Static Scan Results
scanned 3h ago · by rust-scannerStatic analysis flagged 3 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
EnvironmentVarsFilesystem
Source & flagged code
1 flagged · loading sourcelib/inspect.mjsView file
3import path from "node:path";
L4: import net from "node:net";
L5:
...
L53: function fileStatus(raw) {
L54: const p = raw.startsWith("~") ? path.join(os.homedir(), raw.slice(1)) : raw;
L55: try {
...
L70: for (const key of ENV_WATCH) {
L71: const v = process.env[key];
L72: if (v === undefined || v === "") out[key] = { present: false };
...
L109: node: process.version,
L110: platform: process.platform,
L111: arch: process.arch,
High
Cloud Metadata Access
Source reaches cloud instance metadata or link-local credential endpoints.
lib/inspect.mjsView on unpkg · L3Findings
1 High1 Medium1 Low
HighCloud Metadata Accesslib/inspect.mjs
MediumEnvironment Vars
LowFilesystem