registry  /  siesa-ui-kit  /  1.0.256

siesa-ui-kit@1.0.256

SIESA UI Kit - Biblioteca de componentes React con Tailwind CSS, Storybook y agentes Claude AI

Static Scan Results

scanned 7d ago · by rust-scanner

Static analysis flagged 11 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEnvironmentVarsFilesystemNetwork
Supply chain
HighEntropyStringsMinifiedProtestwareTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 29 file(s), 3.16 MB of source, external domains: api.coingecko.com, api.externa.com, bit.ly, developer.mozilla.org, fb.me, github.com, radix-ui.com, redux-toolkit.js.org, redux.js.org, www.datos.gov.co, www.w3.org
Oversized source lightweight scan
dist/index-z2UAZZtG.js2.71 MB file, sampled 256 KB
FilesystemChildProcessEnvironmentVarsHighEntropyStrings

Source & flagged code

2 flagged · loading source
dist/index-z2UAZZtG.jsView file
path = dist/index-z2UAZZtG.js kind = oversized_source_file sizeBytes = 2843350 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

dist/index-z2UAZZtG.jsView on unpkg
package.jsonView file
Runtime dependency names matching Node built-ins: path
High
Node Builtin Dependency Squat

Package declares a runtime dependency whose name matches a Node built-in module.

package.jsonView on unpkg

Findings

2 High4 Medium5 Low
HighOversized Source Filedist/index-z2UAZZtG.js
HighNode Builtin Dependency Squatpackage.json
MediumNetwork
MediumEnvironment Vars
MediumProtestware
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings