critical
suspicious.dangerous_exec
- Location
- dist/bundle.js:2804
- Finding
- Shell command execution detected (child_process).
- Evidence
const matches = RELATIVE_JSON_POINTER.exec($data);
Mobile GUI Bundle
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.dangerous_exec, suspicious.dynamic_code_execution
Findings (2)
critical
suspicious.dynamic_code_execution
- Location
- dist/bundle.js:2953
- Finding
- Dynamic code execution detected.
- Evidence
const makeValidate = new Function(`${names_1.default.self}`, `${names_1.default.scope}`, sourceCode);