Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis completed at 65.0% confidence. No malicious behavior was detected; 11 low-signal pattern(s) were surfaced and cleared.
Static reason
No blocking static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessDynamicRequireFilesystemNetwork
HighEntropyStringsMinifiedProtestwareUrlStrings
NoLicense
Oversized source lightweight scan
editor/assets/rapier-DE6a0vmv.js2.13 MB file, sampled 256 KB
NetworkMinified
Source & flagged code
3 flagged · loading sourcebin/incanto-assets.mjsView file
84if (entry.animation) {
L85: const { spriteFromLibraryMeta } = await import(
L86: pathToFileURL(join(PKG, 'dist', '2d.js')).href
Medium
Dynamic Require
Package source references dynamic require/import behavior.
bin/incanto-assets.mjsView on unpkg · L84assets/audio/attacked.mp3View file
•path = assets/audio/attacked.mp3
kind = high_entropy_blob
sizeBytes = 8757
magicHex = [redacted]
High
Ships High Entropy Blob
Package ships high-entropy non-source blobs.
assets/audio/attacked.mp3View on unpkgeditor/assets/rapier-DE6a0vmv.jsView file
•path = editor/assets/rapier-DE6a0vmv.js
kind = oversized_source_file
sizeBytes = 2236503
magicHex = [redacted]
High
Oversized Source File
Package contains source files above the static scanner size ceiling.
editor/assets/rapier-DE6a0vmv.jsView on unpkgFindings
2 High4 Medium5 Low
HighShips High Entropy Blobassets/audio/attacked.mp3
HighOversized Source Fileeditor/assets/rapier-DE6a0vmv.js
MediumDynamic Requirebin/incanto-assets.mjs
MediumNetwork
MediumProtestware
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings
LowNo License