Static Scan Results
scanned 15d ago · by rust-scannerStatic analysis completed at 65.0% confidence. No malicious behavior was detected; 6 low-signal pattern(s) were surfaced and cleared.
Static reason
No blocking static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
HighEntropyStringsUrlStrings
Source & flagged code
1 flagged · loading sourcelib/installer.mjsView file
11} from 'node:fs';
L12: import { execFileSync, execSync } from 'node:child_process';
L13: import { createHash } from 'node:crypto';
...
L19:
L20: const __dirname = dirname(fileURLToPath(import.meta.url));
L21: const PACKAGE_ROOT = resolve(__dirname, '..');
...
L27: const OFFICECLI_BINARY = platform() === 'win32' ? 'officecli.exe' : 'officecli';
L28: const OFFICECLI_MIRROR_BASE = 'https://d.officecli.ai';
L29: const OFFICECLI_GITHUB_RELEASE_BASE = `https://github.com/${OFFICECLI_REPO}/releases/latest/download`;
...
L104: if (platform() === 'win32') {
L105: const localAppData = process.env.LOCALAPPDATA || resolve(home, 'AppData', 'Local');
L106: return resolve(localAppData, 'DeepSeek++');
Medium
Install Persistence
Source writes installer persistence such as shell profile or service configuration.
lib/installer.mjsView on unpkg · L11Findings
3 Medium3 Low
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencelib/installer.mjs
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings