← Back to scan
File as GitHub Issue repo: CopilotKit/CopilotKit

Push this scan report to CopilotKit/CopilotKit

Click the green button below to open GitHub’s new-issue form, pre-filled with the report title, summary table, top findings, and an embedded score-card image. No authentication needed — you review on GitHub before submitting. Repobility is credited as the scanner.

Embedded score card image

This image will render at the top of the issue body. Hosted on Repobility, refreshes automatically after re-scans.

Repobility score card

Issue title

Bare except continues silently: Bare `except:` (or `except Exception

Curate findings to include

Pick exactly which findings appear in the issue body. By default the top 5 are included. Uncheck noise, check what matters.

Top 5 (default)
Severity Rule Title File:line
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/claude-sdk-python…:283
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/claude-sdk-python…:299
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/claude-sdk-python…:239
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/claude-sdk-python…:755
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/claude-sdk-python…:253
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/claude-sdk-python…:296
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/claude-sdk-python…:384
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/claude-sdk-python…:235
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/claude-sdk-python…:83
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/claude-sdk-python…:64
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/agno/src/agents/m…:77
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/agno/src/agents/m…:60
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/agno/src/agent_se…:337
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/agno/src/agent_se…:622
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/agno/src/agent_se…:437
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/agno/src/agent_se…:350
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/agno/src/agent_se…:230
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/google-adk/src/ag…:287
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/ms-agent-python/s…:232
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/ms-agent-python/s…:71
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/ms-agent-python/s…:87
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/ms-agent-python/s…:68
MED MINED111 [MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that r… showcase/integrations/crewai-crews/src/…:371
MED SEC134 [SEC134] AI scaffold leftover — Lorem ipsum / example.com / John Doe in code: Lorem ipsum… examples/v1/next-pages-router/pages/api…:12
MED SEC134 [SEC134] AI scaffold leftover — Lorem ipsum / example.com / John Doe in code: Lorem ipsum… examples/showcases/strands-crm/agent/sr…:31
MED SEC134 [SEC134] AI scaffold leftover — Lorem ipsum / example.com / John Doe in code: Lorem ipsum… examples/showcases/enterprise-brex/src/…:129
MED SEC034 [SEC034] Log Injection / Log Forging — unsanitized user input in log: User input is logge… examples/integrations/agentcore/infra-c…:39
MED SEC125 [SEC125] AI placeholder credential left in source (your-api-key-here style): AI coding as… examples/integrations/adk/agent/main.py:202
MED SEC125 [SEC125] AI placeholder credential left in source (your-api-key-here style): AI coding as… examples/integrations/a2a-middleware/ag…:158
MED SEC125 [SEC125] AI placeholder credential left in source (your-api-key-here style): AI coding as… examples/integrations/a2a-middleware/ag…:80
MED SEC041 [SEC041] Tabnabbing — target="_blank" without rel="noopener noreferrer": <a target="_blan… examples/integrations/adk/src/component…:78
MED SEC041 [SEC041] Tabnabbing — target="_blank" without rel="noopener noreferrer": <a target="_blan… examples/integrations/a2a-a2ui/app/comp…:57
MED SEC045 [SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data — even … examples/showcases/generative-ui-playgr…:79
MED SEC045 [SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data — even … examples/integrations/mcp-apps/threejs-…:152
MED SEC045 [SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data — even … docs/scripts/check-broken-links.js:48
MED DKR003 Dockerfile base image uses the latest tag showcase/aimock/Dockerfile:1
MED AUC001 [AUC001] No Repobility access matrix policy found: The repository uses web/API frameworks…
MED MINED124 [MINED124] requirements.txt: `langchain` has no version pin: Unpinned pip requirement mea… examples/showcases/research-canvas/fina…:1
MED MINED124 [MINED124] requirements.txt: `json5` has no version pin: Unpinned pip requirement means e… examples/showcases/research-canvas/agen…:11
MED MINED124 [MINED124] requirements.txt: `python-dotenv` has no version pin: Unpinned pip requirement… examples/showcases/research-canvas/agen…:10
MED MINED124 [MINED124] requirements.txt: `pydantic` has no version pin: Unpinned pip requirement mean… examples/showcases/research-canvas/agen…:9
MED MINED124 [MINED124] requirements.txt: `langgraph` has no version pin: Unpinned pip requirement mea… examples/showcases/research-canvas/agen…:8
MED MINED124 [MINED124] requirements.txt: `langchain_core` has no version pin: Unpinned pip requiremen… examples/showcases/research-canvas/agen…:7
MED MINED124 [MINED124] requirements.txt: `langchain_openai` has no version pin: Unpinned pip requirem… examples/showcases/research-canvas/agen…:6
MED MINED124 [MINED124] requirements.txt: `tavily-python` has no version pin: Unpinned pip requirement… examples/showcases/research-canvas/agen…:4
MED MINED124 [MINED124] requirements.txt: `langchain-community` has no version pin: Unpinned pip requi… examples/showcases/research-canvas/agen…:3
MED MINED124 [MINED124] requirements.txt: `langgraph` has no version pin: Unpinned pip requirement mea… examples/showcases/research-canvas/agen…:2
MED MINED124 [MINED124] requirements.txt: `langchain` has no version pin: Unpinned pip requirement mea… examples/showcases/research-canvas/agen…:1
MED MINED124 [MINED124] requirements.txt: `a2a-sdk[http-server]` has no version pin: Unpinned pip requ… examples/integrations/a2a-middleware/ag…:19
MED MINED124 [MINED124] requirements.txt: `langchain-openai` has no version pin: Unpinned pip requirem… scripts/qa/lib/langserve/requirements.t…:8
MED MINED124 [MINED124] requirements.txt: `langchain-core` has no version pin: Unpinned pip requiremen… scripts/qa/lib/langserve/requirements.t…:7
MED MINED124 [MINED124] requirements.txt: `langchain-community` has no version pin: Unpinned pip requi… scripts/qa/lib/langserve/requirements.t…:6
MED MINED124 [MINED124] requirements.txt: `langchain-cli` has no version pin: Unpinned pip requirement… scripts/qa/lib/langserve/requirements.t…:5
MED MINED124 [MINED124] requirements.txt: `langchain` has no version pin: Unpinned pip requirement mea… scripts/qa/lib/langserve/requirements.t…:4
MED MINED124 [MINED124] requirements.txt: `langserve` has no version pin: Unpinned pip requirement mea… scripts/qa/lib/langserve/requirements.t…:3
MED MINED124 [MINED124] requirements.txt: `fastapi` has no version pin: Unpinned pip requirement means… scripts/qa/lib/langserve/requirements.t…:2
MED MINED124 [MINED124] requirements.txt: `python-dotenv` has no version pin: Unpinned pip requirement… scripts/qa/lib/langserve/requirements.t…:1
MED MINED124 [MINED124] requirements.txt: `starlette<1.0.0` has no version pin: Unpinned pip requireme… showcase/integrations/ms-agent-python/r…:9
MED MINED124 [MINED124] requirements.txt: `google-adk` has no version pin: Unpinned pip requirement me… showcase/integrations/google-adk/requir…:5
MED MINED124 [MINED124] requirements.txt: `pydantic` has no version pin: Unpinned pip requirement mean… showcase/integrations/google-adk/requir…:4
MED MINED124 [MINED124] requirements.txt: `python-dotenv` has no version pin: Unpinned pip requirement… showcase/integrations/google-adk/requir…:3
MED MINED124 [MINED124] requirements.txt: `starlette<1.0.0` has no version pin: Unpinned pip requireme… showcase/integrations/pydantic-ai/requi…:7
MED DKC015 Database service has no healthcheck examples/showcases/deep-agents-finance-…:1
MED DKC015 Database service has no healthcheck examples/integrations/_intelligence/doc…:125
MED DKC015 Database service has no healthcheck examples/integrations/_intelligence/doc…:65
MED DKR001 Docker final stage has no non-root USER showcase/shell-dojo/Dockerfile:28
MED DKR001 Docker final stage has no non-root USER showcase/shell-docs/Dockerfile:32
MED DKR001 Docker final stage has no non-root USER showcase/shell/Dockerfile:31
MED DKR001 Docker final stage has no non-root USER showcase/pocketbase/Dockerfile:35
MED DKR001 Docker final stage has no non-root USER showcase/aimock/Dockerfile:1
MED DKR001 Docker final stage has no non-root USER examples/v1/next-openai/Dockerfile:11
MED DKR001 Docker final stage has no non-root USER examples/showcases/scene-creator/agent/…:1
MED DKR001 Docker final stage has no non-root USER examples/showcases/microsoft-kanban/age…:21
MED DKR001 Docker final stage has no non-root USER examples/showcases/mcp-apps/mcp-server/…:1
MED DKR001 Docker final stage has no non-root USER examples/showcases/mcp-apps/Dockerfile:1
MED DKR001 Docker final stage has no non-root USER examples/showcases/generative-ui-playgr…:1
MED DKR001 Docker final stage has no non-root USER examples/showcases/generative-ui-playgr…:1
MED DKR001 Docker final stage has no non-root USER examples/showcases/generative-ui-playgr…:1
MED DKR001 Docker final stage has no non-root USER examples/showcases/deep-agents/Dockerfi…:1
MED DKR001 Docker final stage has no non-root USER examples/showcases/chatkit-studio/apps/…:2
MED DKR001 Docker final stage has no non-root USER examples/showcases/chatkit-studio/apps/…:2
MED DKR001 Docker final stage has no non-root USER examples/integrations/strands-python/do…:1
MED DKR001 Docker final stage has no non-root USER examples/integrations/strands-python/Do…:24
MED DKR001 Docker final stage has no non-root USER examples/integrations/pydantic-ai/docke…:1
MED DKR001 Docker final stage has no non-root USER examples/integrations/pydantic-ai/Docke…:23
MED DKR001 Docker final stage has no non-root USER examples/integrations/ms-agent-framewor…:1
MED DKR001 Docker final stage has no non-root USER examples/integrations/ms-agent-framewor…:20
MED DKR001 Docker final stage has no non-root USER examples/integrations/ms-agent-framewor…:31
MED DKR001 Docker final stage has no non-root USER examples/integrations/ms-agent-framewor…:13
MED DKR001 Docker final stage has no non-root USER examples/integrations/ms-agent-framewor…:30
MED DKR001 Docker final stage has no non-root USER examples/integrations/mastra/docker/Doc…:18
MED DKR001 Docker final stage has no non-root USER examples/integrations/mastra/Dockerfile:22
MED DKR001 Docker final stage has no non-root USER examples/integrations/llamaindex/docker…:1
MED DKR001 Docker final stage has no non-root USER examples/integrations/llamaindex/Docker…:23
MED DKR001 Docker final stage has no non-root USER examples/integrations/langgraph-python/…:3
MED DKR001 Docker final stage has no non-root USER examples/integrations/langgraph-python/…:26
MED DKR001 Docker final stage has no non-root USER examples/integrations/langgraph-js/dock…:3
MED DKR001 Docker final stage has no non-root USER examples/integrations/langgraph-js/Dock…:26
MED DKR001 Docker final stage has no non-root USER examples/integrations/langgraph-fastapi…:3
MED DKR001 Docker final stage has no non-root USER examples/integrations/langgraph-fastapi…:26
MED DKR001 Docker final stage has no non-root USER examples/integrations/crewai-crews/dock…:1
MED DKR001 Docker final stage has no non-root USER examples/integrations/crewai-crews/Dock…:16
MED DKR001 Docker final stage has no non-root USER examples/integrations/agno/docker/Docke…:1
MED DKR001 Docker final stage has no non-root USER examples/integrations/agno/Dockerfile:23
MED DKR001 Docker final stage has no non-root USER examples/integrations/agentcore/docker/…:4
MED DKR001 Docker final stage has no non-root USER examples/integrations/agentcore/docker/…:1
MED DKR001 Docker final stage has no non-root USER examples/integrations/adk/docker/Docker…:1
MED DKR001 Docker final stage has no non-root USER examples/integrations/adk/Dockerfile:16
MED SEC017 [SEC017] Unbounded Input to LLM/External API: User input is passed to an LLM or external … examples/showcases/a2ui-pdf-analyst/age…:120
MED SEC017 [SEC017] Unbounded Input to LLM/External API: User input is passed to an LLM or external … examples/showcases/a2ui-pdf-analyst/age…:136
MED SEC017 [SEC017] Unbounded Input to LLM/External API: User input is passed to an LLM or external … examples/integrations/crewai-flows/agen…:81
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/ms-agent-harness-…:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/ms-agent-dotnet/D…:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/mastra/Dockerfile:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/langroid/Dockerfi…:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/langgraph-typescr…:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/langgraph-python/…:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/langgraph-fastapi…:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/google-adk/Docker…:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/crewai-crews/Dock…:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/claude-sdk-typesc…:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/claude-sdk-python…:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/built-in-agent/Do…:12
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/agno/Dockerfile:6
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore showcase/integrations/ag2/Dockerfile:7
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/showcases/scene-creator/agent/…:18
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/showcases/open-mcp-client/Dock…:18
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/showcases/microsoft-kanban/Doc…:21
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/showcases/mcp-apps/mcp-server/…:12
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/showcases/mcp-apps/Dockerfile:12
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/showcases/generative-ui-playgr…:11
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/showcases/generative-ui-playgr…:8
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/showcases/generative-ui-playgr…:12
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/showcases/deep-agents/Dockerfi…:12
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/showcases/chatkit-studio/apps/…:19
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/showcases/chatkit-studio/apps/…:19
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/strands-python/do…:24
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/pydantic-ai/docke…:12
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/ms-agent-framewor…:12
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/ms-agent-framewor…:8
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/mastra/docker/Doc…:12
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/mastra/Dockerfile:16
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/llamaindex/docker…:12
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/langgraph-python/…:24
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/langgraph-js/dock…:24
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/langgraph-fastapi…:24
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/crewai-crews/dock…:12
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/agno/docker/Docke…:12
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/agentcore/docker/…:15
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/agentcore/docker/…:5
MED DKR014 Dockerfile copies broad context with incomplete .dockerignore examples/integrations/adk/docker/Docker…:12
MED JRN003 Frontend API reference is not matched by discovered backend routes showcase/harness/src/fleet/job-claim.ts:215
MED JRN003 Frontend API reference is not matched by discovered backend routes showcase/harness/src/fleet/job-claim.ts:206
MED JRN003 Frontend API reference is not matched by discovered backend routes scripts/qa/lib/upgrade-next-pages/old/p…:54
MED JRN003 Frontend API reference is not matched by discovered backend routes scripts/qa/lib/upgrade-next-pages/new/p…:55
MED JRN003 Frontend API reference is not matched by discovered backend routes scripts/qa/lib/upgrade-next-app/old/pag…:54
MED JRN003 Frontend API reference is not matched by discovered backend routes scripts/qa/lib/upgrade-next-app/new/pag…:55
MED JRN003 Frontend API reference is not matched by discovered backend routes scripts/qa/lib/next/page.tsx:62
MED JRN003 Frontend API reference is not matched by discovered backend routes scripts/qa/lib/langserve/next/route.ts:85
MED JRN003 Frontend API reference is not matched by discovered backend routes scripts/qa/lib/langserve/next/page.tsx:62
MED JRN003 Frontend API reference is not matched by discovered backend routes scripts/qa/lib/langchain/route.ts:41
MED JRN003 Frontend API reference is not matched by discovered backend routes scripts/qa/lib/langchain/page.tsx:62
MED JRN003 Frontend API reference is not matched by discovered backend routes scripts/qa/lib/css/page.tsx:62
MED JRN003 Frontend API reference is not matched by discovered backend routes packages/runtime/src/v2/runtime/intelli…:596
MED JRN003 Frontend API reference is not matched by discovered backend routes packages/runtime/src/v2/runtime/intelli…:550
MED JRN003 Frontend API reference is not matched by discovered backend routes packages/runtime/src/v2/runtime/intelli…:542
MED AUC009 [AUC009] Sensitive function route lacks elevated authorization evidence: A route appears … showcase/integrations/claude-sdk-typesc…:3
MED AUC004 [AUC004] Admin route does not show super_admin separation: An administrative route was de… showcase/harness/src/http/probes.ts:293
MED DKC007 Compose service contains a literal secret environment value examples/showcases/deep-agents-finance-…:1
MED DKC007 Compose service contains a literal secret environment value examples/integrations/agentcore/docker/…:12
MED DKC007 Compose service contains a literal secret environment value examples/integrations/_intelligence/doc…:125
MED DKC007 Compose service contains a literal secret environment value examples/integrations/_intelligence/doc…:149
MED DKC007 Compose service contains a literal secret environment value examples/integrations/_intelligence/doc…:65
MED DKC007 Compose service contains a literal secret environment value examples/integrations/_intelligence/doc…:19
MED SEC016 [SEC016] LLM Prompt Injection — User Input in AI Prompt: User-supplied text is interpolat… examples/integrations/crewai-flows/agen…:81
LOW COMP001 [COMP001] High cognitive complexity: Function `update_plan_progress` has cognitive comple… examples/canvas/pydantic-ai/agent/agent…:91
LOW COMP001 [COMP001] High cognitive complexity: Function `summarize_items` has cognitive complexity … examples/canvas/pydantic-ai/agent/agent…:129
LOW COMP001 [COMP001] High cognitive complexity: Function `sync_sheets` has cognitive complexity 10 (… examples/canvas/llamaindex-composio/age…:63
LOW DKR012 Dockerfile keeps pip download cache examples/showcases/scene-creator/agent/…:15
LOW DKR011 Dockerfile installs recommended OS packages examples/showcases/scene-creator/agent/…:5
LOW DKR011 Dockerfile installs recommended OS packages examples/showcases/generative-ui-playgr…:5
LOW DKR011 Dockerfile installs recommended OS packages examples/showcases/chatkit-studio/apps/…:8
LOW DKR011 Dockerfile installs recommended OS packages examples/showcases/chatkit-studio/apps/…:8
LOW DKR012 Dockerfile keeps pip download cache examples/integrations/langgraph-python/…:48
LOW DKR012 Dockerfile keeps pip download cache examples/integrations/langgraph-fastapi…:48
LOW DKR012 Dockerfile keeps pip download cache examples/integrations/crewai-crews/Dock…:35
LOW DKR012 Dockerfile keeps pip download cache examples/integrations/agno/Dockerfile:44
LOW DKR012 Dockerfile keeps pip download cache examples/integrations/agentcore/agents/…:17
LOW DKR012 Dockerfile keeps pip download cache examples/integrations/agentcore/agents/…:17
LOW DKR008 .dockerignore misses sensitive defaults .dockerignore
LOW DKR012 Dockerfile keeps pip download cache examples/integrations/adk/Dockerfile:36
LOW DKC016 App service does not wait for database health examples/integrations/_intelligence/doc…:149
LOW DKC010 Compose service lacks no-new-privileges hardening examples/integrations/agentcore/docker/…:79
LOW DKC010 Compose service lacks no-new-privileges hardening examples/integrations/agentcore/docker/…:59
LOW DKC010 Compose service lacks no-new-privileges hardening examples/integrations/agentcore/docker/…:12
LOW DKC010 Compose service lacks no-new-privileges hardening examples/integrations/_intelligence/doc…:149
LOW DKC006 Compose service does not declare a runtime user examples/integrations/agentcore/docker/…:79
LOW DKC006 Compose service does not declare a runtime user examples/integrations/agentcore/docker/…:59
LOW DKC006 Compose service does not declare a runtime user examples/integrations/agentcore/docker/…:12
LOW DKC006 Compose service does not declare a runtime user examples/integrations/_intelligence/doc…:149
Reset to top 5 200 findings available (after auto-suppression of test files + won't-fix)

