registry  /  dimcode-darwin-x64  /  0.2.19

dimcode-darwin-x64@0.2.19

dimcode binary for macOS x64 (Intel)

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 10 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessDynamicRequireFilesystemShell
Supply chain
HighEntropyStrings
Manifest
NoLicense
scanned 1 file(s), 3.75 KB of source

Source & flagged code

6 flagged · loading source
bin/skills-assets/pdf/scripts/render_cover.jsView file
37function loadPlaywright() { L38: const { execSync } = require("child_process"); L39: try { return require("playwright"); } catch (_) {}
High
Child Process

Package source references child process execution.

bin/skills-assets/pdf/scripts/render_cover.jsView on unpkg · L37
61const { spawnSync } = require("child_process"); L62: const r = spawnSync("npx", ["playwright", "install", "chromium"], { stdio: "inherit", shell: true }); L63: if (r.status !== 0) {
High
Shell

Package source references shell execution.

bin/skills-assets/pdf/scripts/render_cover.jsView on unpkg · L61
37function loadPlaywright() { L38: const { execSync } = require("child_process"); L39: try { return require("playwright"); } catch (_) {} ... L46: error: "playwright not found", L47: hint: "Run: npm install -g playwright && npx playwright install chromium" L48: }));
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

bin/skills-assets/pdf/scripts/render_cover.jsView on unpkg · L37
11L12: const path = require("path"); L13: const fs = require("fs");
Medium
Dynamic Require

Package source references dynamic require/import behavior.

bin/skills-assets/pdf/scripts/render_cover.jsView on unpkg · L11
bin/runtime/sandbox/dim-sandbox-runnerView file
path = bin/runtime/sandbox/dim-sandbox-runner kind = native_binary sizeBytes = 17404460 magicHex = [redacted]
Medium
Ships Native Binary

Package ships native binary artifacts.

bin/runtime/sandbox/dim-sandbox-runnerView on unpkg
bin/skills-assets/xlsx/scripts/xlsx_reader.pyView file
path = bin/skills-assets/xlsx/scripts/xlsx_reader.py kind = build_helper sizeBytes = 13545 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

bin/skills-assets/xlsx/scripts/xlsx_reader.pyView on unpkg

Findings

3 High4 Medium3 Low
HighChild Processbin/skills-assets/pdf/scripts/render_cover.js
HighShellbin/skills-assets/pdf/scripts/render_cover.js
HighRuntime Package Installbin/skills-assets/pdf/scripts/render_cover.js
MediumDynamic Requirebin/skills-assets/pdf/scripts/render_cover.js
MediumShips Native Binarybin/runtime/sandbox/dim-sandbox-runner
MediumShips Build Helperbin/skills-assets/xlsx/scripts/xlsx_reader.py
MediumStructural Risk Force Deep Review
LowFilesystem
LowHigh Entropy Strings
LowNo License