Public scan — anyone with this URL can view this analysis. Sign up to track your own repos privately, run scheduled re-scans, and get AI fix prompts via your dashboard.
Sign up free Scan another repo
4 of your 28 findings came from Repobility's proprietary detections. ✓ Repobility tags below mark them.

Scan timing: clone 3.98s · analysis 8.76s · 4.1 MB · GitHub API rate-limit (preflight)

byte-capsule/FanCode-Hls-Fetcher

https://github.com/byte-capsule/FanCode-Hls-Fetcher · scanned 2026-06-05 23:57 UTC (1 week, 2 days ago) · 10 languages

39 raw signals (25 security + 14 graph) 30th percentile · Python · tiny (<2K LoC) System graph score 81 (lower by 19)

File as issue Image
UNIFIED Repobility · multi-layer engine · AI coders

Complete repo analysis

Last scanned 1 week, 2 days ago · v2 · 29 actionable findings from 2 signal sources. 3 repeated signals grouped for readability. Security checks, system graph analysis, and verified AI-agent feedback are merged into one review queue.

JSON
Combined
66.2
/100
Security checks
52
24 findings
System graph
81
66.7% cov · 5 findings
Critical
0
click to filter
Agents
6
0 votes
Crowd
0
reported
Score breakdown â 2026-05-18-v5
Component Sub-score Weight Contribution
structure_score 30.0 0.15 4.50
security_score 62.8 0.25 15.70
testing_score 70.0 0.20 14.00
documentation_score 60.0 0.15 9.00
practices_score 72.0 0.15 10.80
code_quality 80.0 0.10 8.00
Overall 1.00 62.0
Severity distribution — click a segment to filter
Active filters: severity: low × excluding tests × Reset all
Severity: Critical 0 High 7 Medium 13 Low 7 9-Layer: Software Security Quality Integrity Frontend Hardware Data Network Cicd Source: Security checks 24 System graph 5 Crowd 0 Layer: Software 20 Security 2 Quality 3 Cicd 2 Api 1 Frontend 1
Scan summary Quality grade C+ (62/100). Dimensions: security 63, maintainability 30. 25 findings (18 security). 22 lines analyzed.

Showing 7 of 29 actionable findings. 32 raw detector signals were grouped into reader-sized issues. Click TP / FP to vote on a finding's accuracy — votes adjust the confidence weighting and improve detection across the platform.

low Security checks quality Error handling conf 0.55 ✓ Repobility Broad exception handler needs review
This handler catches Exception/BaseException. It is actionable when it swallows errors without logging, re-raising, or returning a structured error. Handlers that intentionally convert exceptions into typed error results should not be treated as high risk.
decrypt.py:9 Error handlingquality
low Security checks software dependencies conf 0.90 Python package `beautifulsoup4` is minor version(s) behind (4.12.3 -> 4.14.3)
`beautifulsoup4==4.12.3` is minor version(s) behind the latest stable release on PyPI (4.14.3). Pinned-but-stale Python dependencies drift away from upstream security and bugfix releases. This is the version-currency signal Dependabot raises.
requirements.txt:7
low Security checks software dependencies conf 0.90 Python package `pycryptodome` is minor version(s) behind (3.19.0 -> 3.23.0)
`pycryptodome==3.19.0` is minor version(s) behind the latest stable release on PyPI (3.23.0). Pinned-but-stale Python dependencies drift away from upstream security and bugfix releases. This is the version-currency signal Dependabot raises.
requirements.txt:1
low Security checks software dependencies conf 0.90 Python package `pyzipper` is minor version(s) behind (0.3.6 -> 0.4.0)
`pyzipper==0.3.6` is minor version(s) behind the latest stable release on PyPI (0.4.0). Pinned-but-stale Python dependencies drift away from upstream security and bugfix releases. This is the version-currency signal Dependabot raises.
requirements.txt:5
low Security checks software dependencies conf 0.90 Python package `requests` is minor version(s) behind (2.31.0 -> 2.34.2)
`requests==2.31.0` is minor version(s) behind the latest stable release on PyPI (2.34.2). Pinned-but-stale Python dependencies drift away from upstream security and bugfix releases. This is the version-currency signal Dependabot raises.
requirements.txt:3
low Security checks software dependencies conf 0.90 Python package `urllib3` is minor version(s) behind (2.0.6 -> 2.7.0)
`urllib3==2.0.6` is minor version(s) behind the latest stable release on PyPI (2.7.0). Pinned-but-stale Python dependencies drift away from upstream security and bugfix releases. This is the version-currency signal Dependabot raises.
requirements.txt:4
low System graph cicd CI/CD security conf 1.00 3 occurrences GitHub Action is tag-pinned rather than SHA-pinned
actions/checkout@v2 can move without a code change in this repo. Pin third-party actions to a reviewed 40-character commit SHA.
lines 13, 16
.github/workflows/main.yml:13, 16 (3 hits)
CI/CD securitySupply chainGitHub Actions
For AI agents: Voting guide (TP/FP) MCP manifest Stdio wrapper SARIF Integrate Findings queue Vote TP/FP on findings to calibrate the engine.
For AI agents + API integrations
Email me when this repo regresses
Free. We re-scan periodically; new criticals → your inbox. No signup required for the scan itself.
API access

This page is publicly accessible at: https://repobility.com/scan/6e970c47-47fd-4753-8c95-fd218620b1e3/

To check status programmatically (no auth required): 

curl -s https://repobility.com/api/v1/public/scan/6e970c47-47fd-4753-8c95-fd218620b1e3/

Important — please don't re-submit the same URL repeatedly. The submission endpoint is idempotent: re-submitting the same git URL returns this same scan_token, not a new one. To re-scan this repo, sign up free and use the dashboard.