Static Scan Results
scanned 3h ago · by rust-scannerStatic analysis flagged 10 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetwork
HighEntropyStringsUrlStrings
Source & flagged code
3 flagged · loading sourcedist/src/modules/aas/session/dto/input/get-current-active-session.dto.jsView file
22patternName = supabase_service_key
severity = critical
line = 22
matchedText = example:...5c',
Critical
Critical Secret
Package contains a critical-looking secret pattern.
dist/src/modules/aas/session/dto/input/get-current-active-session.dto.jsView on unpkg · L2222patternName = supabase_service_key
severity = critical
line = 22
matchedText = example:...5c',
Critical
Secret Pattern
Supabase service role key (JWT) in dist/src/modules/aas/session/dto/input/get-current-active-session.dto.js
dist/src/modules/aas/session/dto/input/get-current-active-session.dto.jsView on unpkg · L22src/modules/aas/session/dto/input/get-current-active-session.dto.tsView file
9patternName = supabase_service_key
severity = critical
line = 9
matchedText = 'eyJhbGc...5c',
Critical
Secret Pattern
Supabase service role key (JWT) in src/modules/aas/session/dto/input/get-current-active-session.dto.ts
src/modules/aas/session/dto/input/get-current-active-session.dto.tsView on unpkg · L9Findings
3 Critical2 Medium5 Low
CriticalCritical Secretdist/src/modules/aas/session/dto/input/get-current-active-session.dto.js
CriticalSecret Patterndist/src/modules/aas/session/dto/input/get-current-active-session.dto.js
CriticalSecret Patternsrc/modules/aas/session/dto/input/get-current-active-session.dto.ts
MediumNetwork
MediumEnvironment Vars
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings