Static Scan Results
scanned 3d ago · by rust-scannerStatic analysis completed at 93.0% confidence. No malicious behavior was detected; 10 low-signal pattern(s) were surfaced and cleared.
Static reason
No blocking static signals were detected.; previous stored version diff introduced dangerous source
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetwork
HighEntropyStringsUrlStrings
Source & flagged code
3 flagged · loading sourcedist/localSafetySnapshot.jsView file
42const CACHE_TTL_MS = 60_000;
L43: const CACHE_DIR = path.join(os.homedir(), '.fullcourtdefense');
L44: function cachePath(input) {
...
L51: try {
L52: const parsed = JSON.parse(fs.readFileSync(file, 'utf8'));
L53: if (!parsed?.snapshot || typeof parsed.loadedAt !== 'number')
...
L98: try {
L99: const resp = await fetch(`${input.apiUrl}/api/agent-security/runtime/local-safety-snapshot`, {
L100: method: 'POST',
L101: headers,
L102: body: JSON.stringify({
L103: shieldId: input.shieldId,
Low
Weak Crypto
Package source references weak cryptographic algorithms.
dist/localSafetySnapshot.jsView on unpkg · L42dist/commands/autoProtect.jsView file
39const path = __importStar(require("path"));
L40: const child_process_1 = require("child_process");
L41: const mcpGateway_1 = require("./mcpGateway");
...
L48: function cliEntry() {
L49: return path.resolve(process.argv[1] || path.join(__dirname, '..', 'index.js'));
L50: }
L51: function launcherDir() {
L52: const base = process.platform === 'win32'
L53: ? (process.env.LOCALAPPDATA || path.join(os.homedir(), 'AppData', 'Local'))
L54: : path.join(os.homedir(), '.fullcourtdefense');
...
L76: : ['/SC', 'MINUTE', '/MO', String(intervalMinutes)];
L77: const result = (0, child_process_1.spawnSync)('schtasks', [...baseArgs, ...schedArgs], { stdio: 'inherit' });
Medium
Install Persistence
Source writes installer persistence such as shell profile or service configuration.
dist/commands/autoProtect.jsView on unpkg · L39dist/commands/discoverSchedule.jsView file
•matchType = previous_version_dangerous_delta
matchedPackage = fullcourtdefense-cli@1.14.8
matchedIdentity = npm:ZnVsbGNvdXJ0ZGVmZW5zZS1jbGk:1.14.8
similarity = 0.947
summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta
This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.
dist/commands/discoverSchedule.jsView on unpkgFindings
1 High3 Medium6 Low
HighPrevious Version Dangerous Deltadist/commands/discoverSchedule.js
MediumNetwork
MediumEnvironment Vars
MediumInstall Persistencedist/commands/autoProtect.js
LowNon Install Lifecycle Scripts
LowScripts Present
LowWeak Cryptodist/localSafetySnapshot.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings