Static Scan Results
scanned 3h ago · by rust-scannerStatic analysis flagged 12 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetwork
HighEntropyStringsMinifiedObfuscatedProtestwareUrlStrings
Source & flagged code
4 flagged · loading sourceesm/vendor/server/jose.mjsView file
1208patternName = private_key_rsa
severity = critical
line = 1208
matchedText = if (type...0) {
Critical
Critical Secret
Package contains a critical-looking secret pattern.
esm/vendor/server/jose.mjsView on unpkg · L12081208patternName = private_key_rsa
severity = critical
line = 1208
matchedText = if (type...0) {
Critical
Secret Pattern
RSA private key in esm/vendor/server/jose.mjs
esm/vendor/server/jose.mjsView on unpkg · L1208tools/isLikelyDevServer.jsView file
3exports.getIsLikelyDevServer = getIsLikelyDevServer;
L4: const isBrowser_1 = require("./isBrowser");
L5: let isLikelyDevServer_cache = undefined;
Medium
Dynamic Require
Package source references dynamic require/import behavior.
tools/isLikelyDevServer.jsView on unpkg · L3vendor/server/jose.jsView file
2patternName = private_key_rsa
severity = critical
line = 2
matchedText = (()=>{"u...)();
Critical
Findings
3 Critical5 Medium4 Low
CriticalCritical Secretesm/vendor/server/jose.mjs
CriticalSecret Patternesm/vendor/server/jose.mjs
CriticalSecret Patternvendor/server/jose.js
MediumDynamic Requiretools/isLikelyDevServer.js
MediumNetwork
MediumEnvironment Vars
MediumProtestware
MediumStructural Risk Force Deep Review
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings