Static Scan Results
scanned 11h ago · by rust-scannerStatic analysis flagged 12 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessCryptoDynamicRequireEnvironmentVarsFilesystemNetworkShell
HighEntropyStringsObfuscatedUrlStrings
Source & flagged code
4 flagged · loading sourcedist/router-TLEAOFID.jsView file
4// src/cli/commands/migrate/router.ts
L5: import { execFileSync } from "child_process";
L6: import { existsSync, mkdirSync, readFileSync, renameSync, writeFileSync } from "fs";
High
Child Process
Package source references child process execution.
dist/router-TLEAOFID.jsView on unpkg · L444const fromSub = (_m, q, spec) => `from ${q}${transformSpecifier(spec)}${q}`;
L45: const dynSub = (_m, q, spec) => `import(${q}${transformSpecifier(spec)}${q})`;
L46: const sideSub = (_m, q, spec) => `import ${q}${transformSpecifier(spec)}${q}`;
Medium
Dynamic Require
Package source references dynamic require/import behavior.
dist/router-TLEAOFID.jsView on unpkg · L44dist/chunk-45C3WUQ7.jsView file
514cwd,
L515: shell: true,
L516: env,
High
dist/db-3UNAMSFK.jsView file
33console.log("\n \u25B8 Running drizzle-kit push...\n");
L34: execSync("npx drizzle-kit push", { cwd, stdio: "inherit" });
L35: return { status: "success", message: "Database migrated successfully", action: dbAction };
High
Runtime Package Install
Package source invokes a package manager install command at runtime.
dist/db-3UNAMSFK.jsView on unpkg · L33Findings
3 High4 Medium5 Low
HighChild Processdist/router-TLEAOFID.js
HighShelldist/chunk-45C3WUQ7.js
HighRuntime Package Installdist/db-3UNAMSFK.js
MediumDynamic Requiredist/router-TLEAOFID.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings