{"version": "2.1.0", "$schema": "https://json.schemastore.org/sarif-2.1.0.json", "runs": [{"tool": {"driver": {"name": "Repobility", "informationUri": "https://repobility.com", "rules": [{"id": "AIC003", "name": "Duplicated implementation block across source files", "shortDescription": {"text": "Duplicated implementation block across source files"}, "fullDescription": {"text": "Extract the shared behavior into one function/module or delete the inactive duplicate after proving which path is used."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.86, "cwe": "", "owasp": ""}}, {"id": "AIC007", "name": "Generated build artifact directory is present at repository root", "shortDescription": {"text": "Generated build artifact directory is present at repository root"}, "fullDescription": {"text": "Remove generated output from version control, add it to .gitignore and .dockerignore where relevant, and regenerate it in CI or release jobs."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.7, "cwe": "", "owasp": ""}}, {"id": "COMP001", "name": "[COMP001] High cognitive complexity: Function `parse_yaml_files` has cognitive complexity 9 (SonarSource scale). Cogniti", "shortDescription": {"text": "[COMP001] High cognitive complexity: Function `parse_yaml_files` has cognitive complexity 9 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursi"}, "fullDescription": {"text": "Extract nested branches into named helper functions; flatten early-return / guard clauses; replace long if/elif chains with dispatch dicts or polymorphism. SonarQube's threshold for 'should refactor' is 15 \u2014 yours is 9."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "low", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "MINED080", "name": "[MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace.", "shortDescription": {"text": "[MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED043", "name": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data.", "shortDescription": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-319 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED042", "name": "[MINED042] Cpp New Without Delete (and 7 more): Same pattern found in 7 additional files. Review if needed.", "shortDescription": {"text": "[MINED042] Cpp New Without Delete (and 7 more): Same pattern found in 7 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-401 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED053", "name": "[MINED053] Placeholder Default Username: foo@bar.com / john.doe@example.com / admin/admin / changeme \u2014 typical AI placeh", "shortDescription": {"text": "[MINED053] Placeholder Default Username: foo@bar.com / john.doe@example.com / admin/admin / changeme \u2014 typical AI placeholder credentials."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-1392,CWE-798 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC128", "name": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 1 more): Same pattern found in 1 addit", "shortDescription": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "fullDescription": {"text": "Add `await` before each async call, or chain with `.then`. If you intentionally want fire-and-forget, prefix with `void` (TS) or assign to `_` (Python with `asyncio.create_task`) to make the intent explicit and survive lint."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED134", "name": "[MINED134] Binary file `dep/WinAppDriver/System.Threading.Thread.dll` committed in source repo: `dep/WinAppDriver/System", "shortDescription": {"text": "[MINED134] Binary file `dep/WinAppDriver/System.Threading.Thread.dll` committed in source repo: `dep/WinAppDriver/System.Threading.Thread.dll` is a .dll binary (22,240 bytes) committed to a repo that otherwise has 1194 source files. Trojan "}, "fullDescription": {"text": "Audit the binary's provenance. If it's vendored library code, document it in a VENDORED.md. If it's a build artifact, add the extension to .gitignore and rebuild from source."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED115", "name": "[MINED115] Action `actions/add-to-project` pinned to mutable ref `@v1.0.2`: `uses: actions/add-to-project@v1.0.2` resolv", "shortDescription": {"text": "[MINED115] Action `actions/add-to-project` pinned to mutable ref `@v1.0.2`: `uses: actions/add-to-project@v1.0.2` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files "}, "fullDescription": {"text": "Replace with: `uses: actions/add-to-project@<40-char-sha>  # v1.0.2` and let Dependabot bump it on a scheduled cadence."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "SEC025", "name": "[SEC025] XML External Entity (XXE) \u2014 .NET XmlDocument / XmlTextReader: .NET XmlDocument and XmlTextReader expand externa", "shortDescription": {"text": "[SEC025] XML External Entity (XXE) \u2014 .NET XmlDocument / XmlTextReader: .NET XmlDocument and XmlTextReader expand external entities by default in pre-4.5.2 runtimes (and even later if XmlResolver is left at default). Allows file disclosure a"}, "fullDescription": {"text": "Set XmlResolver = null on XmlDocument before Load. On XmlReader, pass XmlReaderSettings { DtdProcessing = DtdProcessing.Prohibit, XmlResolver = null }. Prefer XDocument / XElement which don't expand external entities by default."}, "properties": {"scanner": "repobility-threat-engine", "category": "xxe", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}]}}, "automationDetails": {"id": "repobility/764"}, "properties": {"repository": "microsoft/terminal", "repoUrl": "https://github.com/microsoft/terminal", "branch": "main"}, "results": [{"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 63578, "scanner": "repobility-ai-code-hygiene", "fingerprint": "2eb742e18f0382c6ec9633ff2e0354bf2cf351f0d6161d47db50b1631501fec8", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "scratch/ScratchIslandApp/WindowExe/SampleBaseWindow.h", "duplicate_line": 6, "correlation_key": "fp|2eb742e18f0382c6ec9633ff2e0354bf2cf351f0d6161d47db50b1631501fec8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/cascadia/WindowsTerminal/BaseWindow.h"}, "region": {"startLine": 6}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 63577, "scanner": "repobility-ai-code-hygiene", "fingerprint": "f491206697581e9622d113abbcf009148f29d3dbf332e524fa5c1af6e30c4add", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/cascadia/UnitTests_SettingsModel/NewTabMenuTests.cpp", "duplicate_line": 27, "correlation_key": "fp|f491206697581e9622d113abbcf009148f29d3dbf332e524fa5c1af6e30c4add"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/cascadia/UnitTests_SettingsModel/ThemeTests.cpp"}, "region": {"startLine": 170}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 63576, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a807fca6c58c31ddc03c70d8410c433a28118ea2a03822767b158064ebe54e94", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/cascadia/TerminalSettingsEditor/Profiles_Base.cpp", "duplicate_line": 26, "correlation_key": "fp|a807fca6c58c31ddc03c70d8410c433a28118ea2a03822767b158064ebe54e94"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/cascadia/TerminalSettingsEditor/Profiles_Base_Orphaned.cpp"}, "region": {"startLine": 15}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 63575, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a2de21aad60d61e5c9c0c8d1de4e3ccc1c28ef0e9b0b66f0deeeb5c6cdd898ce", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/cascadia/TerminalControl/HwndTerminalAutomationPeer.cpp", "duplicate_line": 11, "correlation_key": "fp|a2de21aad60d61e5c9c0c8d1de4e3ccc1c28ef0e9b0b66f0deeeb5c6cdd898ce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/cascadia/TerminalControl/TermControlAutomationPeer.cpp"}, "region": {"startLine": 16}}}]}, {"ruleId": "AIC007", "level": "note", "message": {"text": "Generated build artifact directory is present at repository root"}, "properties": {"repobilityId": 63574, "scanner": "repobility-ai-code-hygiene", "fingerprint": "9ce25f11f897b8a8b2478fd0136724866f111b604484c20a5c690bce80d94da1", "category": "quality", "severity": "low", "confidence": 0.7, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Repository root contains a common generated artifact directory.", "evidence": {"rule_id": "AIC007", "scanner": "repobility-ai-code-hygiene", "directory": "build", "references": ["https://git-scm.com/docs/gitignore", "https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|9ce25f11f897b8a8b2478fd0136724866f111b604484c20a5c690bce80d94da1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "build"}, "region": {"startLine": 1}}}]}, {"ruleId": "COMP001", "level": "note", "message": {"text": "[COMP001] High cognitive complexity: Function `parse_yaml_files` has cognitive complexity 9 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: except=1, for=1, if=1, nested_bonus=5, ternary=1."}, "properties": {"repobilityId": 63557, "scanner": "repobility-threat-engine", "fingerprint": "02698e7b94186cafae8ab92a543dc74290162f3cbf4a054f26f0e3fa4ff51f8f", "category": "quality", "severity": "low", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 9 (severity threshold for low: 8+).", "evidence": {"scanner": "repobility-threat-engine", "function": "parse_yaml_files", "breakdown": {"if": 1, "for": 1, "except": 1, "ternary": 1, "nested_bonus": 5}, "complexity": 9, "correlation_key": "fp|02698e7b94186cafae8ab92a543dc74290162f3cbf4a054f26f0e3fa4ff51f8f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "doc/specs/#1595 - Suggestions UI/dump-workflows.py"}, "region": {"startLine": 6}}}]}, {"ruleId": "MINED080", "level": "none", "message": {"text": "[MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace."