← Back to scan
File as GitHub Issue repo: opencv/opencv

Push this scan report to opencv/opencv

Click the green button below to open GitHub’s new-issue form, pre-filled with the report title, summary table, top findings, and an embedded score-card image. No authentication needed — you review on GitHub before submitting. Repobility is credited as the scanner.

Embedded score card image

This image will render at the top of the issue body. Hosted on Repobility, refreshes automatically after re-scans.

Repobility score card

Issue title

Missing import: `csv` used but not imported

Curate findings to include

Pick exactly which findings appear in the issue body. By default the top 5 are included. Uncheck noise, check what matters.

Top 5 (default)
Severity Rule Title File:line
CRIT MINED107 [MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` … samples/dnn/object_detection.py:24
CRIT MINED107 [MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` … samples/dnn/segmentation.py:14
CRIT MINED107 [MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` … samples/dnn/classification.py:15
CRIT MINED107 [MINED107] Missing import: `html` used but not imported: The file uses `html.something(..… modules/ts/misc/concatlogs.py:45
CRIT MINED107 [MINED107] Missing import: `csv` used but not imported: The file uses `csv.something(...)… modules/gapi/scripts/measure_privacy_ma…:83
CRIT MINED107 [MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` … platforms/winpack_dldt/2021.2/build.con…:1
CRIT MINED107 [MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` … platforms/winpack_dldt/2021.4.1/build.c…:1
CRIT MINED107 [MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` … platforms/winpack_dldt/2021.4/build.con…:1
CRIT MINED107 [MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` … platforms/winpack_dldt/2021.4.2/build.c…:1
CRIT MINED107 [MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` … platforms/winpack_dldt/2021.3/build.con…:1
CRIT MINED107 [MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` … platforms/android/ndk-25.config.py:2
CRIT MINED019 [MINED019] Ssti Jinja From String: jinja2.Environment().from_string(user_input) — full RC… modules/core/src/opencl/runtime/generat…:261
CRIT SEC084 [SEC084] JS: require() with non-literal: require(<variable>) loads arbitrary modules — eq… modules/dnn/src/cuda4dnn/primitives/det…:112
CRIT SEC084 [SEC084] JS: require() with non-literal: require(<variable>) loads arbitrary modules — eq… modules/dnn/src/cuda4dnn/csl/workspace.…:28
CRIT SEC084 [SEC084] JS: require() with non-literal: require(<variable>) loads arbitrary modules — eq… doc/js_tutorials/js_assets/webnn-electr…:2
CRIT MINED024 [MINED024] Js Eval Usage: eval() executes arbitrary code. Code injection risk. doc/js_tutorials/js_assets/webnn-electr…:63
CRIT MINED024 [MINED024] Js Eval Usage: eval() executes arbitrary code. Code injection risk. doc/js_tutorials/js_assets/utils.js:74
CRIT MINED022 [MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf. 3rdparty/libtiff/tif_compress.c:217
CRIT MINED022 [MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf. 3rdparty/libjpeg/jerror.c:194
CRIT MINED022 [MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf. 3rdparty/libjasper/jas_string.c:94
HIGH MINED108 [MINED108] `self.getConfiguration` used but never assigned in __init__: Method `mergeLibs… platforms/ios/build_framework.py:389
HIGH MINED108 [MINED108] `self.getConfiguration` used but never assigned in __init__: Method `buildOne`… platforms/ios/build_framework.py:386
HIGH MINED108 [MINED108] `self.getConfiguration` used but never assigned in __init__: Method `buildOne`… platforms/ios/build_framework.py:374
HIGH MINED108 [MINED108] `self.getObjcTarget` used but never assigned in __init__: Method `buildOne` of… platforms/ios/build_framework.py:360
HIGH MINED108 [MINED108] `self.getConfiguration` used but never assigned in __init__: Method `buildOne`… platforms/ios/build_framework.py:358
HIGH MINED108 [MINED108] `self.getDocBuildCommand` used but never assigned in __init__: Method `buildOn… platforms/ios/build_framework.py:375
HIGH MINED108 [MINED108] `self.makeCMakeCmd` used but never assigned in __init__: Method `buildOne` of … platforms/ios/build_framework.py:361
HIGH MINED108 [MINED108] `self.getBuildCommand` used but never assigned in __init__: Method `buildOne` … platforms/ios/build_framework.py:356
HIGH MINED108 [MINED108] `self.makeCMakeCmd` used but never assigned in __init__: Method `buildOne` of … platforms/ios/build_framework.py:339
HIGH MINED108 [MINED108] `self.getCMakeArgs` used but never assigned in __init__: Method `makeCMakeCmd`… platforms/ios/build_framework.py:294
HIGH MINED108 [MINED108] `self.getToolchain` used but never assigned in __init__: Method `makeCMakeCmd`… platforms/ios/build_framework.py:293
