registry  /  unjwt  /  0.7.3

unjwt@0.7.3

Low-level JWT utilities

Static Scan Results

scanned 2h ago · by rust-scanner

Static analysis flagged 6 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
SourceNo risky source behavior triggered.
Supply chain
HighEntropyStringsObfuscated
ManifestNo manifest risk signals triggered.
scanned 14 file(s), 193 KB of source

Source & flagged code

3 flagged · loading source
dist/core/jwk.d.mtsView file
285patternName = private_key_rsa severity = critical line = 285 matchedText = * - JWK ...--`)
Critical
Critical Secret

Package contains a critical-looking secret pattern.

dist/core/jwk.d.mtsView on unpkg · L285
285patternName = private_key_rsa severity = critical line = 285 matchedText = * - JWK ...--`)
Critical
Secret Pattern

RSA private key in dist/core/jwk.d.mts

dist/core/jwk.d.mtsView on unpkg · L285
dist/_chunks/jwk.mjsView file
1387patternName = private_key_rsa severity = critical line = 1387 matchedText = if (pem....s8";
Critical
Secret Pattern

RSA private key in dist/_chunks/jwk.mjs

dist/_chunks/jwk.mjsView on unpkg · L1387

Findings

3 Critical3 Low
CriticalCritical Secretdist/core/jwk.d.mts
CriticalSecret Patterndist/core/jwk.d.mts
CriticalSecret Patterndist/_chunks/jwk.mjs
LowScripts Present
LowObfuscated
LowHigh Entropy Strings