registry  /  stormfetch  /  1.1.0

stormfetch@1.1.0

A typed HTTP client for browser, Node.js, SSR, and server applications.

Static Scan Results

scanned 13d ago · by rust-scanner

Static analysis completed at 65.0% confidence. No malicious behavior was detected; 5 low-signal pattern(s) were surfaced and cleared.

Static reason
No blocking static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
DynamicRequireEvalNetwork
Supply chainNo supply-chain packaging signals triggered.
ManifestNo manifest risk signals triggered.
scanned 2 file(s), 72.8 KB of source

Source & flagged code

2 flagged · loading source
dist/esm/index.jsView file
279// [redacted].ts L280: var dynamicImport = (specifier) => new Function("specifier", "return import(specifier)")(specifier); L281: var toArrayBuffer = (buffer) => new Uint8Array(buffer).buffer;
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/esm/index.jsView on unpkg · L279
279// [redacted].ts L280: var dynamicImport = (specifier) => new Function("specifier", "return import(specifier)")(specifier); L281: var toArrayBuffer = (buffer) => new Uint8Array(buffer).buffer;
Low
Eval

Package source references a known benign dynamic code generation pattern.

dist/esm/index.jsView on unpkg · L279

Findings

2 Medium3 Low
MediumDynamic Requiredist/esm/index.js
MediumNetwork
LowNon Install Lifecycle Scripts
LowScripts Present
LowEvaldist/esm/index.js