HIGH MINED108 [MINED108] `self.getConfiguration` used but never assigned in __init__: Method `getBuildC… platforms/ios/build_framework.py:253
HIGH MINED108 [MINED108] `self.getConfiguration` used but never assigned in __init__: Method `getCMakeA… platforms/ios/build_framework.py:217
HIGH MINED108 [MINED108] `self._build` used but never assigned in __init__: Method `build` of class `Bu… platforms/ios/build_framework.py:198
HIGH MINED108 [MINED108] `self.getObjcTarget` used but never assigned in __init__: Method `_build` of c… platforms/ios/build_framework.py:174
HIGH MINED108 [MINED108] `self.getObjcTarget` used but never assigned in __init__: Method `_build` of c… platforms/ios/build_framework.py:177
HIGH MINED108 [MINED108] `self.getConfiguration` used but never assigned in __init__: Method `_build` o… platforms/ios/build_framework.py:168
HIGH MINED108 [MINED108] `self.makeDynamicLib` used but never assigned in __init__: Method `_build` of … platforms/ios/build_framework.py:159
HIGH MINED108 [MINED108] `self.mergeLibs` used but never assigned in __init__: Method `_build` of class… platforms/ios/build_framework.py:155
HIGH MINED108 [MINED108] `self.copy_samples` used but never assigned in __init__: Method `_build` of cl… platforms/ios/build_framework.py:178
HIGH MINED108 [MINED108] `self.buildOne` used but never assigned in __init__: Method `_build` of class … platforms/ios/build_framework.py:150
HIGH MINED108 [MINED108] `self.getBuildDir` used but never assigned in __init__: Method `_build` of cla… platforms/ios/build_framework.py:120
HIGH MINED108 [MINED108] `self.makeFramework` used but never assigned in __init__: Method `_build` of c… platforms/ios/build_framework.py:162
HIGH MINED108 [MINED108] `self.checkCMakeVersion` used but never assigned in __init__: Method `_build` … platforms/ios/build_framework.py:97
HIGH MINED108 [MINED108] `self.debug` used but never assigned in __init__: Method `getBuildCommand` of … platforms/osx/build_framework.py:38
HIGH SEC103 [SEC103] LDAP injection — non-constant search filter: User input concatenated into an LDA… modules/gapi/scripts/measure_privacy_ma…:74
HIGH SEC085 [SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived in… modules/gapi/samples/privacy_masking_ca…:139
HIGH MINED036 [MINED036] Python Os System Call: os.system() invokes shell with no escaping. modules/dnn/src/vkcom/shader/spirv_gene…:60
HIGH MINED011 [MINED011] Scala Get On Option: Option.get throws NoSuchElementException on None. Use get… modules/dnn/src/cuda/slice.cu:169
HIGH SEC029 [SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTT… doc/js_tutorials/js_assets/webnn-electr…:24
HIGH SEC029 [SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTT… doc/js_tutorials/js_assets/utils.js:120
HIGH SEC029 [SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTT… doc/js_tutorials/js_assets/js_dnn_examp…:65
HIGH SEC128 [SEC128] Async function without await — fire-and-forget Promise (AI mistake): Async call … modules/calib3d/src/triangulate.cpp:96
HIGH SEC128 [SEC128] Async function without await — fire-and-forget Promise (AI mistake): Async call … doc/js_tutorials/js_assets/js_dnn_examp…:13
HIGH SEC128 [SEC128] Async function without await — fire-and-forget Promise (AI mistake): Async call … apps/traincascade/imagestorage.cpp:20
HIGH MINED017 [MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic. 3rdparty/zlib/inflate.h:24
HIGH MINED017 [MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic. 3rdparty/zlib-ng/inflate.h:33
HIGH MINED134 [MINED134] Binary file `samples/java/sbt/sbt/sbt-launch.jar` committed in source repo: `s… samples/java/sbt/sbt/sbt-launch.jar:1
HIGH MINED134 [MINED134] Binary file `platforms/android/gradle-wrapper/gradle/wrapper/gradle-wrapper.ja… platforms/android/gradle-wrapper/gradle…:1
HIGH MINED134 [MINED134] Binary file `platforms/android/aar-template/gradle/wrapper/gradle-wrapper.jar`… platforms/android/aar-template/gradle/w…:1
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-4.x-RISCV.yaml` pinned… .github/workflows/PR-4.x.yaml:58
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-4.x-docs.yaml` pinned … .github/workflows/PR-4.x.yaml:55
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-timvx-backend-tests-4.x.y… .github/workflows/PR-4.x.yaml:52
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-4.x-Android-SDK.yaml` pin… .github/workflows/PR-4.x.yaml:49
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-4.x-iOS.yaml` pinned t… .github/workflows/PR-4.x.yaml:46
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-4.x-macOS-ARM64-Vulkan… .github/workflows/PR-4.x.yaml:43
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-4.x-macOS-x86_64.yaml`… .github/workflows/PR-4.x.yaml:40
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-4.x-macOS-ARM64.yaml` … .github/workflows/PR-4.x.yaml:37
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-4.x-U20-Cuda.yaml` pin… .github/workflows/PR-4.x.yaml:34
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-4.x-U20-OpenVINO.yaml`… .github/workflows/PR-4.x.yaml:30
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-4.x-ARM64-Debug.yaml` … .github/workflows/PR-4.x.yaml:27
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-4.x-ARM64.yaml` pinned… .github/workflows/PR-4.x.yaml:24
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-Windows.yaml` pinned t… .github/workflows/PR-4.x.yaml:19
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-Linux-NoHAL.yaml` pinn… .github/workflows/PR-4.x.yaml:16
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-PR-Linux.yaml` pinned to … .github/workflows/PR-4.x.yaml:11
HIGH MINED115 [MINED115] Action `opencv/ci-gha-workflow/.github/workflows/OCV-CodeQL.yaml` pinned to mu… .github/workflows/4.x.yml:10
HIGH MINED118 [MINED118] Dockerfile FROM `ubuntu:18.04` not pinned by digest: `FROM ubuntu:18.04` resol… modules/videoio/misc/plugin_gstreamer/D…:1
HIGH MINED118 [MINED118] Dockerfile FROM `almalinux:9` not pinned by digest: `FROM almalinux:9` resolve… 3rdparty/zlib-ng/arch/s390/self-hosted-…:2
HIGH SEC005 [SEC005] Command Injection Risk: Unsafe shell execution or eval of user input. modules/dnn/src/vkcom/shader/spirv_gene…:95
HIGH SEC013 [SEC013] Path Traversal — User Input in File Path: User-controlled input used in file pat… modules/core/src/opencl/runtime/generat…:262
HIGH SEC013 [SEC013] Path Traversal — User Input in File Path: User-controlled input used in file pat… apps/interactive-calibration/parameters…:32
HIGH SEC013 [SEC013] Path Traversal — User Input in File Path: User-controlled input used in file pat… apps/interactive-calibration/calibPipel…:40
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… samples/python/camshift.py:108
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… samples/python/camshift.py:126
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… samples/python/deconvolution.py:74
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/ts/misc/trace_profiler.py:292
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/ts/misc/run_suite.py:163
MED MINED109 [MINED109] Mutable default argument in `runTests` (list): `def runTests(... = []/{}/set()… modules/ts/misc/run_suite.py:173
MED MINED109 [MINED109] Mutable default argument in `runTest` (list): `def runTest(... = []/{}/set())`… modules/ts/misc/run_suite.py:114
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/ts/misc/table_formatter.py:626
MED MINED109 [MINED109] Mutable default argument in `runTest` (list): `def runTest(... = []/{}/set())`… modules/ts/misc/run_android.py:129
MED MINED109 [MINED109] Mutable default argument in `__init__` (dict): `def __init__(... = []/{}/set()… modules/ts/misc/run_android.py:109
MED MINED109 [MINED109] Mutable default argument in `run` (list): `def run(... = []/{}/set())` — Pytho… modules/ts/misc/run_android.py:34
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/core/src/opencl/runtime/generat…:15
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/core/src/opencl/runtime/generat…:87
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/core/src/opencl/runtime/generat…:23
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/core/src/opencl/runtime/generat…:14
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/python/package/cv2/__init__.py:140
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/python/package/cv2/__init__.py:128
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/python/package/cv2/__init__.py:168
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/python/src2/typing_stubs_genera…:50
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/python/src2/hdr_parser.py:904
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/python/src2/hdr_parser.py:889
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… modules/objc/generator/gen_objc.py:21
MED MINED109 [MINED109] Mutable default argument in `__init__` (list): `def __init__(... = []/{}/set()… modules/objc/generator/gen_objc.py:473
MED MINED109 [MINED109] Mutable default argument in `__init__` (list): `def __init__(... = []/{}/set()… modules/objc/generator/gen_objc.py:273
MED MINED109 [MINED109] Mutable default argument in `__init__` (list): `def __init__(... = []/{}/set()… modules/objc/generator/gen_objc.py:210
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… apps/pattern-tools/svgfig.py:52
MED MINED109 [MINED109] Mutable default argument in `__init__` (list): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:3668
MED MINED109 [MINED109] Mutable default argument in `__init__` (list): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:3618
