Static Scan Results
scanned 1h ago · by rust-scannerStatic analysis flagged 13 finding(s) at 86.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
High-risk behavior combination matched malicious policy.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEnvironmentVarsFilesystemNetworkShell
HighEntropyStringsMinifiedObfuscatedProtestwareTelemetryUrlStrings
Source & flagged code
2 flagged · loading sourceserver/dist/client/assets/index-4qMZFL9L.jsView file
93contains invisible/control Unicode U+200B (zero width space)
`).at(-1);if(a&&a.trim().length>0)return`${t}<U+200B>`}if(NAe.test(i)&&!n.match(MAe)){let a=r.split(`
Critical
Trojan Source Unicode
Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
server/dist/client/assets/index-4qMZFL9L.jsView on unpkg · L93server/dist/client/assets/inter-greek-wght-normal-CkhJZR-_.woff2View file
•path = server/dist/client/assets/inter-greek-wght-normal-CkhJZR-_.woff2
kind = high_entropy_blob
sizeBytes = 18996
magicHex = [redacted]
High
Ships High Entropy Blob
Package ships high-entropy non-source blobs.
server/dist/client/assets/inter-greek-wght-normal-CkhJZR-_.woff2View on unpkgFindings
1 Critical1 High4 Medium7 Low
CriticalTrojan Source Unicodeserver/dist/client/assets/index-4qMZFL9L.js
HighShips High Entropy Blobserver/dist/client/assets/inter-greek-wght-normal-CkhJZR-_.woff2
MediumNetwork
MediumEnvironment Vars
MediumProtestware
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings