registry  /  pacificdb-client  /  0.1.0

pacificdb-client@0.1.0

Official PacificDB TypeScript/JavaScript client

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 5 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
SourceNo risky source behavior triggered.
Supply chainNo supply-chain packaging signals triggered.
ManifestNo manifest risk signals triggered.
scanned 3 file(s), 40.6 KB of source

Source & flagged code

3 flagged · loading source
dist/index.jsView file
101patternName = generic_password severity = medium line = 101 matchedText = if (url....ED";
Medium
Secret Pattern

Package contains a possible secret pattern.

dist/index.jsView on unpkg · L101
dist/index.cjsView file
137patternName = generic_password severity = medium line = 137 matchedText = if (url....ED";
Medium
Secret Pattern

Hardcoded password in dist/index.cjs

dist/index.cjsView on unpkg · L137
dist/index.mjsView file
101patternName = generic_password severity = medium line = 101 matchedText = if (url....ED";
Medium
Secret Pattern

Hardcoded password in dist/index.mjs

dist/index.mjsView on unpkg · L101

Findings

3 Medium2 Low
MediumSecret Patterndist/index.js
MediumSecret Patterndist/index.cjs
MediumSecret Patterndist/index.mjs
LowNon Install Lifecycle Scripts
LowScripts Present