{"version": "2.1.0", "$schema": "https://json.schemastore.org/sarif-2.1.0.json", "runs": [{"tool": {"driver": {"name": "Repobility", "informationUri": "https://repobility.com", "rules": [{"id": "DKR007", "name": "Docker build context has no .dockerignore", "shortDescription": {"text": "Docker build context has no .dockerignore"}, "fullDescription": {"text": "Without .dockerignore, build context can include source history, local env files, dependencies, and generated artifacts."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "SEC134", "name": "[SEC134] AI scaffold leftover \u2014 Lorem ipsum / example.com / John Doe in code: Lorem ipsum / John Doe / example.com left ", "shortDescription": {"text": "[SEC134] AI scaffold leftover \u2014 Lorem ipsum / example.com / John Doe in code: Lorem ipsum / John Doe / example.com left in non-test code. AI agents emit these as 'reasonable defaults' when they don't know real values; the human then forgets"}, "fullDescription": {"text": "Move dummy values to fixtures / seed files. In application code, require these to come from config or fail closed. Add a CI grep that rejects 'lorem ipsum' and 'example.com' outside test files."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC046", "name": "[SEC046] Client-side open redirect \u2014 window.location = server-supplied URL: Assigning window.location from a server-supp", "shortDescription": {"text": "[SEC046] Client-side open redirect \u2014 window.location = server-supplied URL: Assigning window.location from a server-supplied URL trusts the server endpoint to never return a hostile destination. If that endpoint is ever subverted (compromis"}, "fullDescription": {"text": "Validate the URL is same-origin or on an explicit allowlist before assignment:\n  const u = new URL(serverUrl, location.href);\n  if (u.origin !== location.origin && !ALLOWED.includes(u.host)) return;\n  location.assign(u);\nEven better: have the server return a path (/checkout/done) instead of a full URL, and only allow same-origin navigation."}, "properties": {"scanner": "repobility-threat-engine", "category": "open_redirect", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC041", "name": "[SEC041] Tabnabbing \u2014 target=\"_blank\" without rel=\"noopener noreferrer\": <a target=\"_blank\"> without rel=\"noopener noref", "shortDescription": {"text": "[SEC041] Tabnabbing \u2014 target=\"_blank\" without rel=\"noopener noreferrer\": <a target=\"_blank\"> without rel=\"noopener noreferrer\" leaks window.opener to the opened page. The opened page can then run window.opener.location = 'phishing-site' and"}, "fullDescription": {"text": "Add rel=\"noopener noreferrer\" to every <a target=\"_blank\">:\n  <a href=\"...\" target=\"_blank\" rel=\"noopener noreferrer\">link</a>\nFor dynamically generated links from JS, set rel on the element before appending. Even safe-looking subdomains should harden \u2014 costs nothing."}, "properties": {"scanner": "repobility-threat-engine", "category": "security", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "DEPCUR-NPM", "name": "npm package `cspell` is 1 major version(s) behind (9.7.0 -> 10.0.1)", "shortDescription": {"text": "npm package `cspell` is 1 major version(s) behind (9.7.0 -> 10.0.1)"}, "fullDescription": {"text": "`cspell` is pinned/resolved at 9.7.0 but the latest stable release on the npm registry is 10.0.1 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise."}, "properties": {"scanner": "repobility-dependency-currency", "category": "dependency", "severity": "medium", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "AIC004", "name": "Suspicious implementation file appears unreferenced", "shortDescription": {"text": "Suspicious implementation file appears unreferenced"}, "fullDescription": {"text": "A file created as a fixed/new/final/copy variant is not referenced by imports or path-like strings in the rest of the repository. This is a strong sign that an agent produced code beside the active application path."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "medium", "confidence": 0.78, "cwe": "", "owasp": ""}}, {"id": "AIC001", "name": "Parallel implementation file sits beside a canonical file", "shortDescription": {"text": "Parallel implementation file sits beside a canonical file"}, "fullDescription": {"text": "AI-assisted edits often create a new sibling file instead of integrating the change into the existing module. That leaves two paths for future maintainers to understand and can hide the code that is actually wired into the app."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "medium", "confidence": 0.82, "cwe": "", "owasp": ""}}, {"id": "AIC003", "name": "Duplicated implementation block across source files", "shortDescription": {"text": "Duplicated implementation block across source files"}, "fullDescription": {"text": "Duplicated blocks are a common artifact when generated code is pasted or recreated instead of reused. They increase maintenance cost because every future bug fix must be found in multiple locations."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.86, "cwe": "", "owasp": ""}}, {"id": "MINED043", "name": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data.", "shortDescription": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-319 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED068", "name": "[MINED068] Rust Unsafe Block: unsafe { ... } block. Compiler safety guarantees disabled inside.", "shortDescription": {"text": "[MINED068] Rust Unsafe Block: unsafe { ... } block. Compiler safety guarantees disabled inside."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-119 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED041", "name": "[MINED041] Rust Unimplemented Macro (and 6 more): Same pattern found in 6 additional files. Review if needed.", "shortDescription": {"text": "[MINED041] Rust Unimplemented Macro (and 6 more): Same pattern found in 6 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-1188 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED003", "name": "[MINED003] Rust Unwrap In Prod (and 90 more): Same pattern found in 90 additional files. Review if needed.", "shortDescription": {"text": "[MINED003] Rust Unwrap In Prod (and 90 more): Same pattern found in 90 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-755 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED066", "name": "[MINED066] Rust Panic Macro (and 18 more): Same pattern found in 18 additional files. Review if needed.", "shortDescription": {"text": "[MINED066] Rust Panic Macro (and 18 more): Same pattern found in 18 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-755 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED059", "name": "[MINED059] Rust Expect In Prod (and 68 more): Same pattern found in 68 additional files. Review if needed.", "shortDescription": {"text": "[MINED059] Rust Expect In Prod (and 68 more): Same pattern found in 68 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-755 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED044", "name": "[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed.", "shortDescription": {"text": "[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-532 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "GHSA-hffm-xvc3-vprc", "name": "simple-git: GHSA-hffm-xvc3-vprc", "shortDescription": {"text": "simple-git: GHSA-hffm-xvc3-vprc"}, "fullDescription": {"text": "simple-git is vulnerable to Remote Code Execution"}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "high", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "MINED004", "name": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums).", "shortDescription": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-327 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED039", "name": "[MINED039] Rust Todo Macro: todo!