Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 12 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsEvalFilesystemNetworkShell
HighEntropyStringsTelemetryUrlStrings
WildcardDependency
Source & flagged code
4 flagged · loading sourcedist/index.jsView file
1234patternName = generic_password
severity = medium
line = 1234
matchedText = const bo..." };
Medium
2111patternName = generic_password
severity = medium
line = 2111
matchedText = body: { ..." },
Medium
4276patternName = generic_password
severity = medium
line = 4276
matchedText = password...99",
Medium
55title: "CSP com 'unsafe-eval' em script-src",
L56: detail: "'unsafe-eval' reabre eval()/new Function()/setTimeout(string) \u2014 amplia a superf\xEDcie de XSS.",
L57: recommendation: "Remova 'unsafe-eval' e refatore o c\xF3digo que depende de eval/Function din\xE2micos."
Low
Eval
Package source references a known benign dynamic code generation pattern.
dist/index.jsView on unpkg · L55Findings
6 Medium6 Low
MediumSecret Patterndist/index.js
MediumNetwork
MediumEnvironment Vars
MediumWildcard Dependency
MediumSecret Patterndist/index.js
MediumSecret Patterndist/index.js
LowScripts Present
LowEvaldist/index.js
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings