Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 9 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessEnvironmentVarsFilesystemNetwork
HighEntropyStringsUrlStrings
Source & flagged code
1 flagged · loading sourcedist/index.jsView file
35var import_path = __toESM(require("path"));
L36: var import_child_process = require("child_process");
L37: var import_chalk = __toESM(require("chalk"));
...
L39: try {
L40: const result = (0, import_child_process.spawnSync)("docker", ["info"], { stdio: "ignore", shell: process.platform === "win32" });
L41: return result.status === 0;
...
L52: });
L53: const output = result2.stdout?.toString() || "";
L54: const inUse = output.split("\n").some((line) => {
...
L67: const cmd = ["compose", "-f", composeFile, ...args];
L68: const env = { ...process.env };
L69: if (envFile) {
High
Sandbox Evasion Gated Capability
Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/index.jsView on unpkg · L35Findings
1 High3 Medium5 Low
HighSandbox Evasion Gated Capabilitydist/index.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings