Public scan — anyone with this URL can view this analysis. Sign up to track your own repos privately, run scheduled re-scans, and get AI fix prompts via your dashboard.
Sign up free Scan another repo
82 of your 192 findings came from Repobility's proprietary detections. ✓ Repobility tags below mark them.

Scan timing: clone 2.86s · analysis 7.21s · 2.0 MB · GitHub API rate-limit (preflight)

ultralytics/yolov5

https://github.com/ultralytics/yolov5 · scanned 2026-06-05 09:57 UTC (5 days, 14 hours ago) · 10 languages

394 raw signals (174 security + 220 graph) 21st percentile · Python · small (2-20K LoC) System graph score 75 (lower by 22)

File as issue Image
UNIFIED Repobility · multi-layer engine · AI coders

Complete repo analysis

Last scanned 5 days, 14 hours ago · v2 · 183 actionable findings from 2 signal sources. 101 repeated signals grouped for readability. Security checks, system graph analysis, and verified AI-agent feedback are merged into one review queue.

JSON
Combined
64.2
/100
Security checks
53
101 findings
System graph
75
88.9% cov · 82 findings
Critical
4
click to filter
Agents
6
0 votes
Crowd
0
reported
Score breakdown â 2026-05-18-v5
Component Sub-score Weight Contribution
structure_score 75.0 0.15 11.25
security_score 30.7 0.25 7.67
testing_score 25.0 0.20 5.00
documentation_score 98.6 0.15 14.79
practices_score 76.0 0.15 11.40
code_quality 36.8 0.10 3.68
Overall 1.00 53.8
Severity distribution — click a segment to filter
Active filters: excluding tests × Reset all
Severity: Critical 4 High 65 Medium 41 Low 47 9-Layer: Software Security Quality Integrity Frontend Hardware Data Network Cicd Source: Security checks 101 System graph 82 Crowd 0 Layer: Software 82 Cicd 18 Quality 54 Security 21 Api 1 Hardware 6 Frontend 1
Scan summary Quality grade C- (54/100). Dimensions: security 31, maintainability 75. 174 findings (82 security). 17,927 lines analyzed.

Showing 157 of 183 actionable findings. 284 raw detector signals were grouped into reader-sized issues. Click TP / FP to vote on a finding's accuracy — votes adjust the confidence weighting and improve detection across the platform.