() panics when reached. Unimplemented code path.", "shortDescription": {"text": "[MINED039] Rust Todo Macro: todo!() panics when reached. Unimplemented code path."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-1188 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC029", "name": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled ", "shortDescription": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes e"}, "fullDescription": {"text": "Validate the URL against an allowlist BEFORE fetching:\n  ALLOWED = {'images.example.com', 'cdn.example.com'}\n  host = urlparse(url).hostname\n  if host not in ALLOWED: abort(400)\nOr use a server-side proxy (Imgproxy / serve-files-only-from-S3) that isolates outbound network access from the request handler.\nBlock private CIDRs explicitly: 10/8, 172.16/12, 192.168/16, 169.254/16."}, "properties": {"scanner": "repobility-threat-engine", "category": "ssrf", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED115", "name": "Action `actions/checkout` pinned to mutable ref `@v6`", "shortDescription": {"text": "Action `actions/checkout` pinned to mutable ref `@v6`"}, "fullDescription": {"text": "`uses: actions/checkout@v6` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED118", "name": "Dockerfile FROM `mcr.microsoft.com/devcontainers/rust:1-1-bullseye` not pinned by digest", "shortDescription": {"text": "Dockerfile FROM `mcr.microsoft.com/devcontainers/rust:1-1-bullseye` not pinned by digest"}, "fullDescription": {"text": "`FROM mcr.microsoft.com/devcontainers/rust:1-1-bullseye` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "generic-api-key", "name": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations.", "shortDescription": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "fullDescription": {"text": "Gitleaks detected a committed secret or credential pattern."}, "properties": {"scanner": "gitleaks", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "pkcs12-file", "name": "Found a PKCS #12 file, which commonly contain bundled private keys.", "shortDescription": {"text": "Found a PKCS #12 file, which commonly contain bundled private keys."}, "fullDescription": {"text": "Gitleaks detected a committed secret or credential pattern."}, "properties": {"scanner": "gitleaks", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "cwe": "", "owasp": ""}}]}}, "automationDetails": {"id": "repobility/1335"}, "properties": {"repository": "Azure/azure-sdk-for-rust", "repoUrl": "https://github.com/Azure/azure-sdk-for-rust", "branch": "main"}, "results": [{"ruleId": "DKR007", "level": "warning", "message": {"text": "Docker build context has no .dockerignore"}, "properties": {"repobilityId": 136507, "scanner": "repobility-docker", "fingerprint": "c98378cf8c37e4866e89d6ca06a24b7e8c44654aa34e6e4bf1367c4a4c0c5b44", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Dockerfile exists but repository root has no .dockerignore.", "evidence": {"rule_id": "DKR007", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c98378cf8c37e4866e89d6ca06a24b7e8c44654aa34e6e4bf1367c4a4c0c5b44"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".dockerignore"}, "region": {"startLine": 1}}}]}, {"ruleId": "SEC134", "level": "warning", "message": {"text": "[SEC134] AI scaffold leftover \u2014 Lorem ipsum / example.com / John Doe in code: Lorem ipsum / John Doe / example.com left in non-test code. AI agents emit these as 'reasonable defaults' when they don't know real values; the human then forgets to swap them. In production, these break demo flows, send mail to a real example.com host (it's owned by IANA), and leak that the codebase had an AI scaffolding pass."}, "properties": {"repobilityId": 136499, "scanner": "repobility-threat-engine", "fingerprint": "5e86ede6a7bda4b6ea14dccb17aab009db12534fa2b5fbc5436352fc4a97d8f2", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "endpoint: \"https://example.com", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC134", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|5e86ede6a7bda4b6ea14dccb17aab009db12534fa2b5fbc5436352fc4a97d8f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core_macros/src/tracing_subclient.rs"}, "region": {"startLine": 115}}}]}, {"ruleId": "SEC046", "level": "warning", "message": {"text": "[SEC046] Client-side open redirect \u2014 window.location = server-supplied URL: Assigning window.location from a server-supplied URL trusts the server endpoint to never return a hostile destination. If that endpoint is ever subverted (compromised admin, JSON injection, MITM on a webhook), users get redirected to a phishing site they trust because the original page is yours. CWE-601 (server-side OR client-side). Complement to server-side SEC030."}, "properties": {"repobilityId": 136481, "scanner": "repobility-threat-engine", "fingerprint": "97e07bc3d65d5a21cdb40a2231c962e65165194b528866a4258ee49b44789c59", "category": "open_redirect", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "location.href = getPackageUrl", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC046", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|97e07bc3d65d5a21cdb40a2231c962e65165194b528866a4258ee49b44789c59"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/common/docgeneration/templates/matthews/styles/main.js"}, "region": {"startLine": 141}}}]}, {"ruleId": "SEC041", "level": "warning", "message": {"text": "[SEC041] Tabnabbing \u2014 target=\"_blank\" without rel=\"noopener noreferrer\": <a target=\"_blank\"> without rel=\"noopener noreferrer\" leaks window.opener to the opened page. The opened page can then run window.opener.location = 'phishing-site' and the parent tab quietly navigates to attacker-controlled content (reverse tabnabbing). OWASP-classic; modern browsers default rel='noopener' for new windows but explicit attribute is still required for compatibility."}, "properties": {"repobilityId": 136480, "scanner": "repobility-threat-engine", "fingerprint": "305feec17d098ed9cb636d196acedb98f6bd99b53bcc5811871382b9d2f25f96", "category": "security", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "<a href=\"' + getPackageUrl(SELECTED_LANGUAGE, packageName, version) + '\" target=\"_blank\">", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC041", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|security|token|151|sec041"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/common/docgeneration/templates/matthews/styles/main.js"}, "region": {"startLine": 151}}}]}, {"ruleId": "DEPCUR-NPM", "level": "warning", "message": {"text": "npm package `cspell` is 1 major version(s) behind (9.7.0 -> 10.0.1)"}, "properties": {"repobilityId": 136475, "scanner": "repobility-dependency-currency", "fingerprint": "ed2119efc6e482a4d62777eccd5ab201dfe7cd6ba47db1f0563ba0b875455042", "category": "dependency", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "1 major version(s) behind", "signal": "currency", "cwe_ids": [], "package": "cspell", "scanner": "repobility-dependency-currency", "ecosystem": "npm", "languages": ["javascript"], "latest_version": "10.0.1", "correlation_key": "fp|ed2119efc6e482a4d62777eccd5ab201dfe7cd6ba47db1f0563ba0b875455042", "current_version": "9.7.0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/common/spelling/package.json"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC004", "level": "warning", "message": {"text": "Suspicious implementation file appears unreferenced"}, "properties": {"repobilityId": 136434, "scanner": "repobility-ai-code-hygiene", "fingerprint": "04d75afade61123f4a0cbf069c25da456d0446b7588fc9cd2fb1ba3c60f8fa6b", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Patch-style source file has no detected inbound reference from other repository files.", "evidence": {"suffix": "new", "rule_id": "AIC004", "scanner": "repobility-ai-code-hygiene", "references": ["https://knip.dev/", "https://github.com/jendrikseipp/vulture"], "correlation_key": "fp|04d75afade61123f4a0cbf069c25da456d0446b7588fc9cd2fb1ba3c60f8fa6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core_macros/src/tracing_new.rs"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC001", "level": "warning", "message": {"text": "Parallel implementation file sits beside a canonical file"}, "properties": {"repobilityId": 136433, "scanner": "repobility-ai-code-hygiene", "fingerprint": "c002c7f579aa6888dbdcf172c55dac028f2b4fbfffa9b2f8dec544768d0bd19e", "category": "quality", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Source filename has a patch-style suffix and a same-directory canonical sibling exists.", "evidence": {"suffix": "new", "rule_id": "AIC001", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195", "https://knip.dev/"], "canonical_file": "sdk/core/azure_core_macros/src/tracing.rs", "correlation_key": "fp|c002c7f579aa6888dbdcf172c55dac028f2b4fbfffa9b2f8dec544768d0bd19e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core_macros/src/tracing_new.rs"}, "region": {"startLine": 1}}}]}, {"ruleId": "DEPCUR-NPM", "level": "note", "message": {"text": "npm package `markdownlint-cli2` is minor version(s) behind (0.21.0 -> 0.22.1)"}, "properties": {"repobilityId": 136476, "scanner": "repobility-dependency-currency", "fingerprint": "7e18d11d7d03a68ee0c8f9c7dd05a6d73127e03a902f25bb58e4db1b29cec11c", "category": "dependency", "severity": "low", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "minor version(s) behind", "signal": "currency", "cwe_ids": [], "package": "markdownlint-cli2", "scanner": "repobility-dependency-currency", "ecosystem": "npm", "languages": ["javascript"], "latest_version": "0.22.1", "correlation_key": "fp|7e18d11d7d03a68ee0c8f9c7dd05a6d73127e03a902f25bb58e4db1b29cec11c", "current_version": "0.21.0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/skills/lint-markdown/package.json"}, "region": {"startLine": 1}}}]}, {"ruleId": "DEPCUR-NPM", "level": "note", "message": {"text": "npm package `@azure-tools/typespec-client-generator-cli` is minor version(s) behind (0.32.1 -> 0.33.1)"}, "properties": {"repobilityId": 136474, "scanner": "repobility-dependency-currency", "fingerprint": "e90ae31f71d430a014b8a7f304555366e7e4893480e18792f524834c600c7a65", "category": "dependency", "severity": "low", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "minor version(s) behind", "signal": "currency", "cwe_ids": [], "package": "@azure-tools/typespec-client-generator-cli", "scanner": "repobility-dependency-currency", "ecosystem": "npm", "languages": ["javascript"], "latest_version": "0.33.1", "correlation_key": "fp|e90ae31f71d430a014b8a7f304555366e7e4893480e18792f524834c600c7a65", "current_version": "0.32.1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/common/tsp-client/package.json"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136464, "scanner": "repobility-ai-code-hygiene", "fingerprint": "db446b766c75fa4978d5be8b46b7a289215abdf35a927a023cbca27961ae347f", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/keyvault/azure_security_keyvault_certificates/src/clients.rs", "duplicate_line": 44, "correlation_key": "fp|db446b766c75fa4978d5be8b46b7a289215abdf35a927a023cbca27961ae347f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/keyvault/azure_security_keyvault_secrets/src/clients.rs"}, "region": {"startLine": 32}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136463, "scanner": "repobility-ai-code-hygiene", "fingerprint": "99efb7d919371942c6aaf3aee0e52ca5aac8434a806bfcc547531691e916af49", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/keyvault/azure_security_keyvault_keys/src/clients.rs", "duplicate_line": 1, "correlation_key": "fp|99efb7d919371942c6aaf3aee0e52ca5aac8434a806bfcc547531691e916af49"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/keyvault/azure_security_keyvault_secrets/src/clients.rs"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136462, "scanner": "repobility-ai-code-hygiene", "fingerprint": "8b1f02b640c4368bc66547a6728a25652cd45afa9d81df2f9470e208e60a5cc7", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/keyvault/azure_security_keyvault_certificates/src/authorizer.rs", "duplicate_line": 1, "correlation_key": "fp|8b1f02b640c4368bc66547a6728a25652cd45afa9d81df2f9470e208e60a5cc7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/keyvault/azure_security_keyvault_secrets/src/authorizer.rs"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136461, "scanner": "repobility-ai-code-hygiene", "fingerprint": "c7acff1af6e67a6088ef0f4fc20cf9fff5ccc0e8701312ed82c0e1c1f5ea2421", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/keyvault/azure_security_keyvault_keys/perf/create_key.rs", "duplicate_line": 24, "correlation_key": "fp|c7acff1af6e67a6088ef0f4fc20cf9fff5ccc0e8701312ed82c0e1c1f5ea2421"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/keyvault/azure_security_keyvault_secrets/perf/get_secret.rs"}, "region": {"startLine": 21}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136460, "scanner": "repobility-ai-code-hygiene", "fingerprint": "65845fde5a606463f5b8ce740753cf46b09677c593e2740449e636b3e5e78da4", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/keyvault/azure_security_keyvault_certificates/src/resource.rs", "duplicate_line": 2, "correlation_key": "fp|65845fde5a606463f5b8ce740753cf46b09677c593e2740449e636b3e5e78da4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/keyvault/azure_security_keyvault_keys/src/resource.rs"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136459, "scanner": "repobility-ai-code-hygiene", "fingerprint": "7ab0078d1296176a0614893fc72f0c468bd5f1520f4d41100b4921f93d53d528", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/keyvault/azure_security_keyvault_certificates/src/clients.rs", "duplicate_line": 44, "correlation_key": "fp|7ab0078d1296176a0614893fc72f0c468bd5f1520f4d41100b4921f93d53d528"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/keyvault/azure_security_keyvault_keys/src/clients.rs"}, "region": {"startLine": 32}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136458, "scanner": "repobility-ai-code-hygiene", "fingerprint": "ef6953db6cd7956289b09937b0f82ee61c42ce495b26b257c133102a9accea98", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/keyvault/azure_security_keyvault_certificates/src/authorizer.rs", "duplicate_line": 1, "correlation_key": "fp|ef6953db6cd7956289b09937b0f82ee61c42ce495b26b257c133102a9accea98"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/keyvault/azure_security_keyvault_keys/src/authorizer.rs"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136457, "scanner": "repobility-ai-code-hygiene", "fingerprint": "6bf6e4a4e9bc173f92a36e70fc3b7e101460e6e4a4f427a07c17d3e96e0ca6f6", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/keyvault/azure_security_keyvault_keys/perf/create_key.rs", "duplicate_line": 1, "correlation_key": "fp|6bf6e4a4e9bc173f92a36e70fc3b7e101460e6e4a4f427a07c17d3e96e0ca6f6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/keyvault/azure_security_keyvault_keys/perf/get_key.rs"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136456, "scanner": "repobility-ai-code-hygiene", "fingerprint": "6a4ca65317e2d32fb75cdf85b2b26263929791b96587a72648d41bdb8348cac5", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/core/azure_core_examples/src/certificates/models.rs", "duplicate_line": 57, "correlation_key": "fp|6a4ca65317e2d32fb75cdf85b2b26263929791b96587a72648d41bdb8348cac5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/keyvault/azure_security_keyvault_certificates/src/models.rs"}, "region": {"startLine": 10}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136455, "scanner": "repobility-ai-code-hygiene", "fingerprint": "153c52369659a59bdd5246c38e3e5465400a4d67db9776ca567266fbb1bfa9c2", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/core/azure_core_examples/src/certificates/mod.rs", "duplicate_line": 80, "correlation_key": "fp|153c52369659a59bdd5246c38e3e5465400a4d67db9776ca567266fbb1bfa9c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/keyvault/azure_security_keyvault_certificates/src/clients.rs"}, "region": {"startLine": 124}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136454, "scanner": "repobility-ai-code-hygiene", "fingerprint": "388fd73200167673d187326d0285c1fb63320fd1be51804d38589336044e4819", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/identity/azure_identity/src/client_certificate_credential.rs", "duplicate_line": 163, "correlation_key": "fp|388fd73200167673d187326d0285c1fb63320fd1be51804d38589336044e4819"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/identity/azure_identity/src/imds_managed_identity_credential.rs"}, "region": {"startLine": 103}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136453, "scanner": "repobility-ai-code-hygiene", "fingerprint": "eeca5c911c584caf6fe18e4a51bc8031433c82dcb062aa28afba96f7cba3711c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/identity/azure_identity/src/client_assertion_credential.rs", "duplicate_line": 111, "correlation_key": "fp|eeca5c911c584caf6fe18e4a51bc8031433c82dcb062aa28afba96f7cba3711c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/identity/azure_identity/src/client_secret_credential.rs"}, "region": {"startLine": 90}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136452, "scanner": "repobility-ai-code-hygiene", "fingerprint": "0d673aff7ab039d3e05ba469cbcfbb3e613e9ca8b8cb1fca9af19a71b719c439", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/identity/azure_identity/src/client_certificate_credential.rs", "duplicate_line": 95, "correlation_key": "fp|0d673aff7ab039d3e05ba469cbcfbb3e613e9ca8b8cb1fca9af19a71b719c439"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/identity/azure_identity/src/client_secret_credential.rs"}, "region": {"startLine": 50}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136451, "scanner": "repobility-ai-code-hygiene", "fingerprint": "800dfbdfd359417177b2e06569a5a7b94b0a4ee2a694c263f8c005259e50ce0e", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/identity/azure_identity/src/client_assertion_credential.rs", "duplicate_line": 239, "correlation_key": "fp|800dfbdfd359417177b2e06569a5a7b94b0a4ee2a694c263f8c005259e50ce0e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/identity/azure_identity/src/client_certificate_credential.rs"}, "region": {"startLine": 419}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136450, "scanner": "repobility-ai-code-hygiene", "fingerprint": "cda7e2802cd0e6ef7f758092ac097e0c93a7dc8caf067fc409333320af919cef", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/identity/azure_identity/src/azure_cli_credential.rs", "duplicate_line": 140, "correlation_key": "fp|cda7e2802cd0e6ef7f758092ac097e0c93a7dc8caf067fc409333320af919cef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/identity/azure_identity/src/azure_developer_cli_credential.rs"}, "region": {"startLine": 135}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136449, "scanner": "repobility-ai-code-hygiene", "fingerprint": "5884a15af1e5627644d86f5ba3a6f697a13b305f699c4e4a7dfb24f6396cd484", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/eventhubs/azure_messaging_eventhubs/src/consumer/mod.rs", "duplicate_line": 258, "correlation_key": "fp|5884a15af1e5627644d86f5ba3a6f697a13b305f699c4e4a7dfb24f6396cd484"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/eventhubs/azure_messaging_eventhubs/src/producer/mod.rs"}, "region": {"startLine": 229}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136448, "scanner": "repobility-ai-code-hygiene", "fingerprint": "5719209292546e47488b528c63f8d269331dbbb6f7de8d100ed5037004804c5c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/cosmos/azure_data_cosmos_driver/src/models/cosmos_operation.rs", "duplicate_line": 324, "correlation_key": "fp|5719209292546e47488b528c63f8d269331dbbb6f7de8d100ed5037004804c5c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos_driver/src/models/cosmos_resource_reference.rs"}, "region": {"startLine": 397}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136447, "scanner": "repobility-ai-code-hygiene", "fingerprint": "0ae73a29c0bcb00c459ec3ccd972d66c000ea4dc000c403acbbc818f5a6eadbe", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/cosmos/azure_data_cosmos_driver/src/driver/cache/partition_key_range_cache.rs", "duplicate_line": 392, "correlation_key": "fp|0ae73a29c0bcb00c459ec3ccd972d66c000ea4dc000c403acbbc818f5a6eadbe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos_driver/src/driver/dataflow/topology.rs"}, "region": {"startLine": 102}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136446, "scanner": "repobility-ai-code-hygiene", "fingerprint": "3e6bb404e21fabd00c630c5f6fdd5892100dde99046a4f55e45f22e730c92bc9", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/cosmos/azure_data_cosmos/src/models/batch_response.rs", "duplicate_line": 12, "correlation_key": "fp|3e6bb404e21fabd00c630c5f6fdd5892100dde99046a4f55e45f22e730c92bc9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos/src/models/resource_response.rs"}, "region": {"startLine": 16}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136445, "scanner": "repobility-ai-code-hygiene", "fingerprint": "5497c7c257488e080543162c681dd01118cda3174824cb82cf3929b13f18cff3", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/cosmos/azure_data_cosmos/src/models/batch_response.rs", "duplicate_line": 10, "correlation_key": "fp|5497c7c257488e080543162c681dd01118cda3174824cb82cf3929b13f18cff3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos/src/models/item_response.rs"}, "region": {"startLine": 10}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136444, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a1249c673e0c50dbdc3d328abed5cb8bde69e7f2683d1c07844cce947da0620c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/cosmos/azure_data_cosmos/src/clients/container_client.rs", "duplicate_line": 71, "correlation_key": "fp|a1249c673e0c50dbdc3d328abed5cb8bde69e7f2683d1c07844cce947da0620c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos/src/clients/database_client.rs"}, "region": {"startLine": 83}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136443, "scanner": "repobility-ai-code-hygiene", "fingerprint": "d0396f3f700366b740d2a91a13076444a4d2a7563c58eac7ca434436a9449613", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/cosmos/azure_data_cosmos/src/clients/cosmos_client.rs", "duplicate_line": 33, "correlation_key": "fp|d0396f3f700366b740d2a91a13076444a4d2a7563c58eac7ca434436a9449613"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos/src/clients/database_client.rs"}, "region": {"startLine": 56}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136442, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1dfe0d7e5e356f38d12a49837382983631e6db68a7f2d80d93fd16657b0671f1", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/cosmos/azure_data_cosmos/src/clients/container_client.rs", "duplicate_line": 71, "correlation_key": "fp|1dfe0d7e5e356f38d12a49837382983631e6db68a7f2d80d93fd16657b0671f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos/src/clients/cosmos_client.rs"}, "region": {"startLine": 58}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136441, "scanner": "repobility-ai-code-hygiene", "fingerprint": "c366069079716824b9eb9eb1e617ff5a019a5fdd88e3b712476c1a4ba10ff4e7", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/core/azure_core_examples/src/identity/mock_credential.rs", "duplicate_line": 6, "correlation_key": "fp|c366069079716824b9eb9eb1e617ff5a019a5fdd88e3b712476c1a4ba10ff4e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core_test/src/credentials.rs"}, "region": {"startLine": 11}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136440, "scanner": "repobility-ai-code-hygiene", "fingerprint": "daa5c05022900fa797675c23fa396b742101d511e3a51ecbfb65705bace7bcc0", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/core/azure_core_examples/src/certificates/mod.rs", "duplicate_line": 31, "correlation_key": "fp|daa5c05022900fa797675c23fa396b742101d511e3a51ecbfb65705bace7bcc0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core_examples/src/secrets/mod.rs"}, "region": {"startLine": 69}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136439, "scanner": "repobility-ai-code-hygiene", "fingerprint": "93de2a321055acbae376014301c051e01b20d498afeb544028bc946c8a3cbf5a", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/core/azure_core_amqp/src/simple_value.rs", "duplicate_line": 71, "correlation_key": "fp|93de2a321055acbae376014301c051e01b20d498afeb544028bc946c8a3cbf5a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core_amqp/src/value.rs"}, "region": {"startLine": 315}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136438, "scanner": "repobility-ai-code-hygiene", "fingerprint": "cf76d25ac59ae93495c390e3ae5621ad2e727722702edcea0deb70e82f7d4fec", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/core/azure_core/src/http/policies/instrumentation/public_api_instrumentation.rs", "duplicate_line": 309, "correlation_key": "fp|cf76d25ac59ae93495c390e3ae5621ad2e727722702edcea0deb70e82f7d4fec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core/src/http/policies/instrumentation/request_instrumentation.rs"}, "region": {"startLine": 241}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136437, "scanner": "repobility-ai-code-hygiene", "fingerprint": "315aaa76d08b6b7b73d9a8fa55ad559525f49dab39caf122144a0ca2aa22c8a6", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "sdk/core/azure_core/perf/mock/json.rs", "duplicate_line": 33, "correlation_key": "fp|315aaa76d08b6b7b73d9a8fa55ad559525f49dab39caf122144a0ca2aa22c8a6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core/perf/mock/xml.rs"}, "region": {"startLine": 33}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136436, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a20396177b994483347383aba459e46af88ecc923b4aa1c0dfaae24f64a98ce5", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "eng/tools/check_api_superset/build.rs", "duplicate_line": 9, "correlation_key": "fp|a20396177b994483347383aba459e46af88ecc923b4aa1c0dfaae24f64a98ce5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/tools/generate_api_report/build.rs"}, "region": {"startLine": 9}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 136435, "scanner": "repobility-ai-code-hygiene", "fingerprint": "50eadc611658c98b1c9ec502d9f48e2d749d474e20d5c4018c5f9ec955f1d72c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "eng/scripts/verify-dependencies.rs", "duplicate_line": 25, "correlation_key": "fp|50eadc611658c98b1c9ec502d9f48e2d749d474e20d5c4018c5f9ec955f1d72c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/scripts/verify-keywords.rs"}, "region": {"startLine": 15}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 136506, "scanner": "repobility-threat-engine", "fingerprint": "89ee060ee891362a94a5ac2bcf0e98e0aa69c2bbd9fb59d2f49d2a6c19801ec7", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|89ee060ee891362a94a5ac2bcf0e98e0aa69c2bbd9fb59d2f49d2a6c19801ec7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/storage/azure_storage_queue/src/clients/queue_client.rs"}, "region": {"startLine": 98}}}]}, {"ruleId": "MINED068", "level": "none", "message": {"text": "[MINED068] Rust Unsafe Block: unsafe { ... } block. Compiler safety guarantees disabled inside."}, "properties": {"repobilityId": 136503, "scanner": "repobility-threat-engine", "fingerprint": "cbe7d80c3915e7576d3669fb72f4ae66e35f0a9202e5cbb86390b04d4e684398", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-unsafe-block", "owasp": null, "cwe_ids": ["CWE-119"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348060+00:00", "triaged_in_corpus": 12, "observations_count": 42383, "ai_coder_pattern_id": 116}, "scanner": "repobility-threat-engine", "correlation_key": "fp|cbe7d80c3915e7576d3669fb72f4ae66e35f0a9202e5cbb86390b04d4e684398"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/storage/azure_storage_blob/src/buffers/read_buf_ext.rs"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED041", "level": "none", "message": {"text": "[MINED041] Rust Unimplemented Macro (and 6 more): Same pattern found in 6 additional files. Review if needed."}, "properties": {"repobilityId": 136498, "scanner": "repobility-threat-engine", "fingerprint": "a0fe648305fb8d91eb0f74d5c2afd466e9fe8ef1c16c0aefa53f87b4c7e635ae", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 6 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "rust-unimplemented-macro", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347994+00:00", "triaged_in_corpus": 15, "observations_count": 1422, "ai_coder_pattern_id": 115}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|a0fe648305fb8d91eb0f74d5c2afd466e9fe8ef1c16c0aefa53f87b4c7e635ae", "aggregated_count": 6}}}, {"ruleId": "MINED003", "level": "none", "message": {"text": "[MINED003] Rust Unwrap In Prod (and 90 more): Same pattern found in 90 additional files. Review if needed."}, "properties": {"repobilityId": 136494, "scanner": "repobility-threat-engine", "fingerprint": "9e15132073150e0ab803957264c9c8927cba2e195a5ca8e438e3be5d76392d65", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 90 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "rust-unwrap-in-prod", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347903+00:00", "triaged_in_corpus": 15, "observations_count": 386515, "ai_coder_pattern_id": 111}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|9e15132073150e0ab803957264c9c8927cba2e195a5ca8e438e3be5d76392d65", "aggregated_count": 90}}}, {"ruleId": "MINED066", "level": "none", "message": {"text": "[MINED066] Rust Panic Macro (and 18 more): Same pattern found in 18 additional files. Review if needed."}, "properties": {"repobilityId": 136490, "scanner": "repobility-threat-engine", "fingerprint": "80f7ac3bcf91755c2447741797457b6d9fbb0896040495f74c808e1b0b3ef445", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 18 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "rust-panic-macro", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348055+00:00", "triaged_in_corpus": 12, "observations_count": 48611, "ai_coder_pattern_id": 113}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|80f7ac3bcf91755c2447741797457b6d9fbb0896040495f74c808e1b0b3ef445", "aggregated_count": 18}}}, {"ruleId": "MINED066", "level": "none", "message": {"text": "[MINED066] Rust Panic Macro: panic!() unwinds the stack. Use Result for recoverable errors."