registry  /  obolus-sync  /  1.2.5

obolus-sync@1.2.5

The Obolus Context Engine CLI

Static Scan Results

scanned 10h ago · by rust-scanner

Static analysis completed at 93.0% confidence. No malicious behavior was detected; 7 low-signal pattern(s) were surfaced and cleared.

Static reason
No blocking static signals were detected.; previous stored version diff introduced dangerous source

Decision evidence

public snapshot
Behavioral surface
Source
EnvironmentVarsFilesystemNetwork
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 5 file(s), 41.9 KB of source, external domains: obolus-nu.vercel.app

Source & flagged code

1 flagged · loading source
lib/shield.cjsView file
matchType = previous_version_dangerous_delta matchedPackage = obolus-sync@1.1.2 matchedIdentity = npm:b2JvbHVzLXN5bmM:1.1.2 similarity = 0.400 summary = stored previous version shares package body but lacks this dangerous source file
High
Previous Version Dangerous Delta

This package version adds a dangerous source file absent from the previous stored version; route for source-aware review.

lib/shield.cjsView on unpkg

Findings

1 High2 Medium4 Low
HighPrevious Version Dangerous Deltalib/shield.cjs
MediumNetwork
MediumEnvironment Vars
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings