{"version": "2.1.0", "$schema": "https://json.schemastore.org/sarif-2.1.0.json", "runs": [{"tool": {"driver": {"name": "Repobility", "informationUri": "https://repobility.com", "rules": [{"id": "MINED111", "name": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or ", "shortDescription": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "fullDescription": {"text": "Either narrow the exception type, log the exception with `logger.exception(...)`, or re-raise after handling."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "AIC004", "name": "Suspicious implementation file appears unreferenced", "shortDescription": {"text": "Suspicious implementation file appears unreferenced"}, "fullDescription": {"text": "Confirm whether this file is reachable. If not, delete it; if yes, wire it through explicit imports, routes, or entry points and add a test that proves the path executes."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "medium", "confidence": 0.78, "cwe": "", "owasp": ""}}, {"id": "SEC045", "name": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a latera", "shortDescription": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use obj"}, "fullDescription": {"text": "For literal data structures: use ast.literal_eval(text) \u2014 only parses literals, raises on code.\nFor formula evaluation: use asteval or simpleeval (purpose-built sandboxes with allow-lists).\nFor Odoo: use odoo.tools.safe_eval(expr, locals_dict, mode='exec').\nIf you genuinely need to execute admin-stored code: require explicit super-admin permission AND log every execution with a stack trace."}, "properties": {"scanner": "repobility-threat-engine", "category": "injection", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "AIC003", "name": "Duplicated implementation block across source files", "shortDescription": {"text": "Duplicated implementation block across source files"}, "fullDescription": {"text": "Extract the shared behavior into one function/module or delete the inactive duplicate after proving which path is used."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.86, "cwe": "", "owasp": ""}}, {"id": "AIC002", "name": "Source file name looks like an AI patch artifact", "shortDescription": {"text": "Source file name looks like an AI patch artifact"}, "fullDescription": {"text": "Rename it to the domain concept it implements or merge it into the existing module it was meant to change."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.62, "cwe": "", "owasp": ""}}, {"id": "COMP001", "name": "[COMP001] High cognitive complexity: Function `main` has cognitive complexity 14 (SonarSource scale). Cognitive complexi", "shortDescription": {"text": "[COMP001] High cognitive complexity: Function `main` has cognitive complexity 14 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weig"}, "fullDescription": {"text": "Extract nested branches into named helper functions; flatten early-return / guard clauses; replace long if/elif chains with dispatch dicts or polymorphism. SonarQube's threshold for 'should refactor' is 15 \u2014 yours is 14."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "low", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "CORE_NO_LICENSE", "name": "No LICENSE file", "shortDescription": {"text": "No LICENSE file"}, "fullDescription": {"text": "Add a LICENSE file to your repository. Use choosealicense.com to pick the right license (MIT for permissive, Apache 2.0 for patent protection, GPL for copyleft)."}, "properties": {"scanner": "repobility-core", "category": "documentation", "severity": "low", "confidence": null, "cwe": "", "owasp": ""}}, {"id": "MINED064", "name": "[MINED064] Python Input Call: input() blocks for stdin. Inappropriate in services.", "shortDescription": {"text": "[MINED064] Python Input Call: input() blocks for stdin. Inappropriate in services."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED045", "name": "[MINED045] Ts Non Null Assertion (and 2 more): Same pattern found in 2 additional files. Review if needed.", "shortDescription": {"text": "[MINED045] Ts Non Null Assertion (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-476 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED048", "name": "[MINED048] Php Error Suppress (and 1 more): Same pattern found in 1 additional files. Review if needed.", "shortDescription": {"text": "[MINED048] Php Error Suppress (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-755 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED080", "name": "[MINED080] Cpp Using Namespace Std (and 23 more): Same pattern found in 23 additional files. Review if needed.", "shortDescription": {"text": "[MINED080] Cpp Using Namespace Std (and 23 more): Same pattern found in 23 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC029", "name": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 16 more): Same pattern found in 16 addi", "shortDescription": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 16 more): Same pattern found in 16 additional files. Review if needed."}, "fullDescription": {"text": "Validate the URL against an allowlist BEFORE fetching:\n  ALLOWED = {'images.example.com', 'cdn.example.com'}\n  host = urlparse(url).hostname\n  if host not in ALLOWED: abort(400)\nOr use a server-side proxy (Imgproxy / serve-files-only-from-S3) that isolates outbound network access from the request handler.\nBlock private CIDRs explicitly: 10/8, 172.16/12, 192.168/16, 169.254/16."}, "properties": {"scanner": "repobility-threat-engine", "category": "ssrf", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED042", "name": "[MINED042] Cpp New Without Delete (and 72 more): Same pattern found in 72 additional files. Review if needed.", "shortDescription": {"text": "[MINED042] Cpp New Without Delete (and 72 more): Same pattern found in 72 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-401 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED022", "name": "[MINED022] C Strcpy (and 3 more): Same pattern found in 3 additional files. Review if needed.", "shortDescription": {"text": "[MINED022] C Strcpy (and 3 more): Same pattern found in 3 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-120 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED075", "name": "[MINED075] C Malloc No Check (and 11 more): Same pattern found in 11 additional files. Review if needed.", "shortDescription": {"text": "[MINED075] C Malloc No Check (and 11 more): Same pattern found in 11 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-690 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED043", "name": "[MINED043] Http Not Https (and 371 more): Same pattern found in 371 additional files. Review if needed.", "shortDescription": {"text": "[MINED043] Http Not Https (and 371 more): Same pattern found in 371 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-319 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED134", "name": "[MINED134] Binary file `deps/w32-pthreads/libpthreadGC2.a` committed in source repo: `deps/w32-pthreads/libpthreadGC2.a`", "shortDescription": {"text": "[MINED134] Binary file `deps/w32-pthreads/libpthreadGC2.a` committed in source repo: `deps/w32-pthreads/libpthreadGC2.a` is a .a binary (97,828 bytes) committed to a repo that otherwise has 1640 source files. Trojan binaries inside otherwis"}, "fullDescription": {"text": "Audit the binary's provenance. If it's vendored library code, document it in a VENDORED.md. If it's a build artifact, add the extension to .gitignore and rebuild from source."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED126", "name": "[MINED126] Workflow container/services image `ghcr.io/flathub-infra/flatpak-github-actions:freedesktop-25.08` unpinned: ", "shortDescription": {"text": "[MINED126] Workflow container/services image `ghcr.io/flathub-infra/flatpak-github-actions:freedesktop-25.08` unpinned: `container/services image: ghcr.io/flathub-infra/flatpak-github-actions:freedesktop-25.08` without `@sha256:...` pulls a"}, "fullDescription": {"text": "Replace with `ghcr.io/flathub-infra/flatpak-github-actions:freedesktop-25.08@sha256:<digest>`. Re-pin via Dependabot Docker scope."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED004", "name": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums).", "shortDescription": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-327 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC013", "name": "[SEC013] Path Traversal \u2014 User Input in File Path: User-controlled input used in file path without sanitization. Allows ", "shortDescription": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files."}, "fullDescription": {"text": "Use os.path.realpath() and verify the path starts with your expected base directory. Use secure_filename() for uploads."}, "properties": {"scanner": "repobility-threat-engine", "category": "path_traversal", "severity": "high", "confidence": 0.8, "cwe": "", "owasp": ""}}, {"id": "MINED008", "name": "[MINED008] Swift Force Unwrap: optional! crashes on nil. Use guard let or if let.", "shortDescription": {"text": "[MINED008] Swift Force Unwrap: optional! crashes on nil. Use guard let or if let."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-476 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED017", "name": "[MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic.", "shortDescription": {"text": "[MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-78 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC085", "name": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. ", "shortDescription": {"text": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0)."}, "fullDescription": {"text": "Use execFile / spawn with separate args array; never pass shell strings."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}]}}, "automationDetails": {"id": "repobility/825"}, "properties": {"repository": "obsproject/obs-studio", "repoUrl": "https://github.com/obsproject/obs-studio", "branch": "master"}, "results": [{"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 72734, "scanner": "repobility-ast-engine", "fingerprint": "904d6f4b44d2e05830b6d7340b0d00c98f4b887fc8d9db0ac5cbdb9ed96a1241", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|904d6f4b44d2e05830b6d7340b0d00c98f4b887fc8d9db0ac5cbdb9ed96a1241"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/scripts/utils.py/check-services.py"}, "region": {"startLine": 188}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 72733, "scanner": "repobility-ast-engine", "fingerprint": "15376c6cc47fcacab46ac4bc8ef346c6798d3795c66b75d72baa2f3d798f3c19", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|15376c6cc47fcacab46ac4bc8ef346c6798d3795c66b75d72baa2f3d798f3c19"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/scripts/utils.py/check-services.py"}, "region": {"startLine": 322}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 72732, "scanner": "repobility-ast-engine", "fingerprint": "cd025e4e1565a9b65715ad3e6a615c3d68fb2f29b18b591485129c4fe5bf3b0f", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|cd025e4e1565a9b65715ad3e6a615c3d68fb2f29b18b591485129c4fe5bf3b0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/scripts/utils.py/check-services.py"}, "region": {"startLine": 233}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 72731, "scanner": "repobility-ast-engine", "fingerprint": "0c90f0f6bb3a7edb8ac97564813a2718624ecb7528040556696d6be041cc33bd", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|0c90f0f6bb3a7edb8ac97564813a2718624ecb7528040556696d6be041cc33bd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/scripts/utils.py/check-services.py"}, "region": {"startLine": 360}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 72730, "scanner": "repobility-ast-engine", "fingerprint": "5aee9a42217792ae3d30dbdd3f3c696cc5a73036bb112d500de5f925467e11b8", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5aee9a42217792ae3d30dbdd3f3c696cc5a73036bb112d500de5f925467e11b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/scripts/utils.py/check-services.py"}, "region": {"startLine": 150}}}]}, {"ruleId": "AIC004", "level": "warning", "message": {"text": "Suspicious implementation file appears unreferenced"}, "properties": {"repobilityId": 72699, "scanner": "repobility-ai-code-hygiene", "fingerprint": "2d14ec8c40c5b112eec6f32e867b333d1d3adb3c0fb975581ff1cdd2ac358b2d", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Patch-style source file has no detected inbound reference from other repository files.", "evidence": {"suffix": "new", "rule_id": "AIC004", "scanner": "repobility-ai-code-hygiene", "references": ["https://knip.dev/", "https://github.com/jendrikseipp/vulture"], "correlation_key": "fp|2d14ec8c40c5b112eec6f32e867b333d1d3adb3c0fb975581ff1cdd2ac358b2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/ptw32_new.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "SEC045", "level": "warning", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use object introspection (().__class__.__mro__[-1].__subclasses__()) to reach os.system. CWE-95 (eval injection)."}, "properties": {"repobilityId": 72663, "scanner": "repobility-threat-engine", "fingerprint": "d3eadac157bbe21ff69d9c137d50597b7e8a68c3c5942e402e7e20bf7be2f913", "category": "injection", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".exec(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|token|49|sec045"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/components/UIValidation.cpp"}, "region": {"startLine": 49}}}]}, {"ruleId": "SEC045", "level": "warning", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use object introspection (().__class__.__mro__[-1].__subclasses__()) to reach os.system. CWE-95 (eval injection)."}, "properties": {"repobilityId": 72662, "scanner": "repobility-threat-engine", "fingerprint": "839536a403738eb400b0ca4d4f544f0290146aa8a6febab309396ed822939981", "category": "injection", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ">exec(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|token|190|sec045"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/components/SourceSelectButton.cpp"}, "region": {"startLine": 190}}}]}, {"ruleId": "SEC045", "level": "warning", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use object introspection (().__class__.__mro__[-1].__subclasses__()) to reach os.system. CWE-95 (eval injection)."}, "properties": {"repobilityId": 72661, "scanner": "repobility-threat-engine", "fingerprint": "2fa0e37224a686c3e7ac107f5042c76833684b34a41d3ec88bba5066e2e938eb", "category": "injection", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "Exec(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|frontend/obsapp.hpp|241|sec045"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/OBSApp.hpp"}, "region": {"startLine": 241}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72729, "scanner": "repobility-ai-code-hygiene", "fingerprint": "ad8db8ac04e23c1400b81c8e71fad77c05ecbdd462ceca63693a612fb43bac1b", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/plugin-manager/PluginManager.hpp", "duplicate_line": 1, "correlation_key": "fp|ad8db8ac04e23c1400b81c8e71fad77c05ecbdd462ceca63693a612fb43bac1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/plugin-manager/PluginManagerWindow.hpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72728, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1695be71dca11799d37dca0388b3830856300032c8ce1412f9024bbde3d9cdae", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/dialogs/OBSBasicFilters.cpp", "duplicate_line": 