Static Scan Results
scanned 8d ago · by rust-scannerStatic analysis completed at 65.0% confidence. No malicious behavior was detected; 9 low-signal pattern(s) were surfaced and cleared.
Decision evidence
public snapshotSource & flagged code
3 flagged · loading sourcePackage source references dynamic require/import behavior.
packages/opencode-agent-skills-md/tests/opencode/subpath.test.tsView on unpkg · L4Package hides binary, compressed, or executable-looking payloads in test/fixture/hidden paths.
packages/opencode-agent-skills-md/tests/fixtures/skills/project/.opencode/skills/scripted-skill/bin/echo.shView on unpkgPackage ships non-JavaScript build or shell helper files.
packages/opencode-agent-skills-md/tests/fixtures/skills/project/.opencode/skills/scripted-skill/bin/echo.shView on unpkg