Static Scan Results
scanned 6d ago · by rust-scannerStatic analysis completed at 65.0% confidence. No malicious behavior was detected; 6 low-signal pattern(s) were surfaced and cleared.
Static reason
No blocking static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoEvalFilesystem
HighEntropyStrings
Source & flagged code
2 flagged · loading sourcedist/plugin/index.jsView file
4213].join("\n");
L4214: const fn = new Function("input", "_pos", "_rp", "_mf", "_build", "_ctx", [
L4215: ...emptyTlDecls,
Low
Eval
Package source references a known benign dynamic code generation pattern.
dist/plugin/index.jsView on unpkg · L4213666re.lastIndex = 0;
L667: const m = re.exec(lit + String.fromCharCode(code));
L668: if (m && m[0].length > lit.length) contCodes.push(code);
...
L2889: return false;
L2890: // node() captures into its own private buffers and rolls them back on
L2891: // failure (emitNode restores _ctx.* and never pushes on the !ok path).
...
L4213: ].join("\n");
L4214: const fn = new Function("input", "_pos", "_rp", "_mf", "_build", "_ctx", [
L4215: ...emptyTlDecls,
...
L5140: const r = parseSync(filePath, src);
L5141: if (r.errors.length === 0) parsed = { body: r.program.body, src };
L5142: } catch {
Low
Weak Crypto
Package source references weak cryptographic algorithms.
dist/plugin/index.jsView on unpkg · L666Findings
6 Low
LowNon Install Lifecycle Scripts
LowScripts Present
LowEvaldist/plugin/index.js
LowWeak Cryptodist/plugin/index.js
LowFilesystem
LowHigh Entropy Strings