registry  /  filecat  /  6.30.3

filecat@6.30.3

⚠ Under review

FileCat File Browser Server Manager

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 25 finding(s) at 93.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessDynamicRequireEnvironmentVarsEvalFilesystemNetworkShell
Supply chain
HighEntropyStringsMinifiedObfuscatedProtestwareTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 198 file(s), 14.6 MB of source, external domains: a.com, ark.cn-beijing.volces.com, bellard.org, chevrotain.io, esm.sh, example.com, fb.me, gcore.jsdelivr.net, git.io, github.com, konvajs.github.io, konvajs.org, neo.wordplex.io, npms.io, open.feishu.cn, opensource.dingtalk.com, player.vimeo.com, q.qq.com, reactjs.org, registry.npmjs.org, twitter.com, www.figma.com, www.w3.org, www.youtube.com
Oversized source lightweight scan
build/main.js5.98 MB file, sampled 256 KB
FilesystemEnvironmentVarsHighEntropyStringsMinified

Source & flagged code

15 flagged · loading source
build/dist/5450.113da2885aa4cb937cab.jsView file
1patternName = aws_access_key severity = critical line = 1 matchedText = "use str...}]);
Critical
Critical Secret

Package contains a critical-looking secret pattern.

build/dist/5450.113da2885aa4cb937cab.jsView on unpkg · L1
1patternName = aws_access_key severity = critical line = 1 matchedText = "use str...}]);
Critical
Secret Pattern

AWS access key ID in build/dist/5450.113da2885aa4cb937cab.js

build/dist/5450.113da2885aa4cb937cab.jsView on unpkg · L1
shell/build.jsView file
matchType = previous_version_dangerous_delta matchedPackage = filecat@6.30.0 matchedIdentity = npm:ZmlsZWNhdA:6.30.0 similarity = 0.958 summary = stored previous version shares package body but lacks this dangerous source file
Critical
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

shell/build.jsView on unpkg
24const {copy_wintun_dll} = require("./config/common-bin.config"); L25: const {execSync} = require("child_process"); L26:
High
Child Process

Package source references child process execution.

shell/build.jsView on unpkg · L24
build/dist/1595.5f5ec6122acae3a9cd0b.jsView file
1(self.webpackChunkfilecat=self.webpackChunkfilecat||[]).push([[1595],{62718(e,t,n){"use strict";var r=n(31601),a=n.n(r),i=n(76314),o=n.n(i),s=n(4417),l=n.n(s),c=new URL(n(60840),n....
High
Shell

Package source references shell execution.

build/dist/1595.5f5ec6122acae3a9cd0b.jsView on unpkg · L1
build/dist/main.8139245c199425195bd2.jsView file
1/*! For license information please see main.8139245c199425195bd2.js.LICENSE.txt */ L2: (()=>{var e={80952(e,t,n){e=n.nmd(e),function(){var e=function(){return this}();e||"undefined"==typeof window||(e=window);var t=function(e,n,i){"string"==typeof e?(2==arguments.len...
Low
Eval

Package source references a known benign dynamic code generation pattern.

build/dist/main.8139245c199425195bd2.jsView on unpkg · L1
shell/util/file.jsView file
1const fse = require("fs-extra"); L2: const fs = require("fs");
Medium
Dynamic Require

Package source references dynamic require/import behavior.

shell/util/file.jsView on unpkg · L1
shell/postinstall-optional.jsView file
22const globalFlag = process.env.npm[redacted] ? '-g' : ''; L23: execSync(`npm install ${dep}@${optionalDeps[dep]} ${globalFlag}`, { stdio: 'inherit' }); L24: console.log(`✅ ${dep} installed successfully`);
High
Runtime Package Install

Package source invokes a package manager install command at runtime.

shell/postinstall-optional.jsView on unpkg · L22
build/jieba_rs_wasm_bg.wasmView file
path = build/jieba_rs_wasm_bg.wasm kind = wasm_module sizeBytes = 4015308 magicHex = [redacted]
Medium
Ships Wasm Module

Package ships WebAssembly modules.

build/jieba_rs_wasm_bg.wasmView on unpkg
shell/start/filecat-uninstall.cmdView file
path = shell/start/filecat-uninstall.cmd kind = build_helper sizeBytes = 30 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

shell/start/filecat-uninstall.cmdView on unpkg
build/dist/2f6b8a5d7bad83cb7306.woff2View file
path = build/dist/2f6b8a5d7bad83cb7306.woff2 kind = high_entropy_blob sizeBytes = 11912 magicHex = [redacted]
High
Ships High Entropy Blob

Package ships high-entropy non-source blobs.

build/dist/2f6b8a5d7bad83cb7306.woff2View on unpkg
build/main.jsView file
path = build/main.js kind = oversized_source_file sizeBytes = 6275597 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

build/main.jsView on unpkg
build/dist/2851.71a8194893c3094db03a.jsView file
1patternName = generic_password severity = medium line = 1 matchedText = "use str...}]);
Medium
Secret Pattern

Hardcoded password in build/dist/2851.71a8194893c3094db03a.js

build/dist/2851.71a8194893c3094db03a.jsView on unpkg · L1
build/dist/8090.d9f12bdd7719631e7dcf.jsView file
2patternName = google_api_key severity = high line = 2 matchedText = (self.we...}]);
High
Secret Pattern

Google API key in build/dist/8090.d9f12bdd7719631e7dcf.js

build/dist/8090.d9f12bdd7719631e7dcf.jsView on unpkg · L2
build/dist/1472.e8ce419a6691744e1c49.jsView file
1patternName = generic_password severity = medium line = 1 matchedText = "use str...}]);
Medium
Secret Pattern

Hardcoded password in build/dist/1472.e8ce419a6691744e1c49.js

build/dist/1472.e8ce419a6691744e1c49.jsView on unpkg · L1

Findings

3 Critical7 High9 Medium6 Low
CriticalCritical Secretbuild/dist/5450.113da2885aa4cb937cab.js
CriticalPrevious Version Dangerous Deltashell/build.js
CriticalSecret Patternbuild/dist/5450.113da2885aa4cb937cab.js
HighChild Processshell/build.js
HighShellbuild/dist/1595.5f5ec6122acae3a9cd0b.js
HighRuntime Package Installshell/postinstall-optional.js
HighObfuscated
HighShips High Entropy Blobbuild/dist/2f6b8a5d7bad83cb7306.woff2
HighOversized Source Filebuild/main.js
HighSecret Patternbuild/dist/8090.d9f12bdd7719631e7dcf.js
MediumDynamic Requireshell/util/file.js
MediumNetwork
MediumEnvironment Vars
MediumProtestware
MediumShips Wasm Modulebuild/jieba_rs_wasm_bg.wasm
MediumShips Build Helpershell/start/filecat-uninstall.cmd
MediumStructural Risk Force Deep Review
MediumSecret Patternbuild/dist/2851.71a8194893c3094db03a.js
MediumSecret Patternbuild/dist/1472.e8ce419a6691744e1c49.js
LowScripts Present
LowEvalbuild/dist/main.8139245c199425195bd2.js
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings