registry  /  gforge  /  0.2.0

gforge@0.2.0

A git firewall: a global pre-commit hook that blocks commits containing secrets (passwords, keys, tokens, .env files) across macOS, Linux, and Windows.

Static Scan Results

scanned 1d ago · by rust-scanner

Static analysis completed at 93.0% confidence. No malicious behavior was detected; 5 low-signal pattern(s) were surfaced and cleared.

Static reason
No blocking static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEnvironmentVarsFilesystemShell
Supply chainNo supply-chain packaging signals triggered.
ManifestNo manifest risk signals triggered.
scanned 9 file(s), 39.2 KB of source

Source & flagged code

1 flagged · loading source
src/scanner.jsView file
matchType = previous_version_dangerous_delta matchedPackage = gforge@0.1.0 matchedIdentity = npm:Z2Zvcmdl:0.1.0 similarity = 0.750 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

src/scanner.jsView on unpkg

Findings

1 High1 Medium3 Low
HighPrevious Version Dangerous Deltasrc/scanner.js
MediumEnvironment Vars
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem