath = path.join(process.cwd(), projectName);
L17:
...
L29: console.log('🧹 Cleaning up Git history...');
L30: if (process.platform === 'win32') {
L31: execSync('rmdir /s /q .git');
High
Sandbox Evasion Gated Capability
Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
index.jsView on unpkg · L2Findings
1 High3 Low
HighSandbox Evasion Gated Capabilityindex.js
LowScripts Present
LowFilesystem
LowUrl Strings