Static Scan Results
scanned 8d ago · by rust-scannerStatic analysis flagged 12 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Decision evidence
public snapshotSource & flagged code
4 flagged · loading sourcePackage name is suspiciously similar to a popular package name.
package.jsonView on unpkgPackage source references a known benign dynamic code generation pattern.
dist/core/deployment/kro-factory.jsView on unpkg · L1582Package source references dynamic require/import behavior.
dist/core/expressions/analysis/source-map.jsView on unpkg · L124Source reaches cloud instance metadata or link-local credential endpoints.
dist/core/yaml/path-resolver.jsView on unpkg · L4