}, "properties": {"repobilityId": 63573, "scanner": "repobility-threat-engine", "fingerprint": "d01ab7075e0d6ce6609e436ad04e0a9a96ad44f1ebf928be5943b0859e91147b", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-using-namespace-std", "owasp": null, "cwe_ids": [], "languages": ["cpp", "h", "hpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348123+00:00", "triaged_in_corpus": 12, "observations_count": 3566, "ai_coder_pattern_id": 133}, "scanner": "repobility-threat-engine", "correlation_key": "fp|d01ab7075e0d6ce6609e436ad04e0a9a96ad44f1ebf928be5943b0859e91147b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tools/pixels/main.cpp"}, "region": {"startLine": 10}}}]}, {"ruleId": "MINED080", "level": "none", "message": {"text": "[MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace."}, "properties": {"repobilityId": 63572, "scanner": "repobility-threat-engine", "fingerprint": "02629ca745f2f21d991915e1e9bcb8d1b8afc47ba96ce9f51adc93f5766d924c", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-using-namespace-std", "owasp": null, "cwe_ids": [], "languages": ["cpp", "h", "hpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348123+00:00", "triaged_in_corpus": 12, "observations_count": 3566, "ai_coder_pattern_id": 133}, "scanner": "repobility-threat-engine", "correlation_key": "fp|02629ca745f2f21d991915e1e9bcb8d1b8afc47ba96ce9f51adc93f5766d924c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tools/echokey/main.cpp"}, "region": {"startLine": 15}}}]}, {"ruleId": "MINED080", "level": "none", "message": {"text": "[MINED080] Cpp Using Namespace Std: using namespace std; pollutes the global namespace."}, "properties": {"repobilityId": 63571, "scanner": "repobility-threat-engine", "fingerprint": "b1e9ba4848c972eed9e7b4f1580348dadaee68087e9a10de87fdf44d5dc5ba63", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-using-namespace-std", "owasp": null, "cwe_ids": [], "languages": ["cpp", "h", "hpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348123+00:00", "triaged_in_corpus": 12, "observations_count": 3566, "ai_coder_pattern_id": 133}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b1e9ba4848c972eed9e7b4f1580348dadaee68087e9a10de87fdf44d5dc5ba63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tools/buffersize/main.cpp"}, "region": {"startLine": 20}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 63568, "scanner": "repobility-threat-engine", "fingerprint": "2898925c493ba856bad9e29a26fe4aa4381c119373271d76a393be5d750b4893", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|2898925c493ba856bad9e29a26fe4aa4381c119373271d76a393be5d750b4893"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/terminal/parser/stateMachine.hpp"}, "region": {"startLine": 10}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 63567, "scanner": "repobility-threat-engine", "fingerprint": "996d3fba2c040b39a739f8e8db0a72db7d56bc759c65cf6448703e4b11527431", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|996d3fba2c040b39a739f8e8db0a72db7d56bc759c65cf6448703e4b11527431"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/inc/CppCoreCheck/warnings.h"}, "region": {"startLine": 13}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete (and 7 more): Same pattern found in 7 additional files. Review if needed."}, "properties": {"repobilityId": 63566, "scanner": "repobility-threat-engine", "fingerprint": "74db92848a6db0007a93880429311741defc2927042bfba64a63d8b44494d63d", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 7 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|74db92848a6db0007a93880429311741defc2927042bfba64a63d8b44494d63d", "aggregated_count": 7}}}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 63565, "scanner": "repobility-threat-engine", "fingerprint": "8a097402d0537e19ddfd331692b6beacf59784907cc897318043d055b14395a4", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|8a097402d0537e19ddfd331692b6beacf59784907cc897318043d055b14395a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/host/ft_integrity/IntegrityTest.cpp"}, "region": {"startLine": 69}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 