registry  /  create-jnrs-vue  /  2.0.2

create-jnrs-vue@2.0.2

巨能(JNRS)前端工程化开发,Vue 项目模板脚手架

Static Scan Results

scanned 55m ago · by rust-scanner

Static analysis flagged 8 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStrings
ManifestNo manifest risk signals triggered.
scanned 39 file(s), 72.3 KB of source

Source & flagged code

2 flagged · loading source
jnrs-vue/.env.productionView file
patternName = blocked_file severity = critical matchedText = jnrs-vue/.env.production redactedSecretContext = secretLikeLines = 0 notes = no secret-like key/value lines found in sampled text
Critical
Critical Secret

Package contains a critical-looking secret pattern.

jnrs-vue/.env.productionView on unpkg
jnrs-vue/viteMockServe/file/mock-pdf.pdfView file
path = jnrs-vue/viteMockServe/file/mock-pdf.pdf kind = high_entropy_blob sizeBytes = 63610 magicHex = [redacted]
High
Ships High Entropy Blob

Package ships high-entropy non-source blobs.

jnrs-vue/viteMockServe/file/mock-pdf.pdfView on unpkg

Findings

1 Critical1 High3 Medium3 Low
CriticalCritical Secretjnrs-vue/.env.production
HighShips High Entropy Blobjnrs-vue/viteMockServe/file/mock-pdf.pdf
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings