Mintplex-Labs/anything-llm

Component	Sub-score	Weight	Contribution
`structure_score`	60.0	0.15	9.00
`security_score`	41.5	0.25	10.38
`testing_score`	20.0	0.20	4.00
`documentation_score`	75.6	0.15	11.34
`practices_score`	83.0	0.15	12.45
`code_quality`	43.4	0.10	4.34
Overall		1.00	51.5

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: DELETE /admin/delete-api-key/:id

Express route on /admin path (/admin/delete-api-key/:id) with no auth middleware.

server/endpoints/admin.js:543

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: DELETE /admin/invite/:id

Express route on /admin path (/admin/invite/:id) with no auth middleware.

server/endpoints/admin.js:208

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: DELETE /admin/user/:id

Express route on /admin path (/admin/user/:id) with no auth middleware.

server/endpoints/admin.js:129

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: DELETE /admin/workspaces/:id

Express route on /admin path (/admin/workspaces/:id) with no auth middleware.

server/endpoints/admin.js:295

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: DELETE /v1/admin/invite/:id

Express route on /admin path (/v1/admin/invite/:id) with no auth middleware.

server/endpoints/api/admin/index.js:374

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: DELETE /v1/admin/users/:id

Express route on /admin path (/v1/admin/users/:id) with no auth middleware.

server/endpoints/api/admin/index.js:215

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /admin/agent-skills/outlook/auth-url

Express route on /admin path (/admin/agent-skills/outlook/auth-url) with no auth middleware.

server/endpoints/utils/outlookAgentUtils.js:21

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /admin/agent-skills/outlook/revoke

Express route on /admin path (/admin/agent-skills/outlook/revoke) with no auth middleware.

server/endpoints/utils/outlookAgentUtils.js:172

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /admin/generate-api-key

Express route on /admin path (/admin/generate-api-key) with no auth middleware.

server/endpoints/admin.js:519

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /admin/invite/new

Express route on /admin path (/admin/invite/new) with no auth middleware.

server/endpoints/admin.js:176

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /admin/system-preferences

Express route on /admin path (/admin/system-preferences) with no auth middleware.

server/endpoints/admin.js:462

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /admin/user/:id

Express route on /admin path (/admin/user/:id) with no auth middleware.

server/endpoints/admin.js:88

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /admin/users/new

Express route on /admin path (/admin/users/new) with no auth middleware.

server/endpoints/admin.js:52

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /admin/workspaces/:workspaceId/update-users

Express route on /admin path (/admin/workspaces/:workspaceId/update-users) with no auth middleware.

server/endpoints/admin.js:276

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /admin/workspaces/new

Express route on /admin path (/admin/workspaces/new) with no auth middleware.

server/endpoints/admin.js:257

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /v1/admin/invite/new

Express route on /admin path (/v1/admin/invite/new) with no auth middleware.

server/endpoints/api/admin/index.js:316

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /v1/admin/preferences

Express route on /admin path (/v1/admin/preferences) with no auth middleware.

server/endpoints/api/admin/index.js:718

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /v1/admin/users/:id

Express route on /admin path (/v1/admin/users/:id) with no auth middleware.

server/endpoints/api/admin/index.js:143

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /v1/admin/users/new

Express route on /admin path (/v1/admin/users/new) with no auth middleware.

server/endpoints/api/admin/index.js:85

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /v1/admin/workspace-chats

Express route on /admin path (/v1/admin/workspace-chats) with no auth middleware.

server/endpoints/api/admin/index.js:662

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /v1/admin/workspaces/:workspaceId/update-users

Express route on /admin path (/v1/admin/workspaces/:workspaceId/update-users) with no auth middleware.

server/endpoints/api/admin/index.js:480

critical Security checks quality Quality conf 0.80 ✓ Repobility Admin endpoint without auth: POST /v1/admin/workspaces/:workspaceSlug/manage-users

Express route on /admin path (/v1/admin/workspaces/:workspaceSlug/manage-users) with no auth middleware.

server/endpoints/api/admin/index.js:547

critical Security checks security secrets conf 0.95 Detected a Generic API Key, potentially exposing access to various services and sensitive operations.

Gitleaks detected a committed secret or credential pattern.

server/utils/vectorDbProviders/pinecone/PINECONE_SETUP.md:22

critical Security checks software dependencies conf 0.90 ✓ Repobility Trojan Source bidi character (LRM) in source

Line 37 contains a Unicode bidirectional override character (U+200E LRM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.

frontend/public/embed/anythingllm-chat-widget.min.js:37

low Security checks cicd CI/CD security conf 0.35 ✓ Repobility 2 occurrences Workflow references repository secrets in a pull_request workflow

Fork pull_request runs do not receive normal repository secrets on GitHub Actions. Review this as a reliability/intent signal, not as direct fork-secret exfiltration. Raise severity only for pull_request_target or another trusted-context path that runs untrusted PR code with secrets.

lines 23, 61

.github/workflows/cleanup-qa-tag.yaml:23, 61 (2 hits)

CI/CD securityworkflow secretsGitHub Actions

critical System graph security Secrets conf 1.00 Possible secret in frontend/src/components/VectorDBSelection/ChromaDBOptions/index.jsx

Detected pattern matching openai_or_anthropic_key. Rotate the credential and move to a secret manager.

frontend/src/components/VectorDBSelection/ChromaDBOptions/index.jsx:45

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/ar/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 24, 1256, 1475

frontend/src/locales/ar/common.js:19, 20, 24, 1256, 1475 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/ca/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 1114, 1482

frontend/src/locales/ca/common.js:19, 20, 25, 1114, 1482 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/cs/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 1029, 1391

frontend/src/locales/cs/common.js:19, 20, 25, 1029, 1391 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/da/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 1271, 1498

frontend/src/locales/da/common.js:19, 20, 25, 1271, 1498 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/de/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 1389, 1526

frontend/src/locales/de/common.js:19, 20, 25, 1389, 1526 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/en/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 18, 19, 24, 1254, 1616

frontend/src/locales/en/common.js:18, 19, 24, 1254, 1616 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/es/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 1404, 1541

frontend/src/locales/es/common.js:19, 20, 25, 1404, 1541 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/et/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 1329, 1453

frontend/src/locales/et/common.js:19, 20, 25, 1329, 1453 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/fa/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 35, 36, 41, 1263, 1487

frontend/src/locales/fa/common.js:35, 36, 41, 1263, 1487 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/fr/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 33, 34, 39, 1297, 1519

frontend/src/locales/fr/common.js:33, 34, 39, 1297, 1519 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/he/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 24, 1317, 1442

frontend/src/locales/he/common.js:19, 20, 24, 1317, 1442 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/it/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 34, 35, 40, 1302, 1541

frontend/src/locales/it/common.js:34, 35, 40, 1302, 1541 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/ja/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 1253, 1489

frontend/src/locales/ja/common.js:19, 20, 25, 1253, 1489 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/ko/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 24, 1331, 1460

frontend/src/locales/ko/common.js:19, 20, 24, 1331, 1460 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/lt/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 1030, 1395

frontend/src/locales/lt/common.js:19, 20, 25, 1030, 1395 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/lv/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 24, 1374, 1508

frontend/src/locales/lv/common.js:19, 20, 24, 1374, 1508 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/nl/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 34, 35, 40, 1281, 1512

frontend/src/locales/nl/common.js:34, 35, 40, 1281, 1512 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/pl/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 1382, 1516

frontend/src/locales/pl/common.js:19, 20, 25, 1382, 1516 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/pt_BR/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 1363, 1489

frontend/src/locales/pt_BR/common.js:19, 20, 25, 1363, 1489 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/ro/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 649, 1517

frontend/src/locales/ro/common.js:19, 20, 25, 649, 1517 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/ru/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 19, 20, 25, 1291, 1525

frontend/src/locales/ru/common.js:19, 20, 25, 1291, 1525 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/tr/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 34, 35, 40, 1284, 1510

frontend/src/locales/tr/common.js:34, 35, 40, 1284, 1510 (5 hits)

critical System graph security Secrets conf 1.00 5 occurrences Possible secret in frontend/src/locales/vn/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 34, 35, 40, 1267, 1495

frontend/src/locales/vn/common.js:34, 35, 40, 1267, 1495 (5 hits)

critical System graph security Secrets conf 1.00 3 occurrences Possible secret in frontend/src/locales/zh/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 20, 24, 1399

frontend/src/locales/zh/common.js:20, 24, 1399 (3 hits)

critical System graph security Secrets conf 1.00 3 occurrences Possible secret in frontend/src/locales/zh_TW/common.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 20, 24, 1394

frontend/src/locales/zh_TW/common.js:20, 24, 1394 (3 hits)

critical System graph security Secrets conf 1.00 2 occurrences Possible secret in server/endpoints/api/admin/index.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

lines 96, 160

server/endpoints/api/admin/index.js:96, 160 (2 hits)

critical System graph security Secrets conf 1.00 Possible secret in server/endpoints/system.js

Detected pattern matching password_literal. Rotate the credential and move to a secret manager.

server/endpoints/system.js:428

high Security checks cicd CI/CD security conf 0.90 Compose service adds dangerous Linux capabilities

Added capabilities expand what a compromised process can do inside or against the host kernel.

docker/docker-compose.yml:7 CI/CD securitycontainers

high Security checks software dependencies conf 0.90 ✓ Repobility 3 occurrences Dockerfile FROM `mintplexlabs/anythingllm:render` not pinned by digest

`FROM mintplexlabs/anythingllm:render` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity.

3 files, 3 locations

cloud-deployments/huggingface-spaces/Dockerfile:21

cloud-deployments/openshift/Dockerfile:14

docker/Dockerfile:2

high Security checks cicd CI/CD security conf 0.92 4 occurrences Dockerfile pipes a remote script into a shell

Piping downloaded code directly into a shell bypasses checksum verification and makes builds dependent on mutable remote content.

2 files, 4 locations

cloud-deployments/openshift/Dockerfile:27, 105 (2 hits)

docker/Dockerfile:15, 84 (2 hits)

CI/CD securitycontainers

high Security checks quality Quality conf 0.80 ✓ Repobility Express DELETE /embed/:embedId has no auth

Express route DELETE /embed/:embedId declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

server/endpoints/embedManagement.js:73

high Security checks quality Quality conf 0.80 ✓ Repobility Express DELETE /embed/chats/:chatId has no auth

Express route DELETE /embed/chats/:chatId declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

server/endpoints/embedManagement.js:115

high Security checks quality Quality conf 0.80 ✓ Repobility Express DELETE /workspace/:slug/delete-parsed-files has no auth

Express route DELETE /workspace/:slug/delete-parsed-files declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

server/endpoints/workspacesParsedFiles.js:46

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /agent-skills/whitelist/add has no auth

Express route POST /agent-skills/whitelist/add declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

server/endpoints/agentSkillWhitelist.js:48

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /document/create-folder has no auth

Express route POST /document/create-folder declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

server/endpoints/document.js:14

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /document/move-files has no auth

Express route POST /document/move-files declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

server/endpoints/document.js:44

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /embed/chats has no auth

Express route POST /embed/chats declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

server/endpoints/embedManagement.js:93

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /embed/update/:embedId has no auth

Express route POST /embed/update/:embedId declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

server/endpoints/embedManagement.js:55

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /embeds/new has no auth

Express route POST /embeds/new declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

server/endpoints/embedManagement.js:34

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /ext/:repo_platform-repo has no auth

Express route POST /ext/:repo_platform-repo declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/extensions/index.js:36

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /ext/:repo_platform-repo/branches has no auth

Express route POST /ext/:repo_platform-repo/branches declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/extensions/index.js:66

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /ext/confluence has no auth

Express route POST /ext/confluence declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/extensions/index.js:142

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /ext/drupalwiki has no auth

Express route POST /ext/drupalwiki declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/extensions/index.js:168

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /ext/obsidian/vault has no auth

Express route POST /ext/obsidian/vault declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/extensions/index.js:196

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /ext/paperless-ngx has no auth

Express route POST /ext/paperless-ngx declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/extensions/index.js:216

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /ext/resync-source-document has no auth

Express route POST /ext/resync-source-document declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/extensions/index.js:15

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /ext/website-depth has no auth

Express route POST /ext/website-depth declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/extensions/index.js:123

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /ext/youtube-transcript has no auth

Express route POST /ext/youtube-transcript declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/extensions/index.js:96

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /invite/:code has no auth

Express route POST /invite/:code declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

server/endpoints/invite.js:37

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /parse has no auth

Express route POST /parse declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/index.js:75

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /process has no auth

Express route POST /process declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/index.js:45

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /process-link has no auth

Express route POST /process-link declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/index.js:109

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /process-raw-text has no auth

Express route POST /process-raw-text declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/index.js:179

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /util/convert-audio-to-wav has no auth

Express route POST /util/convert-audio-to-wav declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/index.js:154

high Security checks quality Quality conf 0.80 ✓ Repobility Express POST /util/get-link has no auth

Express route POST /util/get-link declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A01:2021 broken access control.

collector/index.js:134

low Security checks cicd CI/CD security conf 0.90 ✓ Repobility 36 occurrences GitHub Action is tag-pinned rather than SHA-pinned

Action `actions/checkout` pinned to mutable ref `@v4` uses a mutable tag or branch. Pin external actions to a reviewed full commit SHA when the workflow is security-sensitive.