63564, "scanner": "repobility-threat-engine", "fingerprint": "0252ca3001656d7b3fbb5eb07dfde96122f88c31b74d2157833910c7a583bb1b", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|0252ca3001656d7b3fbb5eb07dfde96122f88c31b74d2157833910c7a583bb1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/host/ft_host/InitTests.cpp"}, "region": {"startLine": 96}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 63563, "scanner": "repobility-threat-engine", "fingerprint": "e164a313d2d81d462896de1a7eb0907300449fbfc83e5a151ff6df9c47b48167", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|e164a313d2d81d462896de1a7eb0907300449fbfc83e5a151ff6df9c47b48167"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/host/consoleInformation.cpp"}, "region": {"startLine": 74}}}]}, {"ruleId": "MINED053", "level": "none", "message": {"text": "[MINED053] Placeholder Default Username: foo@bar.com / john.doe@example.com / admin/admin / changeme \u2014 typical AI placeholder credentials."}, "properties": {"repobilityId": 63562, "scanner": "repobility-threat-engine", "fingerprint": "387e091389f8a004d336c80c2831f568ac7ed6343fcb4e1134cdb55f1fa9237b", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "placeholder-default-username", "owasp": null, "cwe_ids": ["CWE-1392", "CWE-798"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348025+00:00", "triaged_in_corpus": 10, "observations_count": 456953, "ai_coder_pattern_id": 44}, "scanner": "repobility-threat-engine", "correlation_key": "fp|387e091389f8a004d336c80c2831f568ac7ed6343fcb4e1134cdb55f1fa9237b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/cascadia/UnitTests_TerminalCore/TilWinRtHelpersTests.cpp"}, "region": {"startLine": 120}}}]}, {"ruleId": "SEC128", "level": "none", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 63561, "scanner": "repobility-threat-engine", "fingerprint": "8a77ffb0a8fcdda223aabe32cdaf0e5bdc6cae13db4c9684d2f2d4932a1285a8", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|8a77ffb0a8fcdda223aabe32cdaf0e5bdc6cae13db4c9684d2f2d4932a1285a8"}}}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/System.Threading.Thread.dll` committed in source repo: `dep/WinAppDriver/System.Threading.Thread.dll` is a .dll binary (22,240 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63593, "scanner": "repobility-supply-chain", "fingerprint": "ed21ea20bca859013dd21dbe8c865d279d8d6e19b2338ed06f908a7e2a0083e8", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|ed21ea20bca859013dd21dbe8c865d279d8d6e19b2338ed06f908a7e2a0083e8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/System.Threading.Thread.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/MitaLite.Localization.dll` committed in source repo: `dep/WinAppDriver/MitaLite.Localization.dll` is a .dll binary (22,960 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63592, "scanner": "repobility-supply-chain", "fingerprint": "9719b0f2043b9bf188ea7d73ed21f131d2db664f90d64b94921c57bf0bc3e83a", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|9719b0f2043b9bf188ea7d73ed21f131d2db664f90d64b94921c57bf0bc3e83a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/MitaLite.Localization.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/MitaLite.UIAutomationClient.dll` committed in source repo: `dep/WinAppDriver/MitaLite.UIAutomationClient.dll` is a .dll binary (102,832 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63591, "scanner": "repobility-supply-chain", "fingerprint": "8565515073af121a9332c5148f390b87205b0d3ca3544ea53eaca5255463512b", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|8565515073af121a9332c5148f390b87205b0d3ca3544ea53eaca5255463512b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/MitaLite.UIAutomationClient.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/MitaLite.Foundation.dll` committed in source repo: `dep/WinAppDriver/MitaLite.Foundation.dll` is a .dll binary (296,368 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63590, "scanner": "repobility-supply-chain", "fingerprint": "034ee1ad8ffa32b0f5699f0dcf614bcb49c50cc575564d536fe0f14442bca607", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|034ee1ad8ffa32b0f5699f0dcf614bcb49c50cc575564d536fe0f14442bca607"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/MitaLite.Foundation.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/System.Diagnostics.Process.dll` committed in source repo: `dep/WinAppDriver/System.Diagnostics.Process.dll` is a .dll binary (37,256 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63589, "scanner": "repobility-supply-chain", "fingerprint": "53513ef5e96c235a28ba1aa576ff23f82054cb0c80585a40ce530b46d70e77d5", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|53513ef5e96c235a28ba1aa576ff23f82054cb0c80585a40ce530b46d70e77d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/System.Diagnostics.Process.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/WinAppDriver.exe` committed in source repo: `dep/WinAppDriver/WinAppDriver.exe` is a .exe binary (133,040 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63588, "scanner": "repobility-supply-chain", "fingerprint": "6a68378b662ae35b799977ea3360fda082a30569d5e0d97b7d2c261d7329eda4", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|6a68378b662ae35b799977ea3360fda082a30569d5e0d97b7d2c261d7329eda4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/WinAppDriver.exe"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/Microsoft.Win32.Primitives.dll` committed in source repo: `dep/WinAppDriver/Microsoft.Win32.Primitives.dll` is a .dll binary (20,208 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63587, "scanner": "repobility-supply-chain", "fingerprint": "0440ed413d8383e001f80a0c68426d02c75a2d6a8c87155973c7ec4f23924c37", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|0440ed413d8383e001f80a0c68426d02c75a2d6a8c87155973c7ec4f23924c37"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/Microsoft.Win32.Primitives.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/Newtonsoft.Json.dll` committed in source repo: `dep/WinAppDriver/Newtonsoft.Json.dll` is a .dll binary (526,336 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63586, "scanner": "repobility-supply-chain", "fingerprint": "d73172370fa609116bb34bc162e8e034c1183afed97c49384688e9e7be4b8e72", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|d73172370fa609116bb34bc162e8e034c1183afed97c49384688e9e7be4b8e72"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/Newtonsoft.Json.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/cpprest140_2_8.dll` committed in source repo: `dep/WinAppDriver/cpprest140_2_8.dll` is a .dll binary (4,696,464 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63585, "scanner": "repobility-supply-chain", "fingerprint": "24deefb80e167e30799060f893bd1895a32bb233253598715d3435be7f3994cb", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|24deefb80e167e30799060f893bd1895a32bb233253598715d3435be7f3994cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/cpprest140_2_8.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/WinAppDriverCore.dll` committed in source repo: `dep/WinAppDriver/WinAppDriverCore.dll` is a .dll binary (632,752 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63584, "scanner": "repobility-supply-chain", "fingerprint": "a8d4629887ec6753fb92ef1bce24d37e08cfc5a4025caf2bf82cc448f91d831e", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|a8d4629887ec6753fb92ef1bce24d37e08cfc5a4025caf2bf82cc448f91d831e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/WinAppDriverCore.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/MitaLite.UIAutomationAdapter.dll` committed in source repo: `dep/WinAppDriver/MitaLite.UIAutomationAdapter.dll` is a .dll binary (125,872 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63583, "scanner": "repobility-supply-chain", "fingerprint": "9dedea84e05297c46809b0993b7b73067fb5dc7edfc8dfd7df178d1b23a6ea74", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|9dedea84e05297c46809b0993b7b73067fb5dc7edfc8dfd7df178d1b23a6ea74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/MitaLite.UIAutomationAdapter.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/Microsoft.Win32.Registry.dll` committed in source repo: `dep/WinAppDriver/Microsoft.Win32.Registry.dll` is a .dll binary (30,592 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63582, "scanner": "repobility-supply-chain", "fingerprint": "083bee965c8cba8c56266254da8f525fdd4f1f521c234822836dc45556ec3620", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|083bee965c8cba8c56266254da8f525fdd4f1f521c234822836dc45556ec3620"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/Microsoft.Win32.Registry.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/WinAppDriver/MitaBroker.dll` committed in source repo: `dep/WinAppDriver/MitaBroker.dll` is a .dll binary (41,904 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63581, "scanner": "repobility-supply-chain", "fingerprint": "62479d882f6b3cc5e2b1efc237bdbecb04c6560a17a26a2e0a4de2adb1bbcb62", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|62479d882f6b3cc5e2b1efc237bdbecb04c6560a17a26a2e0a4de2adb1bbcb62"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/WinAppDriver/MitaBroker.dll"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED134", "level": "error", "message": {"text": "[MINED134] Binary file `dep/nuget/nuget.exe` committed in source repo: `dep/nuget/nuget.exe` is a .exe binary (4,596,440 bytes) committed to a repo that otherwise has 1194 source files. Trojan binaries inside otherwise-normal source repos are a known supply-chain attack: a compromised dependency or PR slips in a binary that gets executed by build scripts."