Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 6 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessEnvironmentVarsFilesystem
HighEntropyStringsUrlStrings
Source & flagged code
1 flagged · loading sourcebin/dejima.jsView file
6// script-blocking and left the CLI non-functional. This shim resolves the
L7: // platform package and execs its binary, forwarding argv, stdio, and exit code.
L8: //
...
L14: const path = require('path');
L15: const { spawnSync } = require('child_process');
L16:
L17: // node's process.platform is already darwin|linux|win32; process.arch is
L18: // x64|arm64 — the exact suffixes our platform packages use.
...
L22: function resolveBinary() {
L23: if (process.env.DEJIMA_BINARY) {
L24: return process.env.DEJIMA_BINARY;
L25: }
High
Sandbox Evasion Gated Capability
Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
bin/dejima.jsView on unpkg · L6Findings
1 High2 Medium3 Low
HighSandbox Evasion Gated Capabilitybin/dejima.js
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings