Public scan — anyone with this URL can view this analysis. Sign up to track your own repos privately, run scheduled re-scans, and get AI fix prompts via your dashboard.
Sign up free Scan another repo

Scan timing: clone 2.11s · analysis 23.64s · 14.6 MB · GitHub API rate-limit (preflight)

ansible-collections/community.general

https://github.com/ansible-collections/community.general · scanned 2026-05-31 01:24 UTC (5 days, 12 hours ago) · 10 languages

1015 findings (291 legacy + 724 scanner) 20th percentile · Python · large (100-500K LoC) Scanner says 75 (lower by 11)

File as issue Image v2 schema
UNIFIED Repobility · multi-layer engine · AI coders

Complete repo analysis

Last scanned 5 days, 12 hours ago · v2 · last Δ -0.1 (diff) · 655 findings from 2 sources. Findings combine the legacy security pipeline AND the multi-layer engine (atlas, wiring, flows, ranked) AND verified AI agent contributions.

JSON
Combined
58.2
/100
Repobility
42
291 legacy
9-layer
75
100.0% cov · 364 gaps
Critical
102
click to filter
Agents
6
0 votes
Crowd
0
reported
Score breakdown â 2026-05-18-v5
Component Sub-score Weight Contribution
structure_score 40.0 0.15 6.00
security_score 21.2 0.25 5.30
testing_score 100.0 0.20 20.00
documentation_score 100.0 0.15 15.00
practices_score 89.0 0.15 13.35
code_quality 41.9 0.10 4.19
Overall 1.00 63.8
Severity distribution — click a segment to filter
Active filters: severity: critical × excluding tests × Reset all
Severity: Critical 102 High 191 Medium 69 Low 144 9-Layer: Software Security Quality Integrity Frontend Hardware Data Network Cicd Source: Legacy 291 9-layer 364 Crowd 0 Layer: Security 122 Quality 385 Software 104 Cicd 29 Api 1 Network 12 Hardware 1 Frontend 1
Scan summary Repository scanned at 74.8/100 with 100.0% coverage. It contains 14062 nodes across 0 cross-layer flows, written primarily in mixed languages. Engine surfaced 364 findings — concentrated in quality (176), security (101), software (62). Risk profile is high: 89 critical, 9 high, 31 medium. Recommended next step: open the quality layer findings first — that's where the highest-impact wins live.

Showing 98 of 655 findings. Click TP / FP to vote on a finding's accuracy — votes adjust the confidence weighting and improve detection across the platform.