}, "properties": {"repobilityId": 136489, "scanner": "repobility-threat-engine", "fingerprint": "c17a46c1c4301d26dcc28f512cc9276e0caf12c2c6f872293c2a3e5c21fd7a7b", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-panic-macro", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348055+00:00", "triaged_in_corpus": 12, "observations_count": 48611, "ai_coder_pattern_id": 113}, "scanner": "repobility-threat-engine", "correlation_key": "fp|c17a46c1c4301d26dcc28f512cc9276e0caf12c2c6f872293c2a3e5c21fd7a7b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/scripts/verify-dependencies.rs"}, "region": {"startLine": 195}}}]}, {"ruleId": "MINED066", "level": "none", "message": {"text": "[MINED066] Rust Panic Macro: panic!() unwinds the stack. Use Result for recoverable errors."}, "properties": {"repobilityId": 136488, "scanner": "repobility-threat-engine", "fingerprint": "768dec110a5678596db1d7c36a0da2d8126c198d0fe0ab21e951b44ce1a2b364", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-panic-macro", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348055+00:00", "triaged_in_corpus": 12, "observations_count": 48611, "ai_coder_pattern_id": 113}, "scanner": "repobility-threat-engine", "correlation_key": "fp|768dec110a5678596db1d7c36a0da2d8126c198d0fe0ab21e951b44ce1a2b364"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/scripts/update-pathversions.rs"}, "region": {"startLine": 23}}}]}, {"ruleId": "MINED066", "level": "none", "message": {"text": "[MINED066] Rust Panic Macro: panic!() unwinds the stack. Use Result for recoverable errors."}, "properties": {"repobilityId": 136487, "scanner": "repobility-threat-engine", "fingerprint": "9841b879addb5b54947c1811a67e4ed943448471ad3caab621f90ca3c1b4a7ac", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-panic-macro", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348055+00:00", "triaged_in_corpus": 12, "observations_count": 48611, "ai_coder_pattern_id": 113}, "scanner": "repobility-threat-engine", "correlation_key": "fp|9841b879addb5b54947c1811a67e4ed943448471ad3caab621f90ca3c1b4a7ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/scripts/update-cratenames.rs"}, "region": {"startLine": 147}}}]}, {"ruleId": "MINED059", "level": "none", "message": {"text": "[MINED059] Rust Expect In Prod (and 68 more): Same pattern found in 68 additional files. Review if needed."}, "properties": {"repobilityId": 136486, "scanner": "repobility-threat-engine", "fingerprint": "35a5f48134bc5130799047aeb420de2829778a503429c8eae6f3da1e4ed3a6a9", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 68 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "rust-expect-in-prod", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348039+00:00", "triaged_in_corpus": 12, "observations_count": 175379, "ai_coder_pattern_id": 112}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|35a5f48134bc5130799047aeb420de2829778a503429c8eae6f3da1e4ed3a6a9", "aggregated_count": 68}}}, {"ruleId": "MINED059", "level": "none", "message": {"text": "[MINED059] Rust Expect In Prod: .expect(...) panics same as unwrap with a custom message."}, "properties": {"repobilityId": 136485, "scanner": "repobility-threat-engine", "fingerprint": "c0fab0d2218ee418b8c44a75f313362d9526f8ed141b0f15b58b0c7bebf04e33", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-expect-in-prod", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348039+00:00", "triaged_in_corpus": 12, "observations_count": 175379, "ai_coder_pattern_id": 112}, "scanner": "repobility-threat-engine", "correlation_key": "fp|c0fab0d2218ee418b8c44a75f313362d9526f8ed141b0f15b58b0c7bebf04e33"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/scripts/verify-dependencies.rs"}, "region": {"startLine": 47}}}]}, {"ruleId": "MINED059", "level": "none", "message": {"text": "[MINED059] Rust Expect In Prod: .expect(...) panics same as unwrap with a custom message."}, "properties": {"repobilityId": 136484, "scanner": "repobility-threat-engine", "fingerprint": "2510b08de15ae6b1c0976be08d06401ebf8a6142c22d64b752fd01f9e5e638d7", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-expect-in-prod", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348039+00:00", "triaged_in_corpus": 12, "observations_count": 175379, "ai_coder_pattern_id": 112}, "scanner": "repobility-threat-engine", "correlation_key": "fp|2510b08de15ae6b1c0976be08d06401ebf8a6142c22d64b752fd01f9e5e638d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/scripts/update-pathversions.rs"}, "region": {"startLine": 25}}}]}, {"ruleId": "MINED059", "level": "none", "message": {"text": "[MINED059] Rust Expect In Prod: .expect(...) panics same as unwrap with a custom message."}, "properties": {"repobilityId": 136483, "scanner": "repobility-threat-engine", "fingerprint": "b4a5e599cb3b4458dd7c79a889ef3d4f5e8e0e8b7e648ae86468048495fcec3d", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-expect-in-prod", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348039+00:00", "triaged_in_corpus": 12, "observations_count": 175379, "ai_coder_pattern_id": 112}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b4a5e599cb3b4458dd7c79a889ef3d4f5e8e0e8b7e648ae86468048495fcec3d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/scripts/update-cratenames.rs"}, "region": {"startLine": 28}}}]}, {"ruleId": "MINED044", "level": "none", "message": {"text": "[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed."}, "properties": {"repobilityId": 136482, "scanner": "repobility-threat-engine", "fingerprint": "91763d857517fe595f103850dbc893d1eac1ef3e259a572c4185beb2bf0b32d3", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "js-console-log-prod", "owasp": null, "cwe_ids": ["CWE-532"], "languages": ["javascript", "typescript", "tsx", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348003+00:00", "triaged_in_corpus": 10, "observations_count": 1940833, "ai_coder_pattern_id": 102}, "scanner": "repobility-threat-engine", "correlation_key": "fp|91763d857517fe595f103850dbc893d1eac1ef3e259a572c4185beb2bf0b32d3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/common/docgeneration/templates/matthews/styles/main.js"}, "region": {"startLine": 226}}}]}, {"ruleId": "GHSA-hffm-xvc3-vprc", "level": "error", "message": {"text": "simple-git: GHSA-hffm-xvc3-vprc"}, "properties": {"repobilityId": 136513, "scanner": "osv-scanner", "fingerprint": "880d68a90f062bdd799f05a63a4a753952a016f9b7a9542fe4855cec95ba15cc", "category": "dependency", "severity": "high", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "", "aliases": ["CVE-2026-6951"], "package": "simple-git", "rule_id": "GHSA-hffm-xvc3-vprc", "scanner": "osv-scanner", "correlation_key": "vuln|simple-git|CVE-2026-6951|token"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/common/tsp-client/package-lock.json"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 136505, "scanner": "repobility-threat-engine", "fingerprint": "541022f75538ca77a5371f330416099165c24abf2bf8b952f2e4af2015d14252", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|541022f75538ca77a5371f330416099165c24abf2bf8b952f2e4af2015d14252"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/storage/azure_storage_blob/src/models/download_result.rs"}, "region": {"startLine": 210}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 136504, "scanner": "repobility-threat-engine", "fingerprint": "dbb194bab7312a60a64e8c542abb206e425709999a6e1a582237ca7fb2018c21", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|dbb194bab7312a60a64e8c542abb206e425709999a6e1a582237ca7fb2018c21"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/storage/azure_storage_blob/src/logging.rs"}, "region": {"startLine": 24}}}]}, {"ruleId": "MINED039", "level": "error", "message": {"text": "[MINED039] Rust Todo Macro: todo!() panics when reached. Unimplemented code path."