8 files, 36 locations

.github/workflows/lint.yaml:25, 28, 33, 41, 49 (10 hits)

.github/workflows/run-tests.yaml:20, 23, 28, 38, 48 (10 hits)

.github/workflows/check-package-versions.yaml:23, 26 (4 hits)

.github/workflows/check-translations.yaml:23, 26 (4 hits)

.github/workflows/build-and-push-image-semver.yaml:20 (2 hits)

.github/workflows/build-and-push-image.yaml:39 (2 hits)

.github/workflows/build-qa-tag.yaml:40 (2 hits)

.github/workflows/sponsors.yaml:14 (2 hits)

CI/CD securitySupply chainGitHub Actions

high Security checks software dependencies conf 0.90 ✓ Repobility package.json dep `epub2` pulled from URL/Git

`dependencies.epub2` = `git+https://github.com/Mintplex-Labs/epub2-static.git#main` bypasses the npm registry. No integrity hash, no version locking, no registry-side scanning. If the URL or git host is compromised, every `npm install` pulls the new payload.

collector/package.json:1

high Security checks security auth conf 0.83 4 occurrences Secret-like setting is echoed into a password input value

Settings screens sometimes render API keys, tokens, or passwords back into HTML/JSX password fields. That still exposes the secret to page source, browser extensions, screenshots, and DOM scraping.

4 files, 4 locations

frontend/src/components/TextToSpeech/OpenAiOptions/index.jsx:16

frontend/src/pages/Admin/Agents/GMailSkillPanel/index.jsx:278

frontend/src/pages/Admin/Agents/GoogleCalendarSkillPanel/index.jsx:287

frontend/src/pages/Admin/Agents/SQLConnectorSelection/SQLConnectionModal.jsx:360

high System graph api Wiring conf 1.00 Dangling fetch: DELETE /me/messages/${draftId} (server/utils/agents/aibitat/plugins/outlook/lib.js:1249)

`server/utils/agents/aibitat/plugins/outlook/lib.js:1249` calls `DELETE /me/messages/${draftId}` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: helper:request Normalized path used for matching: `/me/messages/` If this points at an external API, prefix it …

Dangling fetchHelper:request

high System graph api Wiring conf 1.00 Dangling fetch: GET /api/data (server/utils/agents/aibitat/plugins/create-files/pdf/create-pdf-file.js:39)

`server/utils/agents/aibitat/plugins/create-files/pdf/create-pdf-file.js:39` calls `GET /api/data` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/data` If this points at an external API, prefix it with `https://` so…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET /me?$select=displayName,mail (server/utils/agents/aibitat/plugins/outlook/lib.js:1383)

`server/utils/agents/aibitat/plugins/outlook/lib.js:1383` calls `GET /me?$select=displayName,mail` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: helper:request Normalized path used for matching: `/me` If this points at an external API, prefix it with `https…

Dangling fetchHelper:request

high System graph api Wiring conf 1.00 Dangling fetch: GET https://api.cerebras.ai/public/v1/models (server/utils/AiProviders/cerebras/index.js:68)

`server/utils/AiProviders/cerebras/index.js:68` calls `GET https://api.cerebras.ai/public/v1/models` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/api.cerebras.ai/public/v1/models` If this points at an exter…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://api.cerebras.ai/public/v1/models (server/utils/helpers/customModels.js:1200)

`server/utils/helpers/customModels.js:1200` calls `GET https://api.cerebras.ai/public/v1/models` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/api.cerebras.ai/public/v1/models` If this points at an external …

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://api.cerebras.ai/public/v1/models/${this.model} (server/utils/AiProviders/cerebras/index.js:265)

`server/utils/AiProviders/cerebras/index.js:265` calls `GET https://api.cerebras.ai/public/v1/models/${this.model}` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/api.cerebras.ai/public/v1/models/` If this…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://api.cometapi.com/v1/models (server/utils/AiProviders/cometapi/index.js:388)

`server/utils/AiProviders/cometapi/index.js:388` calls `GET https://api.cometapi.com/v1/models` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/api.cometapi.com/v1/models` If this points at an external API, pr…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://api.deepgram.com/v1/models (server/utils/helpers/customModels.js:1070)

`server/utils/helpers/customModels.js:1070` calls `GET https://api.deepgram.com/v1/models` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/api.deepgram.com/v1/models` If this points at an external API, prefix …

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://api.github.com/octocat (collector/utils/extensions/RepoLoader/GithubRepo/RepoLoader/index.js:110)

`collector/utils/extensions/RepoLoader/GithubRepo/RepoLoader/index.js:110` calls `GET https://api.github.com/octocat` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/api.github.com/octocat` If this points at a…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://api.github.com/repos/${this.author}/${this.project}/branches?per_page=100&page=${page} (collector/utils/extensions/RepoLoader/GithubRepo/RepoLoader/index.js:198)

`collector/utils/extensions/RepoLoader/GithubRepo/RepoLoader/index.js:198` calls `GET https://api.github.com/repos/${this.author}/${this.project}/branches?per_page=100&page=${page}` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used fo…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://api.github.com/repos/${this.author}/${this.project}/contents/${sourceFilePath}?ref=${this.branch} (collector/utils/extensions/RepoLoader/GithubRepo/RepoLoader/index.js:236)

`collector/utils/extensions/RepoLoader/GithubRepo/RepoLoader/index.js:236` calls `GET https://api.github.com/repos/${this.author}/${this.project}/contents/${sourceFilePath}?ref=${this.branch}` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized p…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://api.novita.ai/v3/openai/models (server/utils/AiProviders/novita/index.js:410)

`server/utils/AiProviders/novita/index.js:410` calls `GET https://api.novita.ai/v3/openai/models` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/api.novita.ai/v3/openai/models` If this points at an external A…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://api.ppinfra.com/v3/openai/models (server/utils/AiProviders/ppio/index.js:227)

