registry  /  useblocks  /  1.1.27

useblocks@1.1.27

⚠ Under review

<p align="left"> <a href="https://emailmaker.ru/" target="blank"><img src="https://emcdn.ru/389992/240402_17_0uOwHpL.png" width="500" alt="EmailMaker" /></a> </p>

Static Scan Results

scanned 3h ago · by rust-scanner

Static analysis flagged 13 finding(s) at 86.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
High-risk behavior combination matched malicious policy.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessDynamicRequireEnvironmentVarsFilesystemNetwork
Supply chain
HighEntropyStringsMinifiedObfuscatedTelemetryUrlStrings
ManifestNo manifest risk signals triggered.
scanned 200 file(s), 26.0 MB of source, external domains: a.klaviyo.com, api-b2b.backenster.com, api.brevo.com, api.cc.email, api.createsend.com, api.emailmaker.ru, api.enkod.ru, api.eu.amplitude.com, api.getresponse.com, api.giphy.com, api.hubapi.com, api.sendsay.ru, api.unsplash.com, api2.amplitude.com, app.amplitude.com, app.bentonow.com, app.brevo.com, app.constantcontact.com, app.createsend.com, app.emailmaker.ru, app.enkod.ru, app.eu.amplitude.com, app.getresponse.com, app.hubspot.com, app.s7.exacttarget.com, app.sendsay.ru, app.unisender.com, app.useblocks.io, apps.stag2.amplitude.com, bit.ly, bugzilla.mozilla.org, cdn.amplitude.com, cdn.ampproject.org, cdn.jsdelivr.net, cdn.useblocks.io, code.google.com, code.visualstudio.com, developer.constantcontact.com, developer.dotdigital.com, developer.mozilla.org, developer.salesforce.com, developers.google.com, developers.hubspot.com, diagnostics.prod.eu-central-1.amplitude.com, diagnostics.prod.us-west-2.amplitude.com, docs.sendsay.ru, drafts.csswg.org, emailmaker.ru, emcdn.ru, en.wikipedia.org
Oversized source lightweight scan
assets/ts.worker-E6wGXDvE.js6.58 MB file, sampled 256 KB
FilesystemNetworkChildProcessEnvironmentVars
monacoeditorwork/ts.worker.bundle.js6.58 MB file, sampled 256 KB
FilesystemNetworkChildProcessEnvironmentVarsMinified
static/core/aaaead9c.js2.35 MB file, sampled 256 KB
NetworkChildProcessMinified

Source & flagged code

5 flagged · loading source
iframe/js/sanitize-html/sanitize-html.jsView file
255*/ 'use strict'; L256: var base64 = require('base64-js'); L257: var ieee754 = require('ieee754');
Medium
Dynamic Require

Package source references dynamic require/import behavior.

iframe/js/sanitize-html/sanitize-html.jsView on unpkg · L255
iframe/js/iframe-eblock.jsView file
1const iframe_eblock_js_sv=iframe_eblock_js_F;function iframe_eblock_js_R(){const bi=['[redacted]','Aw1N...
High
Obfuscated Payload Loader

Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.

iframe/js/iframe-eblock.jsView on unpkg · L1
monacoeditorwork/html.worker.bundle.jsView file
27contains invisible/control Unicode U+2060 (word joiner) `,"nexist;":`∄`,"nexists;":`∄`,"Nfr;":`𝔑`,"nfr;":`𝔫`,"ngE;":`≧̸`,"nge;":`≱`,"ngeq;":`≱`,"ngeqq;":`≧̸`,"ngeqslant;":`⩾̸`,"nges;":`⩾̸`,"nGg;":`⋙̸`,"ngsim;":`≵`,"nGt;":`≫⃒`,"ngt;":`≯`,"ngtr;":`≯`,"nGtv;":`≫̸`,"nhArr;":`⇎`,"nharr;":`↮`,"nhpar;"
Critical
Trojan Source Unicode

Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.

monacoeditorwork/html.worker.bundle.jsView on unpkg · L27
iframe/fonts/line-awesome/la-solid-900.woffView file
path = iframe/fonts/line-awesome/la-solid-900.woff kind = high_entropy_blob sizeBytes = 125421 magicHex = [redacted]
High
Ships High Entropy Blob

Package ships high-entropy non-source blobs.

iframe/fonts/line-awesome/la-solid-900.woffView on unpkg
monacoeditorwork/ts.worker.bundle.jsView file
path = monacoeditorwork/ts.worker.bundle.js kind = oversized_source_file sizeBytes = 6901939 magicHex = [redacted]
High
Oversized Source File

Package contains source files above the static scanner size ceiling.

monacoeditorwork/ts.worker.bundle.jsView on unpkg

Findings

1 Critical3 High4 Medium5 Low
CriticalTrojan Source Unicodemonacoeditorwork/html.worker.bundle.js
HighObfuscated Payload Loaderiframe/js/iframe-eblock.js
HighShips High Entropy Blobiframe/fonts/line-awesome/la-solid-900.woff
HighOversized Source Filemonacoeditorwork/ts.worker.bundle.js
MediumDynamic Requireiframe/js/sanitize-html/sanitize-html.js
MediumNetwork
MediumEnvironment Vars
MediumStructural Risk Force Deep Review
LowFilesystem
LowObfuscated
LowHigh Entropy Strings
LowTelemetry
LowUrl Strings