}, "properties": {"repobilityId": 136502, "scanner": "repobility-threat-engine", "fingerprint": "700bc6bbc004288966eb9718af849817fcb7b4797d24d64cdf24b30addf3bd9e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-todo-macro", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347989+00:00", "triaged_in_corpus": 15, "observations_count": 1561, "ai_coder_pattern_id": 114}, "scanner": "repobility-threat-engine", "correlation_key": "fp|700bc6bbc004288966eb9718af849817fcb7b4797d24d64cdf24b30addf3bd9e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos/src/clients/database_client.rs"}, "region": {"startLine": 290}}}]}, {"ruleId": "MINED039", "level": "error", "message": {"text": "[MINED039] Rust Todo Macro: todo!() panics when reached. Unimplemented code path."}, "properties": {"repobilityId": 136501, "scanner": "repobility-threat-engine", "fingerprint": "06c8e62f7dad95161dd2e52a367f10c77e69bea20d8b360073d4d584ac6e3143", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-todo-macro", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347989+00:00", "triaged_in_corpus": 15, "observations_count": 1561, "ai_coder_pattern_id": 114}, "scanner": "repobility-threat-engine", "correlation_key": "fp|06c8e62f7dad95161dd2e52a367f10c77e69bea20d8b360073d4d584ac6e3143"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos/src/clients/cosmos_client.rs"}, "region": {"startLine": 204}}}]}, {"ruleId": "MINED039", "level": "error", "message": {"text": "[MINED039] Rust Todo Macro: todo!() panics when reached. Unimplemented code path."}, "properties": {"repobilityId": 136500, "scanner": "repobility-threat-engine", "fingerprint": "65d3aeef63f3fdf398795cd2e7647153529cab4a98405f49138d370bba87d705", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-todo-macro", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347989+00:00", "triaged_in_corpus": 15, "observations_count": 1561, "ai_coder_pattern_id": 114}, "scanner": "repobility-threat-engine", "correlation_key": "fp|65d3aeef63f3fdf398795cd2e7647153529cab4a98405f49138d370bba87d705"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core_test_macros/src/test.rs"}, "region": {"startLine": 270}}}]}, {"ruleId": "MINED041", "level": "error", "message": {"text": "[MINED041] Rust Unimplemented Macro: unimplemented!() panics. Same as todo!() but conventionally used for trait stubs."}, "properties": {"repobilityId": 136497, "scanner": "repobility-threat-engine", "fingerprint": "8b45234f9371530d0f1748f95286e29eba02f9ef6e90d6d565f2ab621f5aa127", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-unimplemented-macro", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347994+00:00", "triaged_in_corpus": 15, "observations_count": 1422, "ai_coder_pattern_id": 115}, "scanner": "repobility-threat-engine", "correlation_key": "fp|8b45234f9371530d0f1748f95286e29eba02f9ef6e90d6d565f2ab621f5aa127"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core_examples/src/identity/developer_tools_credential.rs"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED041", "level": "error", "message": {"text": "[MINED041] Rust Unimplemented Macro: unimplemented!() panics. Same as todo!() but conventionally used for trait stubs."}, "properties": {"repobilityId": 136496, "scanner": "repobility-threat-engine", "fingerprint": "9a37ac8fb945fc227eca891f0af045c9bfcbfa28b827c576b33add0d577c417b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-unimplemented-macro", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347994+00:00", "triaged_in_corpus": 15, "observations_count": 1422, "ai_coder_pattern_id": 115}, "scanner": "repobility-threat-engine", "correlation_key": "fp|9a37ac8fb945fc227eca891f0af045c9bfcbfa28b827c576b33add0d577c417b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core_amqp/src/noop.rs"}, "region": {"startLine": 60}}}]}, {"ruleId": "MINED041", "level": "error", "message": {"text": "[MINED041] Rust Unimplemented Macro: unimplemented!() panics. Same as todo!() but conventionally used for trait stubs."}, "properties": {"repobilityId": 136495, "scanner": "repobility-threat-engine", "fingerprint": "753955debccec33ea79724a5d8e6a9ae7f672aeea32ac5f3b74dd50af102164e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-unimplemented-macro", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347994+00:00", "triaged_in_corpus": 15, "observations_count": 1422, "ai_coder_pattern_id": 115}, "scanner": "repobility-threat-engine", "correlation_key": "fp|753955debccec33ea79724a5d8e6a9ae7f672aeea32ac5f3b74dd50af102164e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/core/azure_core/src/hmac.rs"}, "region": {"startLine": 74}}}]}, {"ruleId": "MINED003", "level": "error", "message": {"text": "[MINED003] Rust Unwrap In Prod: .unwrap() panics if None/Err. Acceptable in tests; risky elsewhere."}, "properties": {"repobilityId": 136493, "scanner": "repobility-threat-engine", "fingerprint": "76db9f781c347a936a55c5ebd17c09d1f80fec8fb52ce70afecdbb2e3f5d328d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-unwrap-in-prod", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347903+00:00", "triaged_in_corpus": 15, "observations_count": 386515, "ai_coder_pattern_id": 111}, "scanner": "repobility-threat-engine", "correlation_key": "fp|76db9f781c347a936a55c5ebd17c09d1f80fec8fb52ce70afecdbb2e3f5d328d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/scripts/verify-keywords.rs"}, "region": {"startLine": 174}}}]}, {"ruleId": "MINED003", "level": "error", "message": {"text": "[MINED003] Rust Unwrap In Prod: .unwrap() panics if None/Err. Acceptable in tests; risky elsewhere."}, "properties": {"repobilityId": 136492, "scanner": "repobility-threat-engine", "fingerprint": "72f9fc550bba6bc77634e7ffcb52b6f8dad639649243315775b10b2e5d582a20", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-unwrap-in-prod", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347903+00:00", "triaged_in_corpus": 15, "observations_count": 386515, "ai_coder_pattern_id": 111}, "scanner": "repobility-threat-engine", "correlation_key": "fp|72f9fc550bba6bc77634e7ffcb52b6f8dad639649243315775b10b2e5d582a20"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/scripts/verify-dependencies.rs"}, "region": {"startLine": 133}}}]}, {"ruleId": "MINED003", "level": "error", "message": {"text": "[MINED003] Rust Unwrap In Prod: .unwrap() panics if None/Err. Acceptable in tests; risky elsewhere."}, "properties": {"repobilityId": 136491, "scanner": "repobility-threat-engine", "fingerprint": "f24209d3f2386e049ee2584236b0a5c6f6f0f0aa885c0ec7d7058895bc063ed9", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-unwrap-in-prod", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347903+00:00", "triaged_in_corpus": 15, "observations_count": 386515, "ai_coder_pattern_id": 111}, "scanner": "repobility-threat-engine", "correlation_key": "fp|f24209d3f2386e049ee2584236b0a5c6f6f0f0aa885c0ec7d7058895bc063ed9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/scripts/update-pathversions.rs"}, "region": {"startLine": 122}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 136479, "scanner": "repobility-threat-engine", "fingerprint": "e809e8f2360e9b50a465b874b9ec71ba3b381ad46ebd0c050b8a458c6604deba", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "url(\n    c", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|e809e8f2360e9b50a465b874b9ec71ba3b381ad46ebd0c050b8a458c6604deba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/storage/azure_storage_blob/examples/block_blob_client.rs"}, "region": {"startLine": 122}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 136478, "scanner": "repobility-threat-engine", "fingerprint": "c1e7e872c77399852da9a227931ccf7e8e98fcb932988ddd2fe13bf4b488c54d", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "url(s", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|c1e7e872c77399852da9a227931ccf7e8e98fcb932988ddd2fe13bf4b488c54d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos/src/account_endpoint.rs"}, "region": {"startLine": 