Static Scan Results
scanned 2h ago · by rust-scannerStatic analysis flagged 12 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessEvalNetworkShellWebSocket
HighEntropyStringsMinifiedObfuscatedUrlStrings
NoLicense
Source & flagged code
4 flagged · loading sourcedist/yimi-webrtc-phone.es.jsView file
16753patternName = generic_password
severity = medium
line = 16753
matchedText = return A...i2);
Medium
Secret Pattern
Package contains a possible secret pattern.
dist/yimi-webrtc-phone.es.jsView on unpkg · L1675311553try {
L11554: n = n || new Function("return this")();
L11555: } catch (t2) {
Low
Eval
Package source references a known benign dynamic code generation pattern.
dist/yimi-webrtc-phone.es.jsView on unpkg · L11553dist/yimi-webrtc-phone.cjs.jsView file
31patternName = generic_password
severity = medium
line = 31
matchedText = g=functi...A(){
Medium
Secret Pattern
Hardcoded password in dist/yimi-webrtc-phone.cjs.js
dist/yimi-webrtc-phone.cjs.jsView on unpkg · L31dist/yimi-webrtc-phone.iife.jsView file
30patternName = generic_password
severity = medium
line = 30
matchedText = g=functi...A(){
Medium
Secret Pattern
Hardcoded password in dist/yimi-webrtc-phone.iife.js
dist/yimi-webrtc-phone.iife.jsView on unpkg · L30Findings
5 Medium7 Low
MediumSecret Patterndist/yimi-webrtc-phone.es.js
MediumNetwork
MediumStructural Risk Force Deep Review
MediumSecret Patterndist/yimi-webrtc-phone.cjs.js
MediumSecret Patterndist/yimi-webrtc-phone.iife.js
LowNon Install Lifecycle Scripts
LowScripts Present
LowEvaldist/yimi-webrtc-phone.es.js
LowObfuscated
LowHigh Entropy Strings
LowUrl Strings
LowNo License