MED MINED109 [MINED109] Mutable default argument in `__init__` (dict): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:3559
MED MINED109 [MINED109] Mutable default argument in `__init__` (dict): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:3508
MED MINED109 [MINED109] Mutable default argument in `__init__` (dict): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:3456
MED MINED109 [MINED109] Mutable default argument in `__init__` (dict): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:3381
MED MINED109 [MINED109] Mutable default argument in `__init__` (dict): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:3328
MED MINED109 [MINED109] Mutable default argument in `__init__` (dict): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:3273
MED MINED109 [MINED109] Mutable default argument in `__init__` (dict): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:3178
MED MINED109 [MINED109] Mutable default argument in `__init__` (dict): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:3115
MED MINED109 [MINED109] Mutable default argument in `__init__` (dict): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:2638
MED MINED109 [MINED109] Mutable default argument in `__init__` (list): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:2141
MED MINED109 [MINED109] Mutable default argument in `__init__` (list): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:1897
MED MINED109 [MINED109] Mutable default argument in `__init__` (list): `def __init__(... = []/{}/set()… apps/pattern-tools/svgfig.py:1180
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… platforms/ios/run_tests.py:39
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… platforms/ios/build_framework.py:199
MED MINED109 [MINED109] Mutable default argument in `buildOne` (list): `def buildOne(... = []/{}/set()… platforms/ios/build_framework.py:330
MED MINED109 [MINED109] Mutable default argument in `makeCMakeCmd` (list): `def makeCMakeCmd(... = []/… platforms/ios/build_framework.py:292
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… platforms/apple/build_xcframework.py:179
MED SEC045 [SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data — even … modules/gapi/samples/privacy_masking_ca…:139
MED SEC045 [SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data — even … doc/js_tutorials/js_assets/webnn-electr…:63
MED SEC045 [SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data — even … doc/js_tutorials/js_assets/utils.js:74
MED COMP001 [COMP001] High cognitive complexity: Function `parse` has cognitive complexity 22 (SonarS… doc/tools/scan_tutorials.py:21
MED DKR007 Docker build context has no .dockerignore .dockerignore
MED DKR009 Dockerfile separates apt update from install modules/videoio/misc/plugin_gstreamer/D…:3
MED DKR001 Docker final stage has no non-root USER modules/videoio/misc/plugin_gstreamer/D…:1
MED AIC001 Parallel implementation file sits beside a canonical file modules/imgproc/src/emd_new.cpp:1
MED AIC001 Parallel implementation file sits beside a canonical file modules/imgproc/src/contours_new.cpp:1
MED AIC004 Suspicious implementation file appears unreferenced 3rdparty/libjasper/jpc_fix.h:1
MED CORE_LARGE_FILES Average file size is 524 lines (recommend <300)
LOW SEC132 [SEC132] String concat where the language has interpolation (AI style drift): String buil… modules/core/misc/java/src/java/core+DM…:54
LOW SEC132 [SEC132] String concat where the language has interpolation (AI style drift): String buil… doc/js_tutorials/js_assets/webnn-electr…:39
LOW SEC132 [SEC132] String concat where the language has interpolation (AI style drift): String buil… doc/js_tutorials/js_assets/utils.js:50
LOW COMP001 [COMP001] High cognitive complexity: Function `verify_prev_next` has cognitive complexity… doc/tools/scan_tutorials.py:47
LOW COMP001 [COMP001] High cognitive complexity: Function `insert_python_signatures` has cognitive co… doc/tools/html_functions.py:40
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/src/jctrans.c:115
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/src/jcprepct.c:168
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/src/jcparam.c:125
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/src/jclhuff.c:90
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/src/jchuff.c:162
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/x86_64/jsim…:70
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/x86_64/jsim…:14
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/powerpc/jsi…:629
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/powerpc/jsi…:84
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/powerpc/jsi…:11
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/powerpc/jid…:154
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/powerpc/jfd…:118
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/powerpc/jdm…:112
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/powerpc/jcs…:1
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/powerpc/jcg…:31
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/powerpc/jcg…:1
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/mips64/jsim…:228
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/mips64/jsim…:11
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/mips64/jidc…:162
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/mips64/jidc…:13
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/mips64/jfdc…:133
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/mips64/jdme…:1
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/mips64/jcgr…:18
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/mips/jsimd.c:68
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/arm/jfdctin…:110
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/arm/jdmrgex…:17
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjpeg-turbo/simd/arm/aarch64…:22
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjasper/jpc_t2enc.c:438
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjasper/jpc_t2enc.c:285
LOW AIC003 Duplicated implementation block across source files 3rdparty/libjasper/jpc_t1enc.c:688
LOW AIC002 Source file name looks like an AI patch artifact modules/dnn/src/cuda4dnn/kernels/fill_c…:1
LOW AIC002 Source file name looks like an AI patch artifact 3rdparty/libjasper/jasper/jas_fix.h:1
LOW AIC002 Source file name looks like an AI patch artifact 3rdparty/libjasper/jpc_fix.h:1
INFO MINED048 [MINED048] Php Error Suppress: @function() suppresses errors silently. Hides real issues. modules/imgcodecs/misc/objc/macosx/MatQ…:26
INFO MINED048 [MINED048] Php Error Suppress: @function() suppresses errors silently. Hides real issues. modules/imgcodecs/misc/objc/ios/MatQuic…:25
INFO MINED081 [MINED081] Java Printstacktrace: Should use logger, not stack trace to stderr. modules/highgui/misc/java/src/java/high…:157
INFO MINED077 [MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles. modules/core/src/opencl/runtime/generat…:11
INFO MINED077 [MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles. modules/core/src/opencl/runtime/generat…:13
INFO MINED077 [MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles. modules/core/src/opencl/runtime/generat…:86
INFO MINED045 [MINED045] Ts Non Null Assertion: x! asserts not null - bypasses null checks - TypeError … modules/core/misc/objc/common/Double3.mm:77
INFO MINED045 [MINED045] Ts Non Null Assertion: x! asserts not null - bypasses null checks - TypeError … modules/core/misc/objc/common/Double2.mm:67
INFO MINED045 [MINED045] Ts Non Null Assertion: x! asserts not null - bypasses null checks - TypeError … modules/core/misc/objc/common/DMatch.mm:84
INFO MINED086 [MINED086] Kotlin Runtime Exception: Throwing bare RuntimeException loses type info. modules/core/misc/java/src/java/core+Ma…:33
INFO MINED044 [MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger … doc/js_tutorials/js_assets/webnn-electr…:9
INFO MINED044 [MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger … doc/js_tutorials/js_assets/utils.js:13
INFO MINED080 [MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace. 3rdparty/openexr/IlmImf/ImfEnvmap.cpp:49
INFO MINED080 [MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace. 3rdparty/openexr/IlmImf/ImfDeepFrameBuf…:39
INFO MINED080 [MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace. 3rdparty/openexr/Half/half.cpp:50
INFO MINED042 [MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr — memory leak ri… 3rdparty/openexr/IlmImf/ImfCompressor.c…:136
INFO MINED042 [MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr — memory leak ri… 3rdparty/openexr/IlmImf/ImfAttribute.cpp:102
INFO MINED042 [MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr — memory leak ri… 3rdparty/libwebp/src/enc/backward_refer…:179
INFO MINED075 [MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking fo… 3rdparty/openjpeg/openjp2/opj_malloc.c:124
INFO MINED075 [MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking fo… 3rdparty/libwebp/src/utils/utils.c:201
INFO MINED075 [MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking fo… 3rdparty/libjasper/jpc_tsfb.c:97
INFO MINED043 [MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle cr… modules/dnn/misc/face_detector_accuracy…:17
INFO MINED043 [MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle cr… doc/tools/add_signatures.py:10
INFO MINED043 [MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle cr… 3rdparty/libjasper/jasper/jas_version.h:96
Reset to top 5 200 findings available (after auto-suppression of test files + won't-fix)

