registry  /  ctt-babylon  /  0.23.2

ctt-babylon@0.23.2

⚠ Under review

This library was generated with [Angular CLI](https://github.com/angular/angular-cli) version 17.3.0.

Static Scan Results

scanned 5d ago · by rust-scanner

Static analysis flagged 9 finding(s) at 86.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
High-risk behavior combination matched malicious policy.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessNetwork
Supply chain
HighEntropyStringsMinifiedUrlStrings
Manifest
NoLicense
scanned 769 file(s), 59.8 MB of source, external domains: 160-f1401372.engine.arimahotel.com, ajax.googleapis.com, api.spalopia.app, dummyimage.com, flagcdn.com, fonts.googleapis.com, p.typekit.net, picsum.photos, player.vimeo.com, schema.org, twitter.com, use.typekit.net, wa.me, widget-engine.b-cdn.net, www.facebook.com, www.google.com, www.googleapis.com, www.instagram.com, www.linkedin.com, www.w3.org, www.youtube-nocookie.com, www.youtube.com
Oversized source lightweight scan
esm2022/lib/components/external/core/modulo-menu-hotel/modulo-menu-hotel.component.mjs2.08 MB file, sampled 256 KB
Minified
fesm2022/ctt-babylon.mjs54.4 MB file, sampled 256 KB
ChildProcessUrlStringswww.google.com

Source & flagged code

4 flagged · loading source
esm2022/lib/components/core/babylon-color-picker/babylon-color-picker.component.mjsView file
16patternName = google_api_key severity = high line = 16 matchedText = this.goo...MA';
High
High Secret

Package contains a high-severity secret pattern.

esm2022/lib/components/core/babylon-color-picker/babylon-color-picker.component.mjsView on unpkg · L16
16patternName = google_api_key severity = high line = 16 matchedText = this.goo...MA';
High
Secret Pattern

Google API key in esm2022/lib/components/core/babylon-color-picker/babylon-color-picker.component.mjs

esm2022/lib/components/core/babylon-color-picker/babylon-color-picker.component.mjsView on unpkg · L16
esm2022/lib/directives/link-type/link-type.directive.mjsView file
138? detected.value L139: : 'https://' + detected.value.replace(/^\/+/, ''); L140: try { L141: window.open(finalUrl, '_blank'); L142: } ... L344: }] } }); L345: //# sourceMappingURL=data:application/json;base64,[redacted]...
Critical
Browser Phishing Redirect

Source redirects browser users to an external URL carrying identity material.

esm2022/lib/directives/link-type/link-type.directive.mjsView on unpkg · L138
fesm2022/ctt-babylon.mjsView file
path = fesm2022/ctt-babylon.mjs kind = oversized_source_file sizeBytes = 57037420 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

fesm2022/ctt-babylon.mjsView on unpkg

Findings

1 Critical3 High2 Medium3 Low
CriticalBrowser Phishing Redirectesm2022/lib/directives/link-type/link-type.directive.mjs
HighHigh Secretesm2022/lib/components/core/babylon-color-picker/babylon-color-picker.component.mjs
HighOversized Source Filefesm2022/ctt-babylon.mjs
HighSecret Patternesm2022/lib/components/core/babylon-color-picker/babylon-color-picker.component.mjs
MediumNetwork
MediumStructural Risk Force Deep Review
LowHigh Entropy Strings
LowUrl Strings
LowNo License