Static Scan Results
scanned 5h ago · by rust-scannerStatic analysis completed at 65.0% confidence. No malicious behavior was detected; 8 low-signal pattern(s) were surfaced and cleared.
Static reason
No blocking static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemShell
HighEntropyStringsUrlStrings
Source & flagged code
2 flagged · loading sourcesrc/cli.jsView file
17import { writeFrontmatterBlock, writeFrontmatterField } from './frontmatter.js';
L18: import { execFileSync, spawn } from 'node:child_process';
L19: import { execCommand } from './hooks.js';
...
L33: // reacting to itself). Inherited by spawned handlers via the environment.
L34: process.env.KANBENTO_CLI ??= fileURLToPath(import.meta.url);
L35:
...
L119:
L120: const VERSION = JSON.parse(readFileSync(new URL('../package.json', import.meta.url), 'utf8')).version ?? '0.0.0';
L121:
...
L270: console.log(` ${res.steps.length} step(s) · workspace → ${runDir}`);
L271: if (res.outcome !== 'delivered') process.exitCode = 1;
L272: }));
Medium
Install Persistence
Source writes installer persistence such as shell profile or service configuration.
src/cli.jsView on unpkg · L17procedures/status-update/scripts/git-activity.shView file
•path = procedures/status-update/scripts/git-activity.sh
kind = build_helper
sizeBytes = 3420
magicHex = [redacted]
Medium
Ships Build Helper
Package ships non-JavaScript build or shell helper files.
procedures/status-update/scripts/git-activity.shView on unpkgFindings
4 Medium4 Low
MediumEnvironment Vars
MediumInstall Persistencesrc/cli.js
MediumShips Build Helperprocedures/status-update/scripts/git-activity.sh
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings