Static Scan Results
scanned 2d ago · by rust-scannerStatic analysis flagged 7 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Static reason
One or more suspicious static signals were detected.
Decision evidence
public snapshotBehavioral surface
ChildProcessShell
HighEntropyStringsUrlStrings
Source & flagged code
2 flagged · loading sourcebin/zidane.mjsView file
12L13: import { execSync, spawn } from 'node:child_process'
L14: import { createRequire } from 'node:module'
High
58+ `It should have been installed automatically as an optional dependency of zidane-tui.\n`
L59: + `Try reinstalling: \`npm install -g zidane-tui\` (or your package manager's equivalent).`,
L60: )
...
L65: const bin = resolveBinary()
L66: const child = spawn(bin, process.argv.slice(2), { stdio: 'inherit' })
L67: child.on('exit', (code, signal) => {
High
Runtime Package Install
Package source invokes a package manager install command at runtime.
bin/zidane.mjsView on unpkg · L58Findings
3 High1 Medium3 Low
HighChild Processbin/zidane.mjs
HighShell
HighRuntime Package Installbin/zidane.mjs
MediumStructural Risk Force Deep Review
LowScripts Present
LowHigh Entropy Strings
LowUrl Strings