1, "correlation_key": "fp|1695be71dca11799d37dca0388b3830856300032c8ce1412f9024bbde3d9cdae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/obs-main.cpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72727, "scanner": "repobility-ai-code-hygiene", "fingerprint": "3b560f6adc42224570c0c69c749744aa4554e045a42dd0f08872d3fa9a1c9df4", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/oauth/RestreamAuth.cpp", "duplicate_line": 73, "correlation_key": "fp|3b560f6adc42224570c0c69c749744aa4554e045a42dd0f08872d3fa9a1c9df4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/oauth/TwitchAuth.cpp"}, "region": {"startLine": 130}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72726, "scanner": "repobility-ai-code-hygiene", "fingerprint": "cd52c799846d0e34d7d059aa758336bee1e6f37983bddd9074fc76a2d6a5b1a1", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/models/Rect.cpp", "duplicate_line": 1, "correlation_key": "fp|cd52c799846d0e34d7d059aa758336bee1e6f37983bddd9074fc76a2d6a5b1a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/models/SceneCollection.hpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72725, "scanner": "repobility-ai-code-hygiene", "fingerprint": "efbfc1ce48f7e533e2c99d02d20fae5cd00c36b603ac5c79514bfdb7413458af", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/importers/classic.cpp", "duplicate_line": 1, "correlation_key": "fp|efbfc1ce48f7e533e2c99d02d20fae5cd00c36b603ac5c79514bfdb7413458af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/importers/xsplit.cpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72724, "scanner": "repobility-ai-code-hygiene", "fingerprint": "5f2b0dd8f131cce9082043001ff0d2419d392613a0939e12c67eb57dbcd8923d", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/importers/classic.cpp", "duplicate_line": 1, "correlation_key": "fp|5f2b0dd8f131cce9082043001ff0d2419d392613a0939e12c67eb57dbcd8923d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/importers/studio.cpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72723, "scanner": "repobility-ai-code-hygiene", "fingerprint": "97e88647b7fa278d68630a6ac3eb8db7f05c840f1d2f8da03d784b2889c88959", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/importers/classic.cpp", "duplicate_line": 1, "correlation_key": "fp|97e88647b7fa278d68630a6ac3eb8db7f05c840f1d2f8da03d784b2889c88959"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/importers/sl.cpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72722, "scanner": "repobility-ai-code-hygiene", "fingerprint": "c29f21b6cd5306448ea40bceba1a6abe150b26e32af0f4d50304d8c2d8802b27", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/importers/classic.cpp", "duplicate_line": 1, "correlation_key": "fp|c29f21b6cd5306448ea40bceba1a6abe150b26e32af0f4d50304d8c2d8802b27"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/importers/importers.cpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72721, "scanner": "repobility-ai-code-hygiene", "fingerprint": "3f27a7ce54e7ad85217fb86da667051d58daf4bfdebc10e5c8670e467aecc9e9", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/dialogs/OBSBasicSourceSelect.cpp", "duplicate_line": 1, "correlation_key": "fp|3f27a7ce54e7ad85217fb86da667051d58daf4bfdebc10e5c8670e467aecc9e9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/dialogs/OBSBasicSourceSelect.hpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72720, "scanner": "repobility-ai-code-hygiene", "fingerprint": "ee2dc60179193512c9a16f6176b8efd7ac212079464b8e40db27c937480d3e3c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/dialogs/OBSBasicFilters.hpp", "duplicate_line": 1, "correlation_key": "fp|ee2dc60179193512c9a16f6176b8efd7ac212079464b8e40db27c937480d3e3c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/dialogs/OBSBasicProperties.hpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72719, "scanner": "repobility-ai-code-hygiene", "fingerprint": "9bd266650b55c1d4a41178166a1986d182139a9ea90448537e8058f548e31a21", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/dialogs/OBSBasicFilters.cpp", "duplicate_line": 1, "correlation_key": "fp|9bd266650b55c1d4a41178166a1986d182139a9ea90448537e8058f548e31a21"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/dialogs/OBSBasicProperties.cpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72718, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a4cdbd1caa59d99e12b53e769b019592b425e1958ee6318ac09d434e2b27ba87", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/dialogs/OBSBasicFilters.hpp", "duplicate_line": 1, "correlation_key": "fp|a4cdbd1caa59d99e12b53e769b019592b425e1958ee6318ac09d434e2b27ba87"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/dialogs/OBSBasicInteraction.hpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72717, "scanner": "repobility-ai-code-hygiene", "fingerprint": "c08db63b66d1e74b908047b24172662188553fd6e8665941d9eec2ac83bb4574", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/dialogs/OBSBasicFilters.cpp", "duplicate_line": 1, "correlation_key": "fp|c08db63b66d1e74b908047b24172662188553fd6e8665941d9eec2ac83bb4574"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/dialogs/OBSBasicInteraction.cpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72716, "scanner": "repobility-ai-code-hygiene", "fingerprint": "050927799ae77c45caf7ec5aa4f6ffd5f71fbbced73092bbec3fb89ed3dc17f2", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/components/SourceSelectButton.cpp", "duplicate_line": 1, "correlation_key": "fp|050927799ae77c45caf7ec5aa4f6ffd5f71fbbced73092bbec3fb89ed3dc17f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/components/SourceSelectButton.hpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72715, "scanner": "repobility-ai-code-hygiene", "fingerprint": "0c7c6effdd1fe46c11c5457566fba6eefae8d2fe133943ae3e0207efe072a456", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/components/SilentUpdateCheckBox.hpp", "duplicate_line": 1, "correlation_key": "fp|0c7c6effdd1fe46c11c5457566fba6eefae8d2fe133943ae3e0207efe072a456"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/components/SilentUpdateSpinBox.hpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72714, "scanner": "repobility-ai-code-hygiene", "fingerprint": "4c768be4ffe584bfd14fceb5e9b758eaa07fe1250201aaafbbba438c5b057f52", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "frontend/components/AccessibleAlignmentCell.hpp", "duplicate_line": 1, "correlation_key": "fp|4c768be4ffe584bfd14fceb5e9b758eaa07fe1250201aaafbbba438c5b057f52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/components/AccessibleAlignmentSelector.hpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72713, "scanner": "repobility-ai-code-hygiene", "fingerprint": "169b3b377292f2c9228f4ceaeb8701c3d64d9075078098828fa1feb577a799d1", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/ptw32_semwait.c", "duplicate_line": 8, "correlation_key": "fp|169b3b377292f2c9228f4ceaeb8701c3d64d9075078098828fa1feb577a799d1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/sem_wait.c"}, "region": {"startLine": 26}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72712, "scanner": "repobility-ai-code-hygiene", "fingerprint": "9a295dd45351e9ab28758bba29f61ae36e2391ba1e2c8057fae8a0261e81a856", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/ptw32_semwait.c", "duplicate_line": 12, "correlation_key": "fp|9a295dd45351e9ab28758bba29f61ae36e2391ba1e2c8057fae8a0261e81a856"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/sem_timedwait.c"}, "region": {"startLine": 47}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72711, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1d40ed7953f023e10ecbc7f1d23344e34fb904459fcf80febc29440a8f51a67a", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/pthread_barrierattr_setpshared.c", "duplicate_line": 3, "correlation_key": "fp|1d40ed7953f023e10ecbc7f1d23344e34fb904459fcf80febc29440a8f51a67a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/pthread_rwlockattr_setpshared.c"}, "region": {"startLine": 