critical Legacy quality quality conf 1.00 ✓ Repobility [MINED007] Sql String Concat: cursor.execute(f"... {user_input} ...") — SQL injection.
Review and fix per the pattern semantics. See CWE-89 / A03:2021 for context.
plugins/modules/vertica_role.py:130 qualitylegacy
critical Legacy quality quality conf 1.00 ✓ Repobility [MINED007] Sql String Concat: cursor.execute(f"... {user_input} ...") — SQL injection.
Review and fix per the pattern semantics. See CWE-89 / A03:2021 for context.
plugins/modules/vertica_configuration.py:128 qualitylegacy
critical Legacy quality quality conf 1.00 ✓ Repobility [MINED007] Sql String Concat: cursor.execute(f"... {user_input} ...") — SQL injection.
Review and fix per the pattern semantics. See CWE-89 / A03:2021 for context.
plugins/modules/mssql_db.py:120 qualitylegacy
critical Legacy quality quality conf 1.00 ✓ Repobility [MINED018] Unsafe Deserialization Pickle: pickle.loads / yaml.load (without Loader=SafeLoader) / unmarshal of network/file data — RCE.
Review and fix per the pattern semantics. See CWE-502 / A08:2021 for context.
docs/docsite/reformat-yaml.py:17 qualitylegacy
critical Legacy quality quality conf 1.00 ✓ Repobility [MINED030] Python Pickle Loads: pickle.loads() can execute arbitrary code via __reduce__.
Review and fix per the pattern semantics. See CWE-502 / for context.
plugins/cache/pickle.py:60 qualitylegacy
critical Legacy quality quality conf 1.00 [SEC079] Python: yaml.load without SafeLoader: yaml.load() without explicit SafeLoader can execute arbitrary Python objects (CVE-2017-18342). Ported from bandit B506 / dlint DUO109 (Apache-2.0 / BSD-3).
Use `yaml.safe_load(data)` or `yaml.load(data, Loader=yaml.SafeLoader)`.
docs/docsite/reformat-yaml.py:17 qualitylegacy
critical Legacy quality quality conf 1.00 [SEC081] Python: pickle.loads / marshal.loads on untrusted data: pickle.load(s) and marshal.load(s) execute arbitrary code on untrusted input. Ported from dlint DUO103 / DUO120 (BSD-3).
Use json, msgpack, or protobuf for untrusted data. If pickle is required, sign the payload with HMAC.
plugins/cache/pickle.py:60 qualitylegacy
critical Legacy security deserialization conf 1.00 [SEC116] Ruby YAML.load / Marshal.load on untrusted input: `YAML.load` (pre-3.1) and `Marshal.load` instantiate arbitrary Ruby classes — direct RCE on untrusted input. `unsafe_load` is even more dangerous.
Use `YAML.safe_load(input, permitted_classes: [Date])` — explicit class allowlist. Never use `Marshal.load` on untrusted data; serialize as JSON instead.
docs/docsite/reformat-yaml.py:17 deserializationlegacy
critical Legacy software dependency conf 0.90 ✓ Repobility Hardcoded Microsoft Teams webhook URL in source
File contains a hardcoded `Microsoft Teams` webhook URL: `https://outlook.office.com/webhook/GUID/IncomingWebhook/GUID...`. Webhook URLs are unauthenticated POST endpoints — anyone with the URL can send messages. They are also a common data-exfiltration channel for compromised packages (malicious p…
plugins/modules/office_365_connector_card.py:68 dependencylegacy
critical 9-layer security secrets conf 1.00 Possible secret in plugins/become/doas.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/become/doas.py:132 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/become/dzdo.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/become/dzdo.py:92 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/become/machinectl.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/become/machinectl.py:104 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/become/pbrun.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/become/pbrun.py:91 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/become/pmrun.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/become/pmrun.py:68 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/become/run0.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/become/run0.py:91 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/become/sesu.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/become/sesu.py:80 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/become/sudosu.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/become/sudosu.py:99 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/lookup/keyring.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/lookup/keyring.py:35 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/lookup/onepassword_raw.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/lookup/onepassword_raw.py:43 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/lookup/passwordstore.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/lookup/passwordstore.py:184 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/lookup/passwordstore.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/lookup/passwordstore.py:190 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/lookup/tss.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/lookup/tss.py:139 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/lookup/tss.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/lookup/tss.py:161 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/lookup/tss.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/lookup/tss.py:249 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/lookup/tss.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/lookup/tss.py:272 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/datadog_downtime.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/datadog_downtime.py:109 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/datadog_monitor.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/datadog_monitor.py:207 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/datadog_monitor.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/datadog_monitor.py:214 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/datadog_monitor.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/datadog_monitor.py:222 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/datadog_monitor.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/datadog_monitor.py:229 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/datadog_monitor.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/datadog_monitor.py:237 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/etcd3.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/etcd3.py:100 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/github_deploy_key.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/github_deploy_key.py:101 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/github_deploy_key.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/github_deploy_key.py:111 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/github_deploy_key.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/github_deploy_key.py:130 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/github_deploy_key.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/github_deploy_key.py:139 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/github_deploy_key.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/github_deploy_key.py:151 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/gitlab_group.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/gitlab_group.py:191 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/gitlab_group.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/gitlab_group.py:202 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/gitlab_group.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/gitlab_group.py:214 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/gitlab_project.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/gitlab_project.py:357 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/gitlab_project.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/gitlab_project.py:371 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/gitlab_user.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/gitlab_user.py:164 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/hponcfg.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/hponcfg.py:54 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/htpasswd.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/htpasswd.py:81 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/icinga2_host.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/icinga2_host.py:116 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/imc_rest.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/imc_rest.py:381 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/jenkins_credential.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/jenkins_credential.py:193 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/keycloak_authentication_required_actions.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/keycloak_authentication_required_actions.py:90 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/keycloak_authentication_required_actions.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/keycloak_authentication_required_actions.py:105 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/keycloak_authentication_required_actions.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/keycloak_authentication_required_actions.py:118 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/ldap_entry.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/ldap_entry.py:99 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/linode.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/linode.py:184 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/linode.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/linode.py:201 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/linode.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/linode.py:236 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/linode.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/linode.py:252 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/linode.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/linode.py:260 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/linode.py
Detected pattern matching generic_api_key. Rotate the credential and move to a secret manager.
plugins/modules/linode.py:268 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/linode.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/linode.py:189 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/linode.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/linode.py:207 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/linode.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/linode.py:241 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_alert_profiles.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_alert_profiles.py:67 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_alert_profiles.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_alert_profiles.py:77 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_alerts.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_alerts.py:84 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_alerts.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_alerts.py:111 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_alerts.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_alerts.py:121 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_group.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_group.py:97 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_group.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_group.py:108 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_group.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_group.py:134 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_group.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_group.py:144 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_policies.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_policies.py:83 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_policies.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_policies.py:96 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_policies_info.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_policies_info.py:64 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_provider.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_provider.py:318 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_provider.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_provider.py:350 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_provider.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_provider.py:362 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_provider.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_provider.py:389 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_provider.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_provider.py:399 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_provider.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_provider.py:408 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_provider.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_provider.py:421 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_provider.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_provider.py:438 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_provider.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_provider.py:442 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_provider.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_provider.py:454 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_provider.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_provider.py:478 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_tags.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_tags.py:86 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_tags.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_tags.py:101 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_tags.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_tags.py:117 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_tags_info.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_tags_info.py:62 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_tenant.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_tenant.py:79 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_tenant.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_tenant.py:90 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_tenant.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_tenant.py:101 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_tenant.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_tenant.py:115 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_user.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_user.py:68 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_user.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_user.py:74 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_user.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_user.py:81 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_user.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_user.py:96 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/manageiq_user.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/manageiq_user.py:115 secrets
critical 9-layer security secrets conf 1.00 Possible secret in plugins/modules/sudoers.py
Detected pattern matching password_literal. Rotate the credential and move to a secret manager.
plugins/modules/sudoers.py:220 secrets
For AI agents: Voting guide (TP/FP) MCP manifest Stdio wrapper SARIF Integrate Findings queue Vote TP/FP on findings to calibrate the engine.
For AI agents + API integrations
Email me when this repo regresses
Free. We re-scan periodically; new criticals → your inbox. No signup required for the scan itself.
API access

This page is publicly accessible at: https://repobility.com/scan/29433b5c-fbf4-4b2b-a41c-fe10525cb172/

To check status programmatically (no auth required): 

curl -s https://repobility.com/api/v1/public/scan/29433b5c-fbf4-4b2b-a41c-fe10525cb172/

Important — please don't re-submit the same URL repeatedly. The submission endpoint is idempotent: re-submitting the same git URL returns this same scan_token, not a new one. To re-scan this repo, sign up free and use the dashboard.