}, "properties": {"repobilityId": 63580, "scanner": "repobility-supply-chain", "fingerprint": "2555bcdb7ad3205c362bcf8ea8b430e6682b9f591cf6f01d335756c52fbdf61d", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "suspicious-binary-in-src", "owasp": null, "cwe_ids": ["CWE-506"], "languages": ["any"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|2555bcdb7ad3205c362bcf8ea8b430e6682b9f591cf6f01d335756c52fbdf61d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "dep/nuget/nuget.exe"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "[MINED115] Action `actions/add-to-project` pinned to mutable ref `@v1.0.2`: `uses: actions/add-to-project@v1.0.2` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"repobilityId": 63579, "scanner": "repobility-supply-chain", "fingerprint": "2bb48d2620093a81f832572926f076ebe30f45dba8297fefe023135df5fafc66", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|2bb48d2620093a81f832572926f076ebe30f45dba8297fefe023135df5fafc66"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/addToProject.yml"}, "region": {"startLine": 16}}}]}, {"ruleId": "SEC025", "level": "error", "message": {"text": "[SEC025] XML External Entity (XXE) \u2014 .NET XmlDocument / XmlTextReader: .NET XmlDocument and XmlTextReader expand external entities by default in pre-4.5.2 runtimes (and even later if XmlResolver is left at default). Allows file disclosure and SSRF via XXE."}, "properties": {"repobilityId": 63570, "scanner": "repobility-threat-engine", "fingerprint": "069a6f129585fdf0de437ae51675d988381919c49fb5237fc6207626a4f8126a", "category": "xxe", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "new XmlDocument()", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC025", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|069a6f129585fdf0de437ae51675d988381919c49fb5237fc6207626a4f8126a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tools/ColorTool/ColorTool/SchemeParsers/XmlSchemeParser.cs"}, "region": {"startLine": 135}}}]}, {"ruleId": "SEC025", "level": "error", "message": {"text": "[SEC025] XML External Entity (XXE) \u2014 .NET XmlDocument / XmlTextReader: .NET XmlDocument and XmlTextReader expand external entities by default in pre-4.5.2 runtimes (and even later if XmlResolver is left at default). Allows file disclosure and SSRF via XXE."}, "properties": {"repobilityId": 63569, "scanner": "repobility-threat-engine", "fingerprint": "ecc37ea69d70a9bdaf55edcd40682238706d1abf4ed53e9b02047b80402d3975", "category": "xxe", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "new XmlDocument()", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC025", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|ecc37ea69d70a9bdaf55edcd40682238706d1abf4ed53e9b02047b80402d3975"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tools/ColorTool/ColorTool/SchemeParsers/JsonParser.cs"}, "region": {"startLine": 126}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 63560, "scanner": "repobility-threat-engine", "fingerprint": "ca608be9da54f2d5e013da9f5a5cef24d91afc96c19887e1f4c9c340618b2360", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "File.Delete(backupFile);", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|ca608be9da54f2d5e013da9f5a5cef24d91afc96c19887e1f4c9c340618b2360"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/host/ft_uia/Common/RegistryHelper.cs"}, "region": {"startLine": 104}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 63559, "scanner": "repobility-threat-engine", "fingerprint": "f63f2a9dd0612c0779042cc4b45c294c1f5ff761ffe9404ffa3d65f0175343f5", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "_logic.Create();", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|f63f2a9dd0612c0779042cc4b45c294c1f5ff761ffe9404ffa3d65f0175343f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "scratch/ScratchIslandApp/WindowExe/SampleAppHost.cpp"}, "region": {"startLine": 51}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 63558, "scanner": "repobility-threat-engine", "fingerprint": "0c316e5bad6a1a50db7e7d50411175d7e0b63f7f6c14a181d60edb4fcf35b391", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "logic.Create();", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|0c316e5bad6a1a50db7e7d50411175d7e0b63f7f6c14a181d60edb4fcf35b391"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "scratch/ScratchIslandApp/SampleApp/App.cpp"}, "region": {"startLine": 87}}}]}]}]}