`server/utils/AiProviders/ppio/index.js:227` calls `GET https://api.ppinfra.com/v3/openai/models` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/api.ppinfra.com/v3/openai/models` If this points at an external…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://apipie.ai/v1/models (server/utils/AiProviders/apipie/index.js:337)

`server/utils/AiProviders/apipie/index.js:337` calls `GET https://apipie.ai/v1/models` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/apipie.ai/v1/models` If this points at an external API, prefix it with `ht…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://openrouter.ai/api/v1/embeddings/models (server/utils/EmbeddingEngines/openRouter/index.js:103)

`server/utils/EmbeddingEngines/openRouter/index.js:103` calls `GET https://openrouter.ai/api/v1/embeddings/models` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/openrouter.ai/api/v1/embeddings/models` If thi…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://openrouter.ai/api/v1/models (server/utils/AiProviders/openRouter/index.js:518)

`server/utils/AiProviders/openRouter/index.js:518` calls `GET https://openrouter.ai/api/v1/models` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/openrouter.ai/api/v1/models` If this points at an external API…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: GET https://www.youtube.com/watch?v=${videoId} (collector/utils/extensions/YoutubeTranscript/YoutubeLoader/youtube-transcript.js:149)

`collector/utils/extensions/YoutubeTranscript/YoutubeLoader/youtube-transcript.js:149` calls `GET https://www.youtube.com/watch?v=${videoId}` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/www.youtube.com/wat…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: PATCH /me/messages/${draftId} (server/utils/agents/aibitat/plugins/outlook/lib.js:1227)

`server/utils/agents/aibitat/plugins/outlook/lib.js:1227` calls `PATCH /me/messages/${draftId}` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: helper:request Normalized path used for matching: `/me/messages/` If this points at an external API, prefix it w…

Dangling fetchHelper:request

high System graph api Wiring conf 1.00 Dangling fetch: PATCH /me/messages/${messageId} (server/utils/agents/aibitat/plugins/outlook/lib.js:1330)

`server/utils/agents/aibitat/plugins/outlook/lib.js:1330` calls `PATCH /me/messages/${messageId}` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: helper:request Normalized path used for matching: `/me/messages/` If this points at an external API, prefix it…

Dangling fetchHelper:request

high System graph api Wiring conf 1.00 Dangling fetch: PATCH /me/messages/${messageId} (server/utils/agents/aibitat/plugins/outlook/lib.js:1342)

`server/utils/agents/aibitat/plugins/outlook/lib.js:1342` calls `PATCH /me/messages/${messageId}` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: helper:request Normalized path used for matching: `/me/messages/` If this points at an external API, prefix it…

Dangling fetchHelper:request

high System graph api Wiring conf 1.00 Dangling fetch: POST /me/messages (server/utils/agents/aibitat/plugins/outlook/lib.js:1098)

`server/utils/agents/aibitat/plugins/outlook/lib.js:1098` calls `POST /me/messages` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: helper:request Normalized path used for matching: `/me/messages` If this points at an external API, prefix it with `https://` s…

Dangling fetchHelper:request

high System graph api Wiring conf 1.00 Dangling fetch: POST /me/messages/${draftId}/attachments (server/utils/agents/aibitat/plugins/outlook/lib.js:1109)

`server/utils/agents/aibitat/plugins/outlook/lib.js:1109` calls `POST /me/messages/${draftId}/attachments` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: helper:request Normalized path used for matching: `/me/messages//attachments` If this points at an ex…

Dangling fetchHelper:request

high System graph api Wiring conf 1.00 Dangling fetch: POST /me/messages/${draftId}/send (server/utils/agents/aibitat/plugins/outlook/lib.js:1260)

`server/utils/agents/aibitat/plugins/outlook/lib.js:1260` calls `POST /me/messages/${draftId}/send` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: helper:request Normalized path used for matching: `/me/messages//send` If this points at an external API, pr…

Dangling fetchHelper:request

high System graph api Wiring conf 1.00 Dangling fetch: POST /me/messages/${messageId}/move (server/utils/agents/aibitat/plugins/outlook/lib.js:1354)

`server/utils/agents/aibitat/plugins/outlook/lib.js:1354` calls `POST /me/messages/${messageId}/move` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: helper:request Normalized path used for matching: `/me/messages//move` If this points at an external API, …

Dangling fetchHelper:request

high System graph api Wiring conf 1.00 Dangling fetch: POST /me/sendMail (server/utils/agents/aibitat/plugins/outlook/lib.js:1295)

`server/utils/agents/aibitat/plugins/outlook/lib.js:1295` calls `POST /me/sendMail` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: helper:request Normalized path used for matching: `/me/sendmail` If this points at an external API, prefix it with `https://` s…

Dangling fetchHelper:request

high System graph api Wiring conf 1.00 Dangling fetch: POST https://api.perplexity.ai/search (server/utils/agents/aibitat/plugins/web-browsing.js:1111)

`server/utils/agents/aibitat/plugins/web-browsing.js:1111` calls `POST https://api.perplexity.ai/search` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/api.perplexity.ai/search` If this points at an external …

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: POST https://google.serper.dev/search (server/utils/agents/aibitat/plugins/web-browsing.js:504)

`server/utils/agents/aibitat/plugins/web-browsing.js:504` calls `POST https://google.serper.dev/search` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/google.serper.dev/search` If this points at an external A…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: POST https://qianfan.baidubce.com/v2/ai_search/web_search (server/utils/agents/aibitat/plugins/web-browsing.js:624)

`server/utils/agents/aibitat/plugins/web-browsing.js:624` calls `POST https://qianfan.baidubce.com/v2/ai_search/web_search` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/qianfan.baidubce.com/v2/ai_search/web…

Dangling fetchFetch

high System graph api Wiring conf 1.00 Dangling fetch: POST https://www.youtube.com/youtubei/v1/get_transcript (collector/utils/extensions/YoutubeTranscript/YoutubeLoader/youtube-transcript.js:196)

`collector/utils/extensions/YoutubeTranscript/YoutubeLoader/youtube-transcript.js:196` calls `POST https://www.youtube.com/youtubei/v1/get_transcript` but no backend route matches that path. This is a runtime 404 waiting to happen. Tool: fetch Normalized path used for matching: `/https:/www.youtub…

Dangling fetchFetch

medium Security checks quality Error handling conf 1.00 3 occurrences [ERR002] Empty Catch Block: Empty catch blocks hide errors.