3}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72710, "scanner": "repobility-ai-code-hygiene", "fingerprint": "15ab751db5de92d3cf9f826a20011e903a0480f4fae4b78627f9ae90859f08c1", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/pthread_rwlock_timedwrlock.c", "duplicate_line": 36, "correlation_key": "fp|15ab751db5de92d3cf9f826a20011e903a0480f4fae4b78627f9ae90859f08c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/pthread_rwlock_wrlock.c"}, "region": {"startLine": 32}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72709, "scanner": "repobility-ai-code-hygiene", "fingerprint": "11e75fe74bbb8fafda3c04e03859932ea21b549f770f5f76d3c0fca5c5989ef8", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/pthread_rwlock_rdlock.c", "duplicate_line": 4, "correlation_key": "fp|11e75fe74bbb8fafda3c04e03859932ea21b549f770f5f76d3c0fca5c5989ef8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/pthread_rwlock_wrlock.c"}, "region": {"startLine": 4}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72708, "scanner": "repobility-ai-code-hygiene", "fingerprint": "8b1460bc562cd4e03626d3afa0bf9bae7e108c589ccd015b3fe3bec819364ffc", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/pthread_rwlock_rdlock.c", "duplicate_line": 4, "correlation_key": "fp|8b1460bc562cd4e03626d3afa0bf9bae7e108c589ccd015b3fe3bec819364ffc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/pthread_rwlock_tryrdlock.c"}, "region": {"startLine": 4}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72707, "scanner": "repobility-ai-code-hygiene", "fingerprint": "12cbaa820271efc07606c77f991a24f1b204273bd38963721409829599d36285", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/pthread_rwlock_rdlock.c", "duplicate_line": 4, "correlation_key": "fp|12cbaa820271efc07606c77f991a24f1b204273bd38963721409829599d36285"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/pthread_rwlock_timedwrlock.c"}, "region": {"startLine": 5}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72706, "scanner": "repobility-ai-code-hygiene", "fingerprint": "2076fee1ffc60bde2f404f95ec399ac474017fda1f31400e6ae9a32633587958", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/pthread_rwlock_timedrdlock.c", "duplicate_line": 3, "correlation_key": "fp|2076fee1ffc60bde2f404f95ec399ac474017fda1f31400e6ae9a32633587958"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/pthread_rwlock_timedwrlock.c"}, "region": {"startLine": 3}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72705, "scanner": "repobility-ai-code-hygiene", "fingerprint": "e14d5d88747f1d0aec315e3005f066e983a08aba4e718851a7b69bc5f8797b67", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/pthread_rwlock_rdlock.c", "duplicate_line": 4, "correlation_key": "fp|e14d5d88747f1d0aec315e3005f066e983a08aba4e718851a7b69bc5f8797b67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/pthread_rwlock_timedrdlock.c"}, "region": {"startLine": 5}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72704, "scanner": "repobility-ai-code-hygiene", "fingerprint": "7aa4c6bcec78b452f5cab401394afeba8d9e536fddb0df6ab13bc5c3964578d2", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/pthread_barrierattr_setpshared.c", "duplicate_line": 3, "correlation_key": "fp|7aa4c6bcec78b452f5cab401394afeba8d9e536fddb0df6ab13bc5c3964578d2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/pthread_mutexattr_setpshared.c"}, "region": {"startLine": 3}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72703, "scanner": "repobility-ai-code-hygiene", "fingerprint": "631103f03d383e1883394b22da2e3645b17c8a06f39143bbbff6410f68358cb3", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/pthread_mutex_timedlock.c", "duplicate_line": 40, "correlation_key": "fp|631103f03d383e1883394b22da2e3645b17c8a06f39143bbbff6410f68358cb3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/pthread_mutex_trylock.c"}, "region": {"startLine": 4}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72702, "scanner": "repobility-ai-code-hygiene", "fingerprint": "6330c2a6eb77ead341c02d2ddb8e3b3c148c680640c81d3917acdc801c99edd7", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/pthread_mutex_lock.c", "duplicate_line": 38, "correlation_key": "fp|6330c2a6eb77ead341c02d2ddb8e3b3c148c680640c81d3917acdc801c99edd7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/pthread_mutex_timedlock.c"}, "region": {"startLine": 69}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72701, "scanner": "repobility-ai-code-hygiene", "fingerprint": "b7eac644071b0bf42fc4934c6942a88577223d016956dc8b68d744f42f17bee9", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/w32-pthreads/pthread_detach.c", "duplicate_line": 6, "correlation_key": "fp|b7eac644071b0bf42fc4934c6942a88577223d016956dc8b68d744f42f17bee9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/pthread_join.c"}, "region": {"startLine": 6}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 72700, "scanner": "repobility-ai-code-hygiene", "fingerprint": "7871a23c190de010bf4e79581128dd18fb256935a47aaf9a07364cf7de04cb8a", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/glad/include/glad/glad_egl.h", "duplicate_line": 1, "correlation_key": "fp|7871a23c190de010bf4e79581128dd18fb256935a47aaf9a07364cf7de04cb8a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/glad/src/glad_egl.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 72698, "scanner": "repobility-ai-code-hygiene", "fingerprint": "6483abf3db0e78658f934a0a7acb259c8270d4584139b4ef1e90e66358a873a2", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "new", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|6483abf3db0e78658f934a0a7acb259c8270d4584139b4ef1e90e66358a873a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/ptw32_new.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "COMP001", "level": "note", "message": {"text": "[COMP001] High cognitive complexity: Function `main` has cognitive complexity 14 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: except=3, for=3, if=2, nested_bonus=6."}, "properties": {"repobilityId": 72648, "scanner": "repobility-threat-engine", "fingerprint": "bca1984ea3257ceed2c778f78957037fd3986bec2ea40fcb3a0f0cd2d284edd0", "category": "quality", "severity": "low", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 14 (severity threshold for low: 8+).", "evidence": {"scanner": "repobility-threat-engine", "function": "main", "breakdown": {"if": 2, "for": 3, "except": 3, "nested_bonus": 6}, "complexity": 14, "correlation_key": "fp|bca1984ea3257ceed2c778f78957037fd3986bec2ea40fcb3a0f0cd2d284edd0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/scripts/utils.py/check-jsonschema.py"}, "region": {"startLine": 72}}}]}, {"ruleId": "CORE_NO_LICENSE", "level": "note", "message": {"text": "No LICENSE file"}, "properties": {"repobilityId": 72647, "scanner": "repobility-core", "fingerprint": "9314e9238cd99885865b92490d1aaa96ca62b1390c9377878d5f3d99227e1c3c", "category": "documentation", "severity": "low", "confidence": null, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"rule_id": "CORE_NO_LICENSE", "scanner": "repobility-core", "correlation_key": "repo|documentation|core_no_license"}}}, {"ruleId": "MINED064", "level": "none", "message": {"text": "[MINED064] Python Input Call: input() blocks for stdin. Inappropriate in services."}, "properties": {"repobilityId": 72694, "scanner": "repobility-threat-engine", "fingerprint": "39ea7ccc67e149262409ba1e3d4f0abd3559884a28c6904cb4589171527e2506", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-input-call", "owasp": null, "cwe_ids": [], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348050+00:00", "triaged_in_corpus": 12, "observations_count": 66378, "ai_coder_pattern_id": 124}, "scanner": "repobility-threat-engine", "correlation_key": "fp|39ea7ccc67e149262409ba1e3d4f0abd3559884a28c6904cb4589171527e2506"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "plugins/obs-filters/rnnoise/src/rnn_train.py"}, "region": {"startLine": 20}}}]}, {"ruleId": "MINED045", "level": "none", "message": {"text": "[MINED045] Ts Non Null Assertion (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "properties": {"repobilityId": 72693, "scanner": "repobility-threat-engine", "fingerprint": "d6ff52f326a217119b363f1aee474b58469492e74a7fc3a211d777ba7b2b5474", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 2 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "ts-non-null-assertion", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["typescript", "tsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348005+00:00", "triaged_in_corpus": 12, "observations_count": 1810954, "ai_coder_pattern_id": 105}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|d6ff52f326a217119b363f1aee474b58469492e74a7fc3a211d777ba7b2b5474", "aggregated_count": 2}}}, {"ruleId": "MINED045", "level": "none", "message": {"text": "[MINED045] Ts Non Null Assertion: x! asserts not null - bypasses null checks - TypeError if wrong."}, "properties": {"repobilityId": 72692, "scanner": "repobility-threat-engine", "fingerprint": "dc7394bc459d59dd0393c7e264a17d64a1e958c5aa6a0342f82db6411afa58c5", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "ts-non-null-assertion", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["typescript", "tsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348005+00:00", "triaged_in_corpus": 12, "observations_count": 1810954, "ai_coder_pattern_id": 105}, "scanner": "repobility-threat-engine", "correlation_key": "fp|dc7394bc459d59dd0393c7e264a17d64a1e958c5aa6a0342f82db6411afa58c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "plugins/mac-virtualcam/src/dal-plugin/OBSDALMachClient.mm"}, "region": {"startLine": 76}}}]}, {"ruleId": "MINED045", "level": "none", "message": {"text": "[MINED045] Ts Non Null Assertion: x! asserts not null - bypasses null checks - TypeError if wrong."}, "properties": {"repobilityId": 72691, "scanner": "repobility-threat-engine", "fingerprint": "d4cc28dcd355bcc797835d1ee5979d6c5f72c585232e6df6c9f1d306650a43b8", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "ts-non-null-assertion", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["typescript", "tsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348005+00:00", "triaged_in_corpus": 12, "observations_count": 1810954, "ai_coder_pattern_id": 105}, "scanner": "repobility-threat-engine", "correlation_key": "fp|d4cc28dcd355bcc797835d1ee5979d6c5f72c585232e6df6c9f1d306650a43b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "plugins/mac-capture/window-utils.m"}, "region": {"startLine": 52}}}]}, {"ruleId": "MINED045", "level": "none", "message": {"text": "[MINED045] Ts Non Null Assertion: x! asserts not null - bypasses null checks - TypeError if wrong."}, "properties": {"repobilityId": 72690, "scanner": "repobility-threat-engine", "fingerprint": "85a4d3159c056065f2362d23b8b70d7a37370ebfbaee41e895e7cf02883aa471", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "ts-non-null-assertion", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["typescript", "tsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348005+00:00", "triaged_in_corpus": 12, "observations_count": 1810954, "ai_coder_pattern_id": 105}, "scanner": "repobility-threat-engine", "correlation_key": "fp|85a4d3159c056065f2362d23b8b70d7a37370ebfbaee41e895e7cf02883aa471"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "plugins/mac-avcapture/AVCaptureDeviceFormat+OBSListable.m"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED048", "level": "none", "message": {"text": "[MINED048] Php Error Suppress (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 72686, "scanner": "repobility-threat-engine", "fingerprint": "d71724ef9ebc40c9f37835e9a17943f9474ef3b21970d0351d917057cdfb2b85", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "php-error-suppress", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["php"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348013+00:00", "triaged_in_corpus": 12, "observations_count": 849118, "ai_coder_pattern_id": 166}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|d71724ef9ebc40c9f37835e9a17943f9474ef3b21970d0351d917057cdfb2b85", "aggregated_count": 1}}}, {"ruleId": "MINED048", "level": "none", "message": {"text": "[MINED048] Php Error Suppress: @function() suppresses errors silently. Hides real issues."}, "properties": {"repobilityId": 72685, "scanner": "repobility-threat-engine", "fingerprint": "06b96fe3afce511f2ae238a57b00ff0f0037f1483abc0e15e8705b4a0c40e471", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "php-error-suppress", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["php"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348013+00:00", "triaged_in_corpus": 12, "observations_count": 849118, "ai_coder_pattern_id": 166}, "scanner": "repobility-threat-engine", "correlation_key": "fp|06b96fe3afce511f2ae238a57b00ff0f0037f1483abc0e15e8705b4a0c40e471"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "plugins/mac-avcapture/AVCaptureDeviceFormat+OBSListable.m"}, "region": {"startLine": 14}}}]}, {"ruleId": "MINED048", "level": "none", "message": {"text": "[MINED048] Php Error Suppress: @function() suppresses errors silently. Hides real issues."}, "properties": {"repobilityId": 72684, "scanner": "repobility-threat-engine", "fingerprint": "02795e1eba1bd5448b96d5d72fa23d125ba1ef91b14305463d4fa740b5e36c74", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "php-error-suppress", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["php"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348013+00:00", "triaged_in_corpus": 12, "observations_count": 849118, "ai_coder_pattern_id": 166}, "scanner": "repobility-threat-engine", "correlation_key": "fp|02795e1eba1bd5448b96d5d72fa23d125ba1ef91b14305463d4fa740b5e36c74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/utility/platform-osx.mm"}, "region": {"startLine": 330}}}]}, {"ruleId": "MINED048", "level": "none", "message": {"text": "[MINED048] Php Error Suppress: @function() suppresses errors silently. Hides real issues."}, "properties": {"repobilityId": 72683, "scanner": "repobility-threat-engine", "fingerprint": "e3b7276d9eba48c8901b31a5f91aff58afeb82dd4025c5d1fabdd7e1e5542524", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "php-error-suppress", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["php"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348013+00:00", "triaged_in_corpus": 12, "observations_count": 849118, "ai_coder_pattern_id": 166}, "scanner": "repobility-threat-engine", "correlation_key": "fp|e3b7276d9eba48c8901b31a5f91aff58afeb82dd4025c5d1fabdd7e1e5542524"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/utility/OBSUpdateDelegate.mm"}, "region": {"startLine": 15}}}]}, {"ruleId": "MINED080", "level": "none", "message": {"text": "[MINED080] Cpp Using Namespace Std (and 23 more): Same pattern found in 23 additional files. Review if needed."}, "properties": {"repobilityId": 72679, "scanner": "repobility-threat-engine", "fingerprint": "41a910d75ec616cdf958c3f4324c32525eac9efbd4ead6ee3b5ce57e59d2cc10", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 23 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "cpp-using-namespace-std", "owasp": null, "cwe_ids": [], "languages": ["cpp", "h", "hpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348123+00:00", "triaged_in_corpus": 12, "observations_count": 3566, "ai_coder_pattern_id": 133}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|41a910d75ec616cdf958c3f4324c32525eac9efbd4ead6ee3b5ce57e59d2cc10", "aggregated_count": 23}}}, {"ruleId": "MINED080", "level": "none", "message": {"text": "[MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace."}, "properties": {"repobilityId": 72678, "scanner": "repobility-threat-engine", "fingerprint": "b8bd2efc2d2fc636cb0ddb0d3ddbfc89980b1efed5861930c868061ff402eb82", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-using-namespace-std", "owasp": null, "cwe_ids": [], "languages": ["cpp", "h", "hpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348123+00:00", "triaged_in_corpus": 12, "observations_count": 3566, "ai_coder_pattern_id": 133}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b8bd2efc2d2fc636cb0ddb0d3ddbfc89980b1efed5861930c868061ff402eb82"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/importers/studio.cpp"}, "region": {"startLine": 23}}}]}, {"ruleId": "MINED080", "level": "none", "message": {"text": "[MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace."}, "properties": {"repobilityId": 72677, "scanner": "repobility-threat-engine", "fingerprint": "ce2b3b2dee0d4814a1077ed667e185c9cb832be079dc1775a0ccf1a93e92feca", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-using-namespace-std", "owasp": null, "cwe_ids": [], "languages": ["cpp", "h", "hpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348123+00:00", "triaged_in_corpus": 12, "observations_count": 3566, "ai_coder_pattern_id": 133}, "scanner": "repobility-threat-engine", "correlation_key": "fp|ce2b3b2dee0d4814a1077ed667e185c9cb832be079dc1775a0ccf1a93e92feca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/importers/importers.cpp"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED080", "level": "none", "message": {"text": "[MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace."}, "properties": {"repobilityId": 72676, "scanner": "repobility-threat-engine", "fingerprint": "6b18daa482e4c164d7be9d59cb341a5e81066472f15c5f30f95bd4db224a7e9a", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-using-namespace-std", "owasp": null, "cwe_ids": [], "languages": ["cpp", "h", "hpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348123+00:00", "triaged_in_corpus": 12, "observations_count": 3566, "ai_coder_pattern_id": 133}, "scanner": "repobility-threat-engine", "correlation_key": "fp|6b18daa482e4c164d7be9d59cb341a5e81066472f15c5f30f95bd4db224a7e9a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/dialogs/OBSBasicInteraction.cpp"}, "region": {"startLine": 38}}}]}, {"ruleId": "SEC029", "level": "none", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 16 more): Same pattern found in 16 additional files. Review if needed."}, "properties": {"repobilityId": 72675, "scanner": "repobility-threat-engine", "fingerprint": "87a374dc589dd420ec377c72db2b292cf3fbbfe6642b8efe3d05d9fe2427b14e", "category": "ssrf", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 16 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 16 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|87a374dc589dd420ec377c72db2b292cf3fbbfe6642b8efe3d05d9fe2427b14e"}}}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete (and 72 more): Same pattern found in 72 additional files. Review if needed."}, "properties": {"repobilityId": 72671, "scanner": "repobility-threat-engine", "fingerprint": "a91d03cf721d97794dd62d42ec50aeabf94431b8b749c43e66a02a96caed783d", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 72 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|a91d03cf721d97794dd62d42ec50aeabf94431b8b749c43e66a02a96caed783d", "aggregated_count": 72}}}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 72670, "scanner": "repobility-threat-engine", "fingerprint": "128d535c1aca177e947db66cf5d62340cfa43c06f370d4124959fa952688cbab", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|128d535c1aca177e947db66cf5d62340cfa43c06f370d4124959fa952688cbab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/components/SourceSelectButton.cpp"}, "region": {"startLine": 46}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 72669, "scanner": "repobility-threat-engine", "fingerprint": "3a5b9b25daabdff9e983c6219eae79563255676f4c55384af8b64ed56aed1592", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|3a5b9b25daabdff9e983c6219eae79563255676f4c55384af8b64ed56aed1592"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/components/FlowFrame.cpp"}, "region": {"startLine": 25}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 72668, "scanner": "repobility-threat-engine", "fingerprint": "8a8697051b7bc2c11a9badae6f8bfb56996c6a75e93f7884469572093958e5ad", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|8a8697051b7bc2c11a9badae6f8bfb56996c6a75e93f7884469572093958e5ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/components/AccessibleAlignmentSelector.cpp"}, "region": {"startLine": 26}}}]}, {"ruleId": "SEC045", "level": "none", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data (and 19 more): Same pattern found in 19 additional files. Review if needed."}, "properties": {"repobilityId": 72664, "scanner": "repobility-threat-engine", "fingerprint": "fc5c983b6ef359ec0a9e9e8c360d9f11392c6ca20341f286933e95c886158dc6", "category": "injection", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 19 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 19 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|fc5c983b6ef359ec0a9e9e8c360d9f11392c6ca20341f286933e95c886158dc6"}}}, {"ruleId": "MINED022", "level": "none", "message": {"text": "[MINED022] C Strcpy (and 3 more): Same pattern found in 3 additional files. Review if needed."}, "properties": {"repobilityId": 72660, "scanner": "repobility-threat-engine", "fingerprint": "0391315e3a45c62ac5ab738e23fed48ef620594791ecce6c0ea1e27fc5ca33d5", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 3 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|0391315e3a45c62ac5ab738e23fed48ef620594791ecce6c0ea1e27fc5ca33d5", "aggregated_count": 3}}}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check (and 11 more): Same pattern found in 11 additional files. Review if needed."}, "properties": {"repobilityId": 72656, "scanner": "repobility-threat-engine", "fingerprint": "7e9a27cf7b97c62c857226e0c46833577fcab21943f10d4e574d827bdd8a62c8", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 11 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|7e9a27cf7b97c62c857226e0c46833577fcab21943f10d4e574d827bdd8a62c8", "aggregated_count": 11}}}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 72655, "scanner": "repobility-threat-engine", "fingerprint": "9a73b27d81f706bc07001df3e818ae71ede21703cdab92411acfe80993f0c8b8", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|9a73b27d81f706bc07001df3e818ae71ede21703cdab92411acfe80993f0c8b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/ptw32_calloc.c"}, "region": {"startLine": 48}}}]}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 72654, "scanner": "repobility-threat-engine", "fingerprint": "af525481c097c1536d0e42770e300a4defec49e5d2262f4bc06afc627a0b4e6e", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|af525481c097c1536d0e42770e300a4defec49e5d2262f4bc06afc627a0b4e6e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/libcaption/src/vtt.c"}, "region": {"startLine": 34}}}]}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 72653, "scanner": "repobility-threat-engine", "fingerprint": "9a49c7720dae0c142f62c0c6721118ecb284cac42f0564fbabc934aaa59e238e", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|9a49c7720dae0c142f62c0c6721118ecb284cac42f0564fbabc934aaa59e238e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/libcaption/src/dvtcc.c"}, "region": {"startLine": 9}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https (and 371 more): Same pattern found in 371 additional files. Review if needed."