registry  /  subtrack  /  8.0.0

subtrack@8.0.0

CLI tool to manage subscription services from the terminal

Static Scan Results

scanned 4d ago · by rust-scanner

Static analysis completed at 65.0% confidence. No malicious behavior was detected; 7 low-signal pattern(s) were surfaced and cleared.

Static reason
No blocking static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 6 file(s), 382 KB of source, external domains: open.er-api.com, raw.githubusercontent.com

Source & flagged code

1 flagged · loading source
dist/index.mjsView file
1062async function sendNotification(entries, days) { L1063: const { default: notifier } = await import("node-notifier"); L1064: const count = entries.length;
Medium
Dynamic Require

Package source references dynamic require/import behavior.

dist/index.mjsView on unpkg · L1062

Findings

3 Medium4 Low
MediumDynamic Requiredist/index.mjs
MediumNetwork
MediumEnvironment Vars
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings