registry  /  gowalk-cicd  /  1.0.2

gowalk-cicd@1.0.2

Zero-config GitHub Actions delivery for iOS TestFlight and Android Google Play.

Static Scan Results

scanned 1h ago · by rust-scanner

Static analysis flagged 4 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
Filesystem
Supply chainNo supply-chain packaging signals triggered.
ManifestNo manifest risk signals triggered.
scanned 2 file(s), 9.48 KB of source

Source & flagged code

2 flagged · loading source
android-action/scripts/test_sign_bundle.pyView file
25patternName = generic_password severity = medium line = 25 matchedText = password...ord"
Medium
Secret Pattern

Package contains a possible secret pattern.

android-action/scripts/test_sign_bundle.pyView on unpkg · L25
path = android-action/scripts/test_sign_bundle.py kind = build_helper sizeBytes = 2486 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

android-action/scripts/test_sign_bundle.pyView on unpkg

Findings

2 Medium2 Low
MediumSecret Patternandroid-action/scripts/test_sign_bundle.py
MediumShips Build Helperandroid-action/scripts/test_sign_bundle.py
LowScripts Present
LowFilesystem