}, "properties": {"repobilityId": 72652, "scanner": "repobility-threat-engine", "fingerprint": "0a492adc94ce32ac6c97db232bd1f76f69858b222cb63b3189891f856644eef8", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 371 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|0a492adc94ce32ac6c97db232bd1f76f69858b222cb63b3189891f856644eef8", "aggregated_count": 371}}}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 72651, "scanner": "repobility-threat-engine", "fingerprint": "c0535fb9299afbcbf3ee14ab42a10e88d1712c297c71816a568cc7a3daf55d67", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|c0535fb9299afbcbf3ee14ab42a10e88d1712c297c71816a568cc7a3daf55d67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/blake2/src/blake2b-ref.c"}, "region": {"startLine": 8}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 72650, "scanner": "repobility-threat-engine", "fingerprint": "7bbe0fe921b152b2a7e364d5eb0a724f692e2dd975152b8676049e6e6ab90df3", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|7bbe0fe921b152b2a7e364d5eb0a724f692e2dd975152b8676049e6e6ab90df3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/blake2/src/blake2.h"}, "region": {"startLine": 8}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 72649, "scanner": "repobility-threat-engine", "fingerprint": "8b9b76faf802c646d2592d65d1efd5a6582227b5962b463d276c3b769ab4bbec", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|8b9b76faf802c646d2592d65d1efd5a6582227b5962b463d276c3b769ab4bbec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/blake2/src/blake2-impl.h"}, "region": {"startLine": 8}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `deps/w32-pthreads/libpthreadGC2.a` committed in source repo: `deps/w32-pthreads/libpthreadGC2.a` is a .a binary (97,828 bytes) committed to a repo that otherwise has 1640 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 72737, "scanner": "repobility-supply-chain", "fingerprint": "0d48b733bb319bd01d041760fb77bdc237f3064b08d9ddd0de8339033710920b", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|0d48b733bb319bd01d041760fb77bdc237f3064b08d9ddd0de8339033710920b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/w32-pthreads/libpthreadGC2.a"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED126", "level": "error", "message": {"text": "[MINED126] Workflow container/services image `ghcr.io/flathub-infra/flatpak-github-actions:freedesktop-25.08` unpinned: `container/services image: ghcr.io/flathub-infra/flatpak-github-actions:freedesktop-25.08` without `@sha256:...` pulls a mutable tag at workflow-run time. Treat workflow container references with the same supply-chain discipline as Dockerfile FROM lines."}, "properties": {"repobilityId": 72736, "scanner": "repobility-supply-chain", "fingerprint": "ef672137bbbceadbc3ecb8b2501aa207906e4d0243fe4be9d6dd04d50541f89f", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-container-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|ef672137bbbceadbc3ecb8b2501aa207906e4d0243fe4be9d6dd04d50541f89f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/build-project.yaml"}, "region": {"startLine": 259}}}]}, {"ruleId": "MINED126", "level": "error", "message": {"text": "[MINED126] Workflow container/services image `ghcr.io/flathub-infra/flatpak-github-actions:freedesktop-25.08` unpinned: `container/services image: ghcr.io/flathub-infra/flatpak-github-actions:freedesktop-25.08` without `@sha256:...` pulls a mutable tag at workflow-run time. Treat workflow container references with the same supply-chain discipline as Dockerfile FROM lines."}, "properties": {"repobilityId": 72735, "scanner": "repobility-supply-chain", "fingerprint": "08f74abee21c8bd18eb5516c4278fb1948d514b05200c1cc22d7acc1be61f137", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-container-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|08f74abee21c8bd18eb5516c4278fb1948d514b05200c1cc22d7acc1be61f137"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/publish.yaml"}, "region": {"startLine": 90}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 72697, "scanner": "repobility-threat-engine", "fingerprint": "575a663abfbc66fd75244faa71729e5e737f98224f9f5d7840dc2ec02fb014c2", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|575a663abfbc66fd75244faa71729e5e737f98224f9f5d7840dc2ec02fb014c2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "plugins/obs-vst/obs-vst.cpp"}, "region": {"startLine": 76}}}]}, {"ruleId": "SEC013", "level": "error", "message": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files."}, "properties": {"repobilityId": 72696, "scanner": "repobility-threat-engine", "fingerprint": "0d442e062f85591c8e2d2e5c171603cb7b17c65c73473e06a3c8310722a74130", "category": "path_traversal", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "User-controlled input detected in file path construction", "evidence": {"match": "Open(qsv_param_t *pParams", "reason": "User-controlled input detected in file path construction", "rule_id": "SEC013", "scanner": "repobility-threat-engine", "confidence": 0.8, "correlation_key": "code|path_traversal|token|70|sec013"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "plugins/obs-qsv11/QSV_Encoder_Internal.h"}, "region": {"startLine": 70}}}]}, {"ruleId": "SEC013", "level": "error", "message": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files."}, "properties": {"repobilityId": 72695, "scanner": "repobility-threat-engine", "fingerprint": "8b4723a8f767e4a53465da1f751aa8c0153d88c90e31cbf2410f13e561b81d6b", "category": "path_traversal", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "User-controlled input detected in file path construction", "evidence": {"match": "open(qsv_param_t *pParams", "reason": "User-controlled input detected in file path construction", "rule_id": "SEC013", "scanner": "repobility-threat-engine", "confidence": 0.8, "correlation_key": "code|path_traversal|token|79|sec013"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "plugins/obs-qsv11/QSV_Encoder.cpp"}, "region": {"startLine": 79}}}]}, {"ruleId": "MINED008", "level": "error", "message": {"text": "[MINED008] Swift Force Unwrap: optional! crashes on nil. Use guard let or if let."}, "properties": {"repobilityId": 72689, "scanner": "repobility-threat-engine", "fingerprint": "659dfa0c2910f6527fa863739240e069da008c3a31785decbffbcd8ca01c898f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "swift-force-unwrap", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["swift"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347916+00:00", "triaged_in_corpus": 15, "observations_count": 210453, "ai_coder_pattern_id": 157}, "scanner": "repobility-threat-engine", "correlation_key": "fp|659dfa0c2910f6527fa863739240e069da008c3a31785decbffbcd8ca01c898f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "plugins/mac-virtualcam/src/camera-extension/OBSCameraDeviceSource.swift"}, "region": {"startLine": 143}}}]}, {"ruleId": "MINED008", "level": "error", "message": {"text": "[MINED008] Swift Force Unwrap: optional! crashes on nil. Use guard let or if let."}, "properties": {"repobilityId": 72688, "scanner": "repobility-threat-engine", "fingerprint": "bab7a81dbe190e8677c2ac6c1efbe81be4c5238e235fac50306ddf22ea864ccd", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "swift-force-unwrap", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["swift"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347916+00:00", "triaged_in_corpus": 15, "observations_count": 210453, "ai_coder_pattern_id": 157}, "scanner": "repobility-threat-engine", "correlation_key": "fp|bab7a81dbe190e8677c2ac6c1efbe81be4c5238e235fac50306ddf22ea864ccd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "libobs-metal/MetalShader.swift"}, "region": {"startLine": 218}}}]}, {"ruleId": "MINED008", "level": "error", "message": {"text": "[MINED008] Swift Force Unwrap: optional! crashes on nil. Use guard let or if let."