42}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 136477, "scanner": "repobility-threat-engine", "fingerprint": "d5e397ef2f9b21b2d0b89bbf39f867b4624596727d81aa57b48355c454d19c50", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "Url(S", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|d5e397ef2f9b21b2d0b89bbf39f867b4624596727d81aa57b48355c454d19c50"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/common/docgeneration/templates/matthews/styles/main.js"}, "region": {"startLine": 141}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/checkout` pinned to mutable ref `@v6`"}, "properties": {"repobilityId": 136473, "scanner": "repobility-supply-chain", "fingerprint": "c93316174f0a656e6529fa603e2ae88a3908d7cf934efa4dedfc392cb1dc8148", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|c93316174f0a656e6529fa603e2ae88a3908d7cf934efa4dedfc392cb1dc8148"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/build-samples.yml"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `azure/azure-sdk-actions` pinned to mutable ref `@main`"}, "properties": {"repobilityId": 136472, "scanner": "repobility-supply-chain", "fingerprint": "0d15b9beb4704c964f99cbefc8c358087b801a03a84e9f66002f04363deee6c3", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|0d15b9beb4704c964f99cbefc8c358087b801a03a84e9f66002f04363deee6c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/event.yml"}, "region": {"startLine": 23}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/upload-artifact` pinned to mutable ref `@v7`"}, "properties": {"repobilityId": 136471, "scanner": "repobility-supply-chain", "fingerprint": "0f5d740e55611c055d95d8be832a47e7206259af95b2379f8394944b1c64ef08", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|0f5d740e55611c055d95d8be832a47e7206259af95b2379f8394944b1c64ef08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/scheduled-event-processor.yml"}, "region": {"startLine": 126}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/checkout` pinned to mutable ref `@v6`"}, "properties": {"repobilityId": 136470, "scanner": "repobility-supply-chain", "fingerprint": "c14ff8a7107d6ea9153b843da67aac87533e6b2709deb3afd4f8d0cbf6b4d311", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|c14ff8a7107d6ea9153b843da67aac87533e6b2709deb3afd4f8d0cbf6b4d311"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/post-apiview.yml"}, "region": {"startLine": 27}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/cache` pinned to mutable ref `@v4`"}, "properties": {"repobilityId": 136469, "scanner": "repobility-supply-chain", "fingerprint": "27c6b2db1de1bdc58e9944a8456468221c81986bce80c08890b223e5efef3ba6", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|27c6b2db1de1bdc58e9944a8456468221c81986bce80c08890b223e5efef3ba6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/copilot-setup-steps.yml"}, "region": {"startLine": 44}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/checkout` pinned to mutable ref `@v6`"}, "properties": {"repobilityId": 136468, "scanner": "repobility-supply-chain", "fingerprint": "f6ac11ebe25022d8100f747ecfa8a2eee4a5efbfb580f5814bb4ab466f63250d", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|f6ac11ebe25022d8100f747ecfa8a2eee4a5efbfb580f5814bb4ab466f63250d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/copilot-setup-steps.yml"}, "region": {"startLine": 31}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/upload-artifact` pinned to mutable ref `@v7`"}, "properties": {"repobilityId": 136467, "scanner": "repobility-supply-chain", "fingerprint": "47787b3008a097905b9bc59b9c37c9a47776539b02445a726181c803f9bed27d", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|47787b3008a097905b9bc59b9c37c9a47776539b02445a726181c803f9bed27d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/event-processor.yml"}, "region": {"startLine": 110}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `azure/login` pinned to mutable ref `@v3`"}, "properties": {"repobilityId": 136466, "scanner": "repobility-supply-chain", "fingerprint": "7cb6dcbb12d510007d1f0053a01322d8ba7ad07b6137b3ecff4020ef1d6afd6f", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|7cb6dcbb12d510007d1f0053a01322d8ba7ad07b6137b3ecff4020ef1d6afd6f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/event-processor.yml"}, "region": {"startLine": 35}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "Dockerfile FROM `mcr.microsoft.com/devcontainers/rust:1-1-bullseye` not pinned by digest"}, "properties": {"repobilityId": 136465, "scanner": "repobility-supply-chain", "fingerprint": "e64ea5409dbcb2fc08384b590f39917ae50bac4cb46992c5bf3b9a745ee50cfe", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|e64ea5409dbcb2fc08384b590f39917ae50bac4cb46992c5bf3b9a745ee50cfe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".devcontainer/Dockerfile"}, "region": {"startLine": 1}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 136512, "scanner": "gitleaks", "fingerprint": "86b04efa11196c9b3c7b25c09ca4f830b287d5db4b7319155e18babcc46e66dc", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "vnextKey = 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|2|vnextkey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/eng/scripts/Invoke-CosmosTestSetup.ps1"}, "region": {"startLine": 29}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 136511, "scanner": "gitleaks", "fingerprint": "83e95d6420e355c7ee79080cd3771d36b6dad13101fa1125498e903c47584f67", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "AccountKey=REDACTED;", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|2|accountkey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos_driver/tests/framework/env.rs"}, "region": {"startLine": 26}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 136510, "scanner": "gitleaks", "fingerprint": "7a2caa1ffd528ce48e7a4e40cad6f58388ade8515fd7dcf4d4aaefede32ae83c", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "AccountKey=REDACTED;", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|4|accountkey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/azure_data_cosmos/tests/framework/test_client.rs"}, "region": {"startLine": 42}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 136509, "scanner": "gitleaks", "fingerprint": "69e7597dddf2f0fbd6e7e26ec5e12348de33a556b4f5dc322d7fd0bc459243e6", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "AccountKey=REDACTED;", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|sdk/cosmos/agents.md|48|accountkey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sdk/cosmos/AGENTS.md"}, "region": {"startLine": 482}}}]}, {"ruleId": "pkcs12-file", "level": "error", "message": {"text": "Found a PKCS #12 file, which commonly contain bundled private keys."}, "properties": {"repobilityId": 136508, "scanner": "gitleaks", "fingerprint": "ab55840ce3684d873f2a03e9be2add7d7b4cad888c70a1a2f419ed85c421650b", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "REDACTEDfREDACTEDiREDACTEDlREDACTEDeREDACTED REDACTEDdREDACTEDeREDACTEDtREDACTEDeREDACTEDcREDACTEDtREDACTEDeREDACTEDdREDACTED:REDACTED REDACTED/REDACTEDtREDACTEDmREDACTEDpREDACTED/REDACTEDrREDACTEDeREDACTEDpREDACTEDoREDACTEDbREDACTEDiREDACTEDlREDACTEDiREDACTEDtREDACTEDyREDACTED-REDACTEDaREDACTEDnRED", "rule_id": "pkcs12-file", "scanner": "gitleaks", "detector": "pkcs12-file", "correlation_key": "secret|token||token token token", "duplicate_count": 1, "duplicate_rule_ids": ["pkcs12-file"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["501bc31260d1c49c4c618b173959c693b3e3e8facb0fa94159c00965f00c18dd", "ab55840ce3684d873f2a03e9be2add7d7b4cad888c70a1a2f419ed85c421650b"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eng/common/testproxy/dotnet-devcert.pfx"}, "region": {"startLine": 1}}}]}]}]}