Issue body (markdown)

## Code-quality scan: `CopilotKit/CopilotKit`

**Score: 66/100 (A-)**  ·  438 findings  ·  scanned 2026-06-06 00:02 UTC  ·  1,142,393 LOC

| Severity | Count |
|---|---|
| CRITICAL | 17 |
| HIGH | 147 |
| MEDIUM | 175 |
| LOW | 28 |

📊 [Full filterable report](https://repobility.com/scan/5c865d8d-bd31-4274-81bf-8558cfd5f077/)  ·  ![scorecard](https://repobility.com/scan/5c865d8d-bd31-4274-81bf-8558cfd5f077/report.png?v=1780704161-s2)

### Top findings

1. **MEDIUM** `MINED111` — Bare except continues silently: Bare `except:` (or `except Exception
   `showcase/integrations/claude-sdk-python/src/agents/reasoning_agent.py:283` · ✓ Repobility
2. **MEDIUM** `MINED111` — Bare except continues silently: Bare `except:` (or `except Exception
   `showcase/integrations/claude-sdk-python/src/agents/hitl_in_chat_agent.py:299` · ✓ Repobility
3. **MEDIUM** `MINED111` — Bare except continues silently: Bare `except:` (or `except Exception
   `showcase/integrations/claude-sdk-python/src/agents/a2ui_fixed.py:239` · ✓ Repobility
4. **MEDIUM** `MINED111` — Bare except continues silently: Bare `except:` (or `except Exception
   `showcase/integrations/claude-sdk-python/src/agents/agent.py:755` · ✓ Repobility
5. **MEDIUM** `MINED111` — Bare except continues silently: Bare `except:` (or `except Exception
   `showcase/integrations/claude-sdk-python/src/agents/mcp_apps_agent.py:253` · ✓ Repobility

---

_Filed automatically. Close this issue if not useful — we won't refile. Full report: https://repobility.com/scan/5c865d8d-bd31-4274-81bf-8558cfd5f077/_
Already filed
This repo publishes a SECURITY.md policy and the scan contains 24 Critical/High security finding(s). Public issue filing would violate coordinated disclosure. Submit privately via the project's security reporting channel.
Megaproject â high spam risk
Could not determine 'CopilotKit/CopilotKit' star count (GitHub API rate-limited or unreachable). When in doubt about repo size, prefer opening a focused PR or a discussion rather than an issue.
Already filed
282/468 findings (60%) on this scan are already flagged as test-file, won't-fix, or suppressed. The scan is too noisy to file as a single issue. Curate down to specific actionable findings, or address the FP source first.
I read the warnings â override Cancel

The button opens GitHubâs new-issue page in a new tab. You will see the title + body pre-filled â review, edit if you want, then click GitHubâs "Submit new issue" button. Repobility never posts anything on your behalf.

For real security findings on big repos: use the project's SECURITY.md or private advisory flow instead of a public issue.