registry  /  gentiq  /  0.12.1

gentiq@0.12.1

React UI library for the Gentiq AI framework.

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 10 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessNetwork
Supply chain
HighEntropyStringsUrlStrings
Manifest
NoLicenseWildcardDependency
scanned 3 file(s), 647 KB of source, external domains: example.com, html.spec.whatwg.org, stackoverflow.com, www.gnu.org, www.w3.org

Source & flagged code

3 flagged · loading source
dist/checkbox-DOit9Yho.jsView file
6867patternName = generic_password severity = medium line = 6867 matchedText = const Si... = {
Medium
Secret Pattern

Package contains a possible secret pattern.

dist/checkbox-DOit9Yho.jsView on unpkg · L6867
6876patternName = generic_password severity = medium line = 6876 matchedText = }, Di = ... = {
Medium
Secret Pattern

Hardcoded password in dist/checkbox-DOit9Yho.js

dist/checkbox-DOit9Yho.jsView on unpkg · L6876
dist/favicon.icoView file
path = dist/favicon.ico kind = high_entropy_blob sizeBytes = 6915 magicHex = [redacted]
High
Ships High Entropy Blob

Package ships high-entropy non-source blobs.

dist/favicon.icoView on unpkg

Findings

1 High5 Medium4 Low
HighShips High Entropy Blobdist/favicon.ico
MediumSecret Patterndist/checkbox-DOit9Yho.js
MediumNetwork
MediumStructural Risk Force Deep Review
MediumWildcard Dependency
MediumSecret Patterndist/checkbox-DOit9Yho.js
LowScripts Present
LowHigh Entropy Strings
LowUrl Strings
LowNo License