Static Scan Results
scanned 4h ago · by rust-scannerStatic analysis flagged 8 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
CryptoNetwork
HighEntropyStrings
Source & flagged code
5 flagged · loading sourcelib/anthbotApi.jsView file
21patternName = aws_access_key
severity = critical
line = 21
matchedText = const AW...45';
Critical
Critical Secret
Package contains a critical-looking secret pattern.
lib/anthbotApi.jsView on unpkg · L2121patternName = aws_access_key
severity = critical
line = 21
matchedText = const AW...45';
Critical
24patternName = aws_access_key
severity = critical
line = 24
matchedText = const AW...5V';
Critical
27patternName = aws_access_key
severity = critical
line = 27
matchedText = const AW...74';
Critical
3* NodeJS port of the Python api.py module by @vincentjanv...
L4: * https://github.com/vincentjanv/anthbot_genie_ha
L5: * ... with a few addions/changes of course ;)
...
L12: const tarStream = require('tar-stream');
L13: const { URLSearchParams } = require('node:url');
L14:
...
L113: if (contentType.includes('application/json') || contentType.startsWith('text/')) {
L114: const responseBody = await responseClone.text();
L115: if (responseBody) {
Low
Weak Crypto
Package source references weak cryptographic algorithms.
lib/anthbotApi.jsView on unpkg · L3Findings
4 Critical1 Medium3 Low
CriticalCritical Secretlib/anthbotApi.js
CriticalSecret Patternlib/anthbotApi.js
CriticalSecret Patternlib/anthbotApi.js
CriticalSecret Patternlib/anthbotApi.js
MediumNetwork
LowScripts Present
LowWeak Cryptolib/anthbotApi.js
LowHigh Entropy Strings