registry  /  gentiq  /  0.10.3

gentiq@0.10.3

React UI library for the Gentiq AI framework.

Static Scan Results

scanned 13d ago · by rust-scanner

Static analysis flagged 10 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessNetwork
Supply chain
HighEntropyStringsUrlStrings
Manifest
NoLicenseWildcardDependency
scanned 3 file(s), 640 KB of source, external domains: example.com, html.spec.whatwg.org, stackoverflow.com, www.gnu.org, www.w3.org

Source & flagged code

3 flagged · loading source
dist/checkbox-Bk6TjhJn.jsView file
6867patternName = generic_password severity = medium line = 6867 matchedText = const xi... = {
Medium
Secret Pattern

Package contains a possible secret pattern.

dist/checkbox-Bk6TjhJn.jsView on unpkg · L6867
6876patternName = generic_password severity = medium line = 6876 matchedText = }, Oi = ... = {
Medium
Secret Pattern

Hardcoded password in dist/checkbox-Bk6TjhJn.js

dist/checkbox-Bk6TjhJn.jsView on unpkg · L6876
dist/favicon.icoView file
path = dist/favicon.ico kind = high_entropy_blob sizeBytes = 6915 magicHex = [redacted]
High
Ships High Entropy Blob

Package ships high-entropy non-source blobs.

dist/favicon.icoView on unpkg

Findings

1 High5 Medium4 Low
HighShips High Entropy Blobdist/favicon.ico
MediumSecret Patterndist/checkbox-Bk6TjhJn.js
MediumNetwork
MediumStructural Risk Force Deep Review
MediumWildcard Dependency
MediumSecret Patterndist/checkbox-Bk6TjhJn.js
LowScripts Present
LowHigh Entropy Strings
LowUrl Strings
LowNo License