Static Scan Results
scanned 9d ago · by rust-scannerStatic analysis flagged 39 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Decision evidence
public snapshotSource & flagged code
30 flagged · loading sourcePackage source references a known benign dynamic code generation pattern.
public/his/editor/vender/jquery/jquery.ztree.core.min.jsView on unpkg · L1Package source references dynamic require/import behavior.
jest.config.jsView on unpkg · L1Package hides binary, compressed, or executable-looking payloads in test/fixture/hidden paths.
.claude/skills/af-vue2-client-maintainer/scripts/lint-check.shView on unpkgPackage ships non-JavaScript build or shell helper files.
.claude/skills/af-vue2-client-maintainer/scripts/lint-check.shView on unpkgPackage ships high-entropy non-source blobs.
src/assets/ttf/JetBrainsMono-Light.woff2View on unpkgPackage contains source files above the static scanner size ceiling.
public/his/editor/vender/editor.jsView on unpkg