Log the error or rethrow it. Use console.error() at minimum.

3 files, 3 locations

frontend/src/EmbeddingProgressContext.jsx:195

frontend/src/components/WorkspaceChat/ChatContainer/PromptInput/SpeechToText/useSilenceDetector.js:66

frontend/src/pages/Admin/Agents/CreateFileSkillPanel/index.jsx:82

high Security checks security auth conf 0.82 12 occurrences Browser storage is used for session token material

localStorage and sessionStorage are readable by injected JavaScript. For sensitive sessions, this turns XSS into account compromise.

5 files, 12 locations

frontend/src/components/Modals/Password/MultiUserAuth.jsx:209, 228, 237, 261 (4 hits)

frontend/src/AuthContext.jsx:15, 32 (2 hits)

frontend/src/components/Modals/Password/SingleUserAuth.jsx:40, 56 (2 hits)

frontend/src/components/Modals/Password/index.jsx:51, 93 (2 hits)

frontend/src/components/PrivateRoute/index.jsx:41, 54 (2 hits)

high Security checks cicd CI/CD security conf 0.82 Docker final stage has no non-root USER

Docker images run as root unless the image or Dockerfile switches to a non-root user.

docker/Dockerfile:167 CI/CD securitycontainers

high Security checks quality Quality conf 0.80 localStorage write failures are swallowed silently

localStorage quotas are small and writes can fail. Catching storage errors without a user-visible warning causes silent data loss when notes, images, or snapshots exceed quota.

frontend/src/hooks/usePromptInputStorage.js:37

medium Security checks software dependencies conf 0.90 npm package `@datastax/astra-db-ts` is 2 major version(s) behind (^0.1.3 -> 2.2.1)

`@datastax/astra-db-ts` is pinned/resolved at ^0.1.3 but the latest stable release on the npm registry is 2.2.1 (2 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs ra…

server/package.json

medium Security checks software dependencies conf 0.90 npm package `@ladjs/graceful` is 2 major version(s) behind (^3.2.2 -> 5.0.0)

`@ladjs/graceful` is pinned/resolved at ^3.2.2 but the latest stable release on the npm registry is 5.0.0 (2 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

medium Security checks software dependencies conf 0.90 npm package `@langchain/anthropic` is 1 major version(s) behind (0.1.16 -> 1.4.0)

`@langchain/anthropic` is pinned/resolved at 0.1.16 but the latest stable release on the npm registry is 1.4.0 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs rai…

server/package.json

medium Security checks software dependencies conf 0.90 npm package `@langchain/aws` is 1 major version(s) behind (^0.0.5 -> 1.3.9)

`@langchain/aws` is pinned/resolved at ^0.0.5 but the latest stable release on the npm registry is 1.3.9 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

medium Security checks software dependencies conf 0.90 npm package `@langchain/cohere` is 1 major version(s) behind (0.0.11 -> 1.0.5)

`@langchain/cohere` is pinned/resolved at 0.0.11 but the latest stable release on the npm registry is 1.0.5 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

medium Security checks software dependencies conf 0.90 npm package `@langchain/openai` is 1 major version(s) behind (0.0.28 -> 1.4.7)

`@langchain/openai` is pinned/resolved at 0.0.28 but the latest stable release on the npm registry is 1.4.7 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

medium Security checks software dependencies conf 0.90 npm package `@langchain/textsplitters` is 1 major version(s) behind (0.0.0 -> 1.0.1)

`@langchain/textsplitters` is pinned/resolved at 0.0.0 but the latest stable release on the npm registry is 1.0.1 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs …

server/package.json

medium Security checks software dependencies conf 0.90 npm package `@zilliz/milvus2-sdk-node` is 1 major version(s) behind (^2.3.5 -> 3.0.3)

`@zilliz/milvus2-sdk-node` is pinned/resolved at ^2.3.5 but the latest stable release on the npm registry is 3.0.3 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs…

server/package.json

medium Security checks software dependencies conf 0.90 npm package `apache-arrow` is 2 major version(s) behind (19.0.0 -> 21.1.0)

`apache-arrow` is pinned/resolved at 19.0.0 but the latest stable release on the npm registry is 21.1.0 (2 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

medium Security checks software dependencies conf 0.90 npm package `body-parser` is 1 major version(s) behind (^1.20.3 -> 2.2.2)

`body-parser` is pinned/resolved at ^1.20.3 but the latest stable release on the npm registry is 2.2.2 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

medium Security checks software dependencies conf 0.90 npm package `chalk` is 1 major version(s) behind (^4 -> 5.6.2)

`chalk` is pinned/resolved at ^4 but the latest stable release on the npm registry is 5.6.2 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

medium Security checks software dependencies conf 0.90 npm package `chromadb` is 1 major version(s) behind (^2.0.1 -> 3.4.3)

`chromadb` is pinned/resolved at ^2.0.1 but the latest stable release on the npm registry is 3.4.3 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

medium Security checks software dependencies conf 0.90 npm package `cohere-ai` is 1 major version(s) behind (^7.19.0 -> 8.0.0)

`cohere-ai` is pinned/resolved at ^7.19.0 but the latest stable release on the npm registry is 8.0.0 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

medium Security checks software dependencies conf 0.90 npm package `concurrently` is 1 major version(s) behind (^9.1.2 -> 10.0.3)

`concurrently` is pinned/resolved at ^9.1.2 but the latest stable release on the npm registry is 10.0.3 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

package.json

medium Security checks software dependencies conf 0.90 npm package `jest` is 1 major version(s) behind (^29.7.0 -> 30.4.2)

`jest` is pinned/resolved at ^29.7.0 but the latest stable release on the npm registry is 30.4.2 (1 major version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

package.json

medium Security checks quality Quality conf 0.70 Public web app has no Content Security Policy

A Content Security Policy reduces the blast radius of injected scripts if the app is ever served through preview, static hosting, or a web container outside its normal sandbox.

index.html

medium Security checks quality Quality conf 0.78 Public web service has no security.txt

security.txt gives researchers and customers a safe disclosure channel. Public web apps and APIs should publish it under /.well-known/security.txt.

.well-known/security.txt

high Security checks software dependencies conf 0.70 Remote install command pipes network code directly to a shell

Agent helper projects often publish one-line installers. `curl | sh` style commands are convenient, but they bypass review unless the script is pinned, signed, or checksum-verified.

.github/workflows/build-and-push-image.yaml:125

high Security checks software dependencies conf 0.70 Remote install command pipes network code directly to a shell

Agent helper projects often publish one-line installers. `curl | sh` style commands are convenient, but they bypass review unless the script is pinned, signed, or checksum-verified.

.github/workflows/build-and-push-image-semver.yaml:104

medium Security checks quality Quality conf 0.86 robots.txt blocks the full public site

`User-agent: *` with `Disallow: /` prevents normal indexing and can also hide public docs from AI agents unless there is a clear exception.

frontend/public/robots.txt

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/public/embed/anythingllm-chat-widget.min.js:37

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/components/ChatBubble/index.jsx:23

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/components/Modals/ManageWorkspace/DataConnectors/Connectors/Github/index.jsx:252

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/components/Modals/ManageWorkspace/DataConnectors/Connectors/Gitlab/index.jsx:280

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/components/Modals/ManageWorkspace/Documents/WorkspaceDirectory/index.jsx:343

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/Chartable/index.jsx:397

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/HistoricalMessage/index.jsx:308

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/PromptReply/index.jsx:100

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/ThoughtContainer/index.jsx:203

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/pages/GeneralSettings/ChatEmbedWidgets/EmbedChats/MarkdownRenderer.jsx:82

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/pages/GeneralSettings/ChatEmbedWidgets/EmbedConfigs/EmbedRow/CodeSnippetModal/index.jsx:108

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/pages/GeneralSettings/Chats/MarkdownRenderer.jsx:82

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/pages/GeneralSettings/CommunityHub/ImportItem/Steps/PullAndReview/HubItem/AgentSkill.jsx:175

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/pages/GeneralSettings/ScheduledJobs/components/ToolCallCard.jsx:23

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph frontend Frontend quality conf 1.00 `dangerouslySetInnerHTML` used in a React component — frontend/src/pages/GeneralSettings/ScheduledJobs/RunDetailPage.jsx:377

Open XSS surface unless the input is provably trusted. Replace with explicit JSX or sanitize via a vetted library. Why: OWASP basics. Already partially flagged by the security analyzer. Rule id: fq.dangerous-html

Fq dangerous html

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — collector/__tests__/utils/WhisperProviders/ffmpeg/index.test.js:51

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — collector/processLink/helpers/index.js:35

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — collector/utils/downloadURIToFile/index.js:44

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — collector/utils/extensions/Confluence/ConfluenceLoader/index.js:73

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — collector/utils/extensions/DrupalWiki/DrupalWiki/index.js:236

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — collector/utils/extensions/RepoLoader/GithubRepo/RepoLoader/index.js:198

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — collector/utils/extensions/RepoLoader/GitlabRepo/RepoLoader/index.js:339

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — collector/utils/extensions/YoutubeTranscript/YoutubeLoader/youtube-transcript.js:149

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — frontend/src/hooks/useWebPushNotifications.js:104

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — frontend/src/models/agentFlows.js:79

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — frontend/src/models/communityHub.js:168

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — frontend/src/models/dataConnector.js:8

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — frontend/src/models/system.js:431

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — frontend/src/models/workspace.js:259

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/endpoints/utils/dockerModelRunnerUtils.js:34

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/endpoints/utils/lemonadeUtilsEndpoints.js:34

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/models/communityHub.js:193

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/agents/aibitat/plugins/outlook/lib.js:648

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/agents/aibitat/plugins/web-browsing.js:181

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/AiProviders/apipie/index.js:337

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/AiProviders/cometapi/index.js:388

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/AiProviders/dockerModelRunner/index.js:225

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/AiProviders/gemini/index.js:194

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/AiProviders/giteeai/index.js:197

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/AiProviders/lemonade/index.js:251

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/AiProviders/lmStudio/index.js:84

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/AiProviders/novita/index.js:410

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/AiProviders/ollama/index.js:151

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/AiProviders/openRouter/index.js:518

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/AiProviders/ppio/index.js:227

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/collectorApi/index.js:112

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/EmbeddingEngines/openRouter/index.js:103

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/telegramBot/utils/media.js:9

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph quality Integrity conf 1.00 `fetch()` without try/.catch or AbortSignal — server/utils/vectorDbProviders/astra/index.js:420

Bare `fetch(...)` will throw an unhandled rejection on network failure. Wrap in try/catch, attach a `.catch(...)`, or pass an AbortSignal with a timeout.

runtime safetyRobustness

medium System graph hardware Supply chain conf 1.00 Docker base image uses a mutable or implicit tag: build-${TARGETARCH}

Container tags can be retagged upstream. Pin production base images to a reviewed digest (`image@sha256:...`) when reproducibility and supply-chain integrity matter.

docker/Dockerfile:131 containersPinned dependencies

medium System graph hardware Supply chain conf 1.00 Docker base image uses a mutable or implicit tag: build-${TARGETARCH}

Container tags can be retagged upstream. Pin production base images to a reviewed digest (`image@sha256:...`) when reproducibility and supply-chain integrity matter.

cloud-deployments/openshift/Dockerfile:161 containersPinned dependencies

medium System graph hardware Security conf 1.00 Dockerfile runs as root: cloud-deployments/huggingface-spaces/Dockerfile

No non-root USER set. Containers running as root expand the blast radius of any vulnerability inside the image.

Container

medium System graph hardware Security conf 1.00 Dockerfile runs as root: cloud-deployments/openshift/Dockerfile

No non-root USER set. Containers running as root expand the blast radius of any vulnerability inside the image.

Container

medium System graph cicd CI/CD security conf 1.00 13 occurrences GitHub Action is tag-pinned rather than SHA-pinned

docker/setup-buildx-action@v3 can move without a code change in this repo. Pin third-party actions to a reviewed 40-character commit SHA.

4 files, 13 locations

.github/workflows/sponsors.yaml:18, 27, 34 (6 hits)

.github/workflows/build-qa-tag.yaml:43, 48, 58 (3 hits)

.github/workflows/build-and-push-image-semver.yaml:36, 67 (2 hits)

.github/workflows/build-and-push-image.yaml:55, 88 (2 hits)

CI/CD securitySupply chainGitHub Actions

medium System graph cicd CI/CD security conf 1.00 5 occurrences GitHub Actions workflow grants broad write permissions

CI tokens with write permissions increase blast radius when an action, dependency, or PR workflow is compromised. Prefer job-level least-privilege permissions.

