Framework & runtime versions
Identifies Electron, Tauri, NW.js, Flutter, Qt, React Native,
Wails, Sciter, Java, CEF, or native Cocoa — with a
high/medium/low confidence rating. Surfaces the precise version of
each detected runtime from Info.plists, the Mach-O string table,
or bundled release files.
Hardened-runtime entitlements
Flags the load-bearing ones: allow-jit,
allow-unsigned-executable-memory,
disable-library-validation,
get-task-allow, and more.
Code signature & notarization
Signing authority chain, Team ID, hardened-runtime flag, and
whether the app carries a stapled notarization ticket.
ASAR integrity
Compares the declared ElectronAsarIntegrity hash
against the actual hash of app.asar and tells you
whether the archive was modified after signing.
Runtime CVEs
Every detected runtime is checked against four user-toggleable
vulnerability feeds, with a max-age filter to keep wide-net CPEs
(Safari, Java, Qt) from returning decades of history. See
sources below.
Bundled-dependency CVEs
Reads package-lock.json from inside the app's
app.asar and runs a batched OSV query across every
(name, version) pair it finds.
System side effects
Enumerates what an app installs outside its bundle:
browser native-messaging-host bridges,
launchd agents/daemons, helper XPC services, and log
directories.
Static analysis
An AST-driven rule engine reads app.asar directly and
flags insecure Electron configuration
(nodeIntegration, missing CSP, disabled sandbox, …).
See static analysis.