}, "properties": {"repobilityId": 72687, "scanner": "repobility-threat-engine", "fingerprint": "68a9d844764074660d97a9245dd338f082c2305de9b03076bcd6fa475d5f06c4", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "swift-force-unwrap", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["swift"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347916+00:00", "triaged_in_corpus": 15, "observations_count": 210453, "ai_coder_pattern_id": 157}, "scanner": "repobility-threat-engine", "correlation_key": "fp|68a9d844764074660d97a9245dd338f082c2305de9b03076bcd6fa475d5f06c4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "libobs-metal/MetalBuffer.swift"}, "region": {"startLine": 64}}}]}, {"ruleId": "MINED017", "level": "error", "message": {"text": "[MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic."}, "properties": {"repobilityId": 72682, "scanner": "repobility-threat-engine", "fingerprint": "dcf8dbe8f8e4d42749abd1ea4c8cc6b6230c340f2cee308c04540b77070e48b5", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-system-call", "owasp": null, "cwe_ids": ["CWE-78"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347937+00:00", "triaged_in_corpus": 15, "observations_count": 77748, "ai_coder_pattern_id": 132}, "scanner": "repobility-threat-engine", "correlation_key": "fp|dcf8dbe8f8e4d42749abd1ea4c8cc6b6230c340f2cee308c04540b77070e48b5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "plugins/linux-v4l2/v4l2-output.c"}, "region": {"startLine": 62}}}]}, {"ruleId": "MINED017", "level": "error", "message": {"text": "[MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic."}, "properties": {"repobilityId": 72681, "scanner": "repobility-threat-engine", "fingerprint": "8afa156134dc1e0911e18103a56eea30edae768143615e452fa601ed08ea9409", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-system-call", "owasp": null, "cwe_ids": ["CWE-78"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347937+00:00", "triaged_in_corpus": 15, "observations_count": 77748, "ai_coder_pattern_id": 132}, "scanner": "repobility-threat-engine", "correlation_key": "fp|8afa156134dc1e0911e18103a56eea30edae768143615e452fa601ed08ea9409"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/utility/WhatsNewInfoThread.cpp"}, "region": {"startLine": 117}}}]}, {"ruleId": "MINED017", "level": "error", "message": {"text": "[MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic."}, "properties": {"repobilityId": 72680, "scanner": "repobility-threat-engine", "fingerprint": "f61c6de7a17a8179939a8eaeb09a6825efb676770bcef2ff0b437e515ab71ca3", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-system-call", "owasp": null, "cwe_ids": ["CWE-78"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347937+00:00", "triaged_in_corpus": 15, "observations_count": 77748, "ai_coder_pattern_id": 132}, "scanner": "repobility-threat-engine", "correlation_key": "fp|f61c6de7a17a8179939a8eaeb09a6825efb676770bcef2ff0b437e515ab71ca3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/oauth/YoutubeAuth.cpp"}, "region": {"startLine": 191}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 72674, "scanner": "repobility-threat-engine", "fingerprint": "598c1e1d3a9eac4a65e9ae642a4b81e40589d08058d47e7a013b15ac03a3aadd", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "Url(a", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|598c1e1d3a9eac4a65e9ae642a4b81e40589d08058d47e7a013b15ac03a3aadd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/dialogs/LogUploadDialog.cpp"}, "region": {"startLine": 148}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 72673, "scanner": "repobility-threat-engine", "fingerprint": "7276c7c082646f126c1f23494346bf4cdc2feff3ebd1a9f531046dcbbba021e0", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "Url(Q", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|7276c7c082646f126c1f23494346bf4cdc2feff3ebd1a9f531046dcbbba021e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/components/UrlPushButton.hpp"}, "region": {"startLine": 14}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 72672, "scanner": "repobility-threat-engine", "fingerprint": "e873f98318a7777669b992d96603b069114f70201056e9d952664e56778410c0", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "Url(Q", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|e873f98318a7777669b992d96603b069114f70201056e9d952664e56778410c0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/components/UrlPushButton.cpp"}, "region": {"startLine": 7}}}]}, {"ruleId": "SEC085", "level": "error", "message": {"text": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0)."}, "properties": {"repobilityId": 72667, "scanner": "repobility-threat-engine", "fingerprint": "d4f58430b51c9a30ec0a269521c531c94d1a19cf7907f650e9a17a4a5b764568", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "exec(QCursor", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC085", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|d4f58430b51c9a30ec0a269521c531c94d1a19cf7907f650e9a17a4a5b764568"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/widgets/OBSBasic_StudioMode.cpp"}, "region": {"startLine": 113}}}]}, {"ruleId": "SEC085", "level": "error", "message": {"text": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0)."}, "properties": {"repobilityId": 72666, "scanner": "repobility-threat-engine", "fingerprint": "6e9d2d6969138157d3c0012709dd7209514e1cc3e333db43f7e6db228b9f4744", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "exec(Qt", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC085", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|6e9d2d6969138157d3c0012709dd7209514e1cc3e333db43f7e6db228b9f4744"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/components/SourceSelectButton.cpp"}, "region": {"startLine": 190}}}]}, {"ruleId": "SEC085", "level": "error", "message": {"text": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0)."}, "properties": {"repobilityId": 72665, "scanner": "repobility-threat-engine", "fingerprint": "f3d9492c544f94377e32389d228c26e2f30ab1abc56d917f6d26695e65d95c98", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "Exec(VoidFunc", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC085", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|f3d9492c544f94377e32389d228c26e2f30ab1abc56d917f6d26695e65d95c98"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "frontend/OBSApp.hpp"}, "region": {"startLine": 241}}}]}, {"ruleId": "MINED022", "level": "error", "message": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "properties": {"repobilityId": 72659, "scanner": "repobility-threat-engine", "fingerprint": "2cb9b9809dd1576c3c1f203b095cef44246cc76a645bdeba578101957ea6b41c", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "correlation_key": "fp|2cb9b9809dd1576c3c1f203b095cef44246cc76a645bdeba578101957ea6b41c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "libobs/util/windows/obfuscate.c"}, "region": {"startLine": 35}}}]}, {"ruleId": "MINED022", "level": "error", "message": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "properties": {"repobilityId": 72658, "scanner": "repobility-threat-engine", "fingerprint": "0ab7272dbdbe8c63f393ffde20b0d78af3cf361d91d3011cf765fa203b5f16d4", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "correlation_key": "fp|0ab7272dbdbe8c63f393ffde20b0d78af3cf361d91d3011cf765fa203b5f16d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "libobs/audio-monitoring/pulse/pulseaudio-wrapper.c"}, "region": {"startLine": 52}}}]}, {"ruleId": "MINED022", "level": "error", "message": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "properties": {"repobilityId": 72657, "scanner": "repobility-threat-engine", "fingerprint": "add44146ac6285fbee1d63563ca61c5c04d257a19469de73856dac427a9a76b0", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "correlation_key": "fp|add44146ac6285fbee1d63563ca61c5c04d257a19469de73856dac427a9a76b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/libcaption/src/vtt.c"}, "region": {"startLine": 315}}}]}]}]}