5 files, 5 locations

.github/workflows/build-and-push-image-semver.yaml

.github/workflows/build-and-push-image.yaml

.github/workflows/build-qa-tag.yaml

.github/workflows/cleanup-qa-tag.yaml

.github/workflows/sponsors.yaml

CI/CD securitySupply chainGithub actions

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/components/ChatBubble/index.jsx:23

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/components/ChatBubble/index.jsx:23 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/components/Modals/ManageWorkspace/DataConnectors/Connectors/Github/index.jsx:252

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/components/Modals/ManageWorkspace/DataConnectors/Connectors/Github/index.jsx:252 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/components/Modals/ManageWorkspace/DataConnectors/Connectors/Gitlab/index.jsx:280

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/components/Modals/ManageWorkspace/DataConnectors/Connectors/Gitlab/index.jsx:280 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/components/Modals/ManageWorkspace/Documents/WorkspaceDirectory/index.jsx:343

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/components/Modals/ManageWorkspace/Documents/WorkspaceDirectory/index.jsx:343 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/Chartable/index.jsx:397

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/Chartable/index.jsx:397 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/HistoricalMessage/index.jsx:308

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/HistoricalMessage/index.jsx:308 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/PromptReply/index.jsx:100

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/PromptReply/index.jsx:100 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/ThoughtContainer/index.jsx:203

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/components/WorkspaceChat/ChatContainer/ChatHistory/ThoughtContainer/index.jsx:203 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/pages/GeneralSettings/ChatEmbedWidgets/EmbedChats/MarkdownRenderer.jsx:82

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/pages/GeneralSettings/ChatEmbedWidgets/EmbedChats/MarkdownRenderer.jsx:82 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/pages/GeneralSettings/ChatEmbedWidgets/EmbedConfigs/EmbedRow/CodeSnippetModal/index.jsx:108

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/pages/GeneralSettings/ChatEmbedWidgets/EmbedConfigs/EmbedRow/CodeSnippetModal/index.jsx:108 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/pages/GeneralSettings/Chats/MarkdownRenderer.jsx:82

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/pages/GeneralSettings/Chats/MarkdownRenderer.jsx:82 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/pages/GeneralSettings/CommunityHub/ImportItem/Steps/PullAndReview/HubItem/AgentSkill.jsx:175

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/pages/GeneralSettings/CommunityHub/ImportItem/Steps/PullAndReview/HubItem/AgentSkill.jsx:175 Dangerous innerhtml

medium System graph security security conf 1.00 Insecure pattern 'dangerous_innerhtml' in frontend/src/pages/GeneralSettings/ScheduledJobs/RunDetailPage.jsx:377

Found a known-risky pattern (dangerous_innerhtml). Review and replace if possible.

frontend/src/pages/GeneralSettings/ScheduledJobs/RunDetailPage.jsx:377 Dangerous innerhtml

medium System graph network Security conf 1.00 Privileged port 1000 in use

Port 1000 is privileged (<1024). Make sure the service runs with the right caps or front it with a non-privileged port via a load balancer.

cloud-deployments/helm/charts/anythingllm/values.yaml Ports

medium System graph quality Tests conf 1.00 Very low test-to-source ratio

22 test file(s) for 1058 source file(s) (ratio 0.02). Consider adding integration or unit tests for critical paths.

Coverage

low Security checks cicd CI/CD security conf 0.72 .dockerignore misses sensitive defaults

.dockerignore exists but does not cover common secret or VCS patterns.

.dockerignore CI/CD securitycontainers

high Security checks cicd CI/CD security conf 0.62 Compose service lacks no-new-privileges hardening

no-new-privileges prevents processes from gaining additional privileges through setuid binaries or file capabilities.

docker/docker-compose.yml:7 CI/CD securitycontainers

low Security checks quality Quality conf 0.60 30 occurrences Duplicated implementation block across source files

Duplicate implementation blocks are maintenance debt. Keep them visible, but they are not a high-severity defect unless the duplicated logic is security-sensitive or drifting.

12 files, 26 locations

frontend/src/components/EmbeddingSelection/LocalAiOptions/index.jsx:71, 109, 150, 197, 235 (5 hits)

collector/processSingleFile/convert/asImage.js:19, 36, 37 (3 hits)

collector/processSingleFile/convert/asTxt.js:21, 39, 40 (3 hits)

frontend/src/components/EmbeddingSelection/LiteLLMOptions/index.jsx:35, 137, 147 (3 hits)

collector/processSingleFile/convert/asEPub.js:41, 42 (2 hits)

collector/processSingleFile/convert/asOfficeMime.js:24, 40 (2 hits)

collector/processSingleFile/convert/asPDF/index.js:42, 63 (2 hits)

frontend/src/components/CommunityHub/PublishEntityModal/SystemPrompts/index.jsx:9, 38 (2 hits)

duplicationquality

low Security checks software dependencies conf 0.90 npm package `@anthropic-ai/sdk` is minor version(s) behind (^0.39.0 -> 0.100.1)

`@anthropic-ai/sdk` is pinned/resolved at ^0.39.0 but the latest stable release on the npm registry is 0.100.1 (minor version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

low Security checks software dependencies conf 0.90 npm package `@aws-sdk/client-bedrock-runtime` is minor version(s) behind (^3.775.0 -> 3.1062.0)

`@aws-sdk/client-bedrock-runtime` is pinned/resolved at ^3.775.0 but the latest stable release on the npm registry is 3.1062.0 (minor version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-…

server/package.json

low Security checks software dependencies conf 0.90 npm package `@lancedb/lancedb` is minor version(s) behind (0.15.0 -> 0.30.0)

`@lancedb/lancedb` is pinned/resolved at 0.15.0 but the latest stable release on the npm registry is 0.30.0 (minor version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

low Security checks software dependencies conf 0.90 npm package `@modelcontextprotocol/sdk` is minor version(s) behind (^1.24.3 -> 1.29.0)

`@modelcontextprotocol/sdk` is pinned/resolved at ^1.24.3 but the latest stable release on the npm registry is 1.29.0 (minor version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PR…

server/package.json

low Security checks software dependencies conf 0.90 npm package `@qdrant/js-client-rest` is minor version(s) behind (^1.9.0 -> 1.18.0)

`@qdrant/js-client-rest` is pinned/resolved at ^1.9.0 but the latest stable release on the npm registry is 1.18.0 (minor version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs ra…

server/package.json

low Security checks software dependencies conf 0.90 npm package `@vscode/ripgrep` is minor version(s) behind (1.17.1 -> 1.18.0)

`@vscode/ripgrep` is pinned/resolved at 1.17.1 but the latest stable release on the npm registry is 1.18.0 (minor version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

low Security checks software dependencies conf 0.90 npm package `@xenova/transformers` is minor version(s) behind (^2.14.0 -> 2.17.2)

`@xenova/transformers` is pinned/resolved at ^2.14.0 but the latest stable release on the npm registry is 2.17.2 (minor version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs rai…

server/package.json

low Security checks software dependencies conf 0.90 npm package `cheerio` is minor version(s) behind (^1.0.0 -> 1.2.0)

`cheerio` is pinned/resolved at ^1.0.0 but the latest stable release on the npm registry is 1.2.0 (minor version(s) behind). Outdated dependencies accumulate unpatched bugs and make future security upgrades harder. This is the version-currency signal Dependabot version-update PRs raise.

server/package.json

low Security checks quality Quality conf 0.64 Public docs site has no llms.txt

AI coding agents increasingly read llms.txt to find canonical docs and API workflows. Without it, agents are more likely to browse pages repeatedly or use stale instructions.

llms.txt

low Security checks quality Quality conf 0.50 Public web app has no humans.txt

humans.txt is optional, but it gives operators and reviewers a simple place to find ownership, contact, and important public documentation links.

humans.txt

low Security checks quality Quality conf 0.72 Public web app has no sitemap

A sitemap gives search engines, docs crawlers, and AI agents a structured list of public pages. Without one, important docs and product pages are easy to miss.

sitemap.xml

low Security checks quality Quality conf 0.74 robots.txt does not advertise a sitemap

Sitemap directives in robots.txt help crawlers and AI agents find the canonical public URL inventory quickly.

frontend/public/robots.txt

high Security checks quality Quality conf 0.62 9 occurrences Source file name looks like an AI patch artifact

Files named as final, fixed, copy, new, or backup are often temporary patch artifacts. They may be legitimate, but they deserve review before becoming production surface area.

9 files, 9 locations

server/utils/agents/aibitat/plugins/gmail/drafts/gmail-create-draft.js:1

server/utils/agents/aibitat/plugins/gmail/drafts/gmail-delete-draft.js:1

server/utils/agents/aibitat/plugins/gmail/drafts/gmail-get-draft.js:1

server/utils/agents/aibitat/plugins/gmail/drafts/gmail-send-draft.js:1

server/utils/agents/aibitat/plugins/gmail/drafts/gmail-update-draft.js:1

server/utils/agents/aibitat/plugins/outlook/drafts/outlook-create-draft.js:1

server/utils/agents/aibitat/plugins/outlook/drafts/outlook-delete-draft.js:1

server/utils/agents/aibitat/plugins/outlook/drafts/outlook-send-draft.js:1

low System graph frontend Frontend quality conf 1.00 "active" state uses light bg in a dark theme — frontend/src/components/WorkspaceChat/ChatContainer/PromptInput/SpeechToText/MicButton/index.jsx:57

A ternary like `active ? 'bg-white' : '...'` (or bg-gray-100/200) on a dark theme produces jarring white pills. Use a dark-emphasized active state instead — border + ring or slightly brighter dark bg. Example: `active ? 'bg-gray-800 border-gray-500 ring-1 ring-blue-500/30' : '…'`. Why: P-E in CHEC…

Fq active light bg

low System graph frontend Frontend quality conf 1.00 "active" state uses light bg in a dark theme — frontend/src/components/WorkspaceChat/ChatContainer/PromptInput/ToolsMenu/index.jsx:193

A ternary like `active ? 'bg-white' : '...'` (or bg-gray-100/200) on a dark theme produces jarring white pills. Use a dark-emphasized active state instead — border + ring or slightly brighter dark bg. Example: `active ? 'bg-gray-800 border-gray-500 ring-1 ring-blue-500/30' : '…'`. Why: P-E in CHEC…

Fq active light bg

low System graph quality Integrity conf 1.00 231 env vars used in code but missing from .env.example

Drift between code and config docs. The first few: `AGENT_AUTO_APPROVED_SKILLS`, `AGENT_BAIDU_SEARCH_API_KEY`, `AGENT_BING_SEARCH_API_KEY`, `AGENT_EXA_API_KEY`, `AGENT_MAX_TOOL_CALLS`, `AGENT_PERPLEXITY_API_KEY`, `AGENT_SEARCHAPI_API_KEY`, `AGENT_SEARCHAPI_ENGINE` + 223 more. Add them (with a place…

config drift

low System graph quality Maintenance conf 1.00 35 TODO/FIXME markers

High count of TODO/FIXME/HACK markers — track them as issues so they're not forgotten.

low System graph hardware Supply chain conf 1.00 Docker base image is tag-pinned but not digest-pinned: mintplexlabs/anythingllm:render

Container tags can be retagged upstream. Pin production base images to a reviewed digest (`image@sha256:...`) when reproducibility and supply-chain integrity matter.

cloud-deployments/huggingface-spaces/Dockerfile:21 containersPinned dependencies

low System graph hardware Supply chain conf 1.00 Docker base image is tag-pinned but not digest-pinned: node:18-slim

Container tags can be retagged upstream. Pin production base images to a reviewed digest (`image@sha256:...`) when reproducibility and supply-chain integrity matter.

docker/Dockerfile:141 containersPinned dependencies

low System graph hardware Supply chain conf 1.00 Docker base image is tag-pinned but not digest-pinned: node:18-slim

Container tags can be retagged upstream. Pin production base images to a reviewed digest (`image@sha256:...`) when reproducibility and supply-chain integrity matter.

cloud-deployments/openshift/Dockerfile:171 containersPinned dependencies

low System graph hardware Supply chain conf 1.00 Docker base image is tag-pinned but not digest-pinned: ubuntu:noble-20251013

Container tags can be retagged upstream. Pin production base images to a reviewed digest (`image@sha256:...`) when reproducibility and supply-chain integrity matter.

docker/Dockerfile:2 containersPinned dependencies

low System graph hardware Supply chain conf 1.00 Docker base image is tag-pinned but not digest-pinned: ubuntu:noble-20251013

Container tags can be retagged upstream. Pin production base images to a reviewed digest (`image@sha256:...`) when reproducibility and supply-chain integrity matter.

cloud-deployments/openshift/Dockerfile:14 containersPinned dependencies

low System graph software Dead code candidate conf 1.00 File has no detected symbols: eslint.config.js