Issue body (markdown)

## Code-quality scan: `opencv/opencv`

**Score: 76/100 (B-)**  ·  231 findings  ·  scanned 2026-06-05 07:06 UTC  ·  2,539,876 LOC

| Severity | Count |
|---|---|
| CRITICAL | 20 |
| HIGH | 62 |
| MEDIUM | 56 |
| LOW | 38 |

📊 [Full filterable report](https://repobility.com/scan/04c0c8c0-8494-49f2-b895-7c8cfcec7eae/)  ·  ![scorecard](https://repobility.com/scan/04c0c8c0-8494-49f2-b895-7c8cfcec7eae/report.png?v=1780643194-s2)

### Top findings

1. **CRITICAL** `MINED107` — Missing import: `os` used but not imported
   `samples/dnn/object_detection.py:24` · ✓ Repobility
2. **CRITICAL** `MINED107` — Missing import: `os` used but not imported
   `samples/dnn/segmentation.py:14` · ✓ Repobility
3. **CRITICAL** `MINED107` — Missing import: `os` used but not imported
   `samples/dnn/classification.py:15` · ✓ Repobility
4. **CRITICAL** `MINED107` — Missing import: `html` used but not imported
   `modules/ts/misc/concatlogs.py:45` · ✓ Repobility
5. **CRITICAL** `MINED107` — Missing import: `csv` used but not imported
   `modules/gapi/scripts/measure_privacy_masking.py:83` · ✓ Repobility

---

_Filed automatically. Close this issue if not useful — we won't refile. Full report: https://repobility.com/scan/04c0c8c0-8494-49f2-b895-7c8cfcec7eae/_
Already filed
This repo publishes a SECURITY.md policy and the scan contains 15 Critical/High security finding(s). Public issue filing would violate coordinated disclosure. Submit privately via the project's security reporting channel.
Megaproject â high spam risk
Could not determine 'opencv/opencv' star count (GitHub API rate-limited or unreachable). When in doubt about repo size, prefer opening a focused PR or a discussion rather than an issue.
Already filed
77/248 findings (31%) on this scan are already flagged as test-file, won't-fix, or suppressed. The scan is too noisy to file as a single issue. Curate down to specific actionable findings, or address the FP source first.
I read the warnings â override Cancel

The button opens GitHubâs new-issue page in a new tab. You will see the title + body pre-filled â review, edit if you want, then click GitHubâs "Submit new issue" button. Repobility never posts anything on your behalf.

For real security findings on big repos: use the project's SECURITY.md or private advisory flow instead of a public issue.