critical Security checks software dependencies conf 0.88 gitpython: GHSA-pr76-5cm5-w9cj
GitPython vulnerable to remote code execution due to insufficient sanitization of input arguments
requirements.txt
critical Security checks software dependencies conf 0.88 pyyaml: GHSA-8q59-q68h-6hv4
Improper Input Validation in PyYAML
requirements.txt
critical Security checks software dependencies conf 0.88 torch: GHSA-47fc-vmwq-366v
PyTorch vulnerable to arbitrary code execution
requirements.txt
critical Security checks software dependencies conf 0.88 torch: GHSA-53q9-r3pm-6pq6
PyTorch: `torch.load` with `weights_only=True` leads to remote code execution
requirements.txt
low Security checks cicd CI/CD security conf 0.35 ✓ Repobility 4 occurrences Workflow references repository secrets in a pull_request workflow
Fork pull_request runs do not receive normal repository secrets on GitHub Actions. Review this as a reliability/intent signal, not as direct fork-secret exfiltration. Raise severity only for pull_request_target or another trusted-context path that runs untrusted PR code with secrets.
2 files, 4 locations
.github/workflows/format.yml:27, 34, 35 (3 hits)
.github/workflows/ci-testing.yml:155
CI/CD securityworkflow secretsGitHub Actions
low Security checks quality Quality conf 1.00 ✓ Repobility [MINED006] Overcatch Baseexception: except BaseException: ... — prevents Ctrl+C and SystemExit from working.
Review and fix per the pattern semantics. See CWE-705 / for context.
utils/loggers/wandb/wandb_utils.py:171
high Security checks quality Quality conf 1.00 ✓ Repobility [MINED034] Python Subprocess Shell True: subprocess(..., shell=True) enables command injection.
Review and fix per the pattern semantics. See CWE-78 / for context.
utils/downloads.py:29
high Security checks quality Quality conf 1.00 ✓ Repobility [MINED036] Python Os System Call: os.system() invokes shell with no escaping.
Review and fix per the pattern semantics. See CWE-78 / for context.
utils/__init__.py:76
high Security checks quality Quality conf 1.00 ✓ Repobility [MINED104] Chmod 777: chmod 777 makes a file or directory world-readable, world-writable, AND world-executable. Local privilege escalation surface; audit-failing for most compliance frameworks.
Use the least-privilege mode the file actually needs (e.g. 640 for configs, 750 for executables). For directories that genuinely need shared write access, use a group with chmod g+w and chown the right group.
utils/aws/userdata.sh:12
high Security checks quality Quality conf 1.00 ✓ Repobility 25 occurrences `self.epoch` used but never assigned in __init__
Method `__iter__` of class `SmartDistributedSampler` reads `self.epoch`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance.
2 files, 25 locations
utils/dataloaders.py:138, 141, 143, 147, 148, 150, 236, 360, +7 more (18 hits)
utils/general.py:202, 207, 208, 233 (7 hits)
high Security checks software dependencies conf 0.90 ✓ Repobility Dockerfile `ADD https://ultralytics.com/assets/Arial.ttf`
Dockerfile `ADD <url>` downloads a remote artifact into the image with no integrity check. If the host or DNS is compromised between layers — or if the URL serves a different file later — malicious content gets baked into the image.
utils/docker/Dockerfile:10
high Security checks software dependencies conf 0.90 ✓ Repobility Dockerfile FROM `gcr.io/google-appengine/python (no tag)` not pinned by digest
`FROM gcr.io/google-appengine/python (no tag)` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity.
utils/google_app_engine/Dockerfile:1
high Security checks software dependencies conf 0.90 ✓ Repobility Dockerfile FROM `pytorch/pytorch:2.8.0-cuda12.8-cudnn9-runtime` not pinned by digest
`FROM pytorch/pytorch:2.8.0-cuda12.8-cudnn9-runtime` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity.
utils/docker/Dockerfile:7
medium Security checks cicd CI/CD security conf 0.90 ✓ Repobility 12 occurrences GitHub Action is tag-pinned rather than SHA-pinned
Action `astral-sh/setup-uv` pinned to mutable ref `@v7` uses a mutable tag or branch. Pin external actions to a reviewed full commit SHA when the workflow is security-sensitive.
3 files, 12 locations
.github/workflows/docker.yml:27, 30, 33, 39, 49, 58 (6 hits)
.github/workflows/ci-testing.yml:33, 71, 152 (4 hits)
.github/workflows/cla.yml:30 (2 hits)
CI/CD securitySupply chainGitHub Actions
low Security checks cicd CI/CD security conf 0.90 ✓ Repobility 11 occurrences GitHub Action is tag-pinned rather than SHA-pinned
Action `actions/checkout` pinned to mutable ref `@v6` uses a mutable tag or branch. Pin external actions to a reviewed full commit SHA when the workflow is security-sensitive.
5 files, 11 locations
.github/workflows/ci-testing.yml:29, 30, 67, 68 (4 hits)
.github/workflows/merge-main-into-prs.yml:24, 27 (3 hits)
.github/workflows/docker.yml:22 (2 hits)
.github/workflows/links.yml:25
.github/workflows/stale.yml:17
CI/CD securitySupply chainGitHub Actions
high Security checks cicd CI/CD security conf 0.90 ✓ Repobility 3 occurrences GitHub Action is tag-pinned rather than SHA-pinned
Action `ultralytics/actions` pinned to mutable ref `@main` uses a mutable tag or branch. Pin external actions to a reviewed full commit SHA when the workflow is security-sensitive.
2 files, 3 locations
.github/workflows/links.yml:33, 59 (2 hits)
.github/workflows/format.yml:25
CI/CD securitySupply chainGitHub Actions
high Security checks software dependencies conf 0.88 gitpython: GHSA-2mqj-m65w-jghx
Untrusted search path under some conditions on Windows allows arbitrary code execution
requirements.txt
high Security checks software dependencies conf 0.88 gitpython: GHSA-7545-fcxq-7j24
GitPython reference APIs has a path traversal vulnerability that allows arbitrary file write and delete outside the repository
requirements.txt
high Security checks software dependencies conf 0.88 gitpython: GHSA-mv93-w799-cj2w
GitPython: Newline injection in config_writer() section parameter bypasses CVE-2026-42215 patch, enabling RCE via core.hooksPath
requirements.txt
high Security checks software dependencies conf 0.88 gitpython: GHSA-v87r-6q3f-2j67
GitPython: Newline injection in config_writer().set_value() enables RCE via core.hooksPath
requirements.txt
high Security checks software dependencies conf 0.88 gitpython: GHSA-x2qx-6953-8485
GitPython: Unsafe option check validates multi_options before shlex.split transformation
requirements.txt
high Security checks software dependencies conf 0.88 gitpython: PYSEC-2023-137
GitPython before 3.1.32 does not block insecure non-multi options in clone and clone_from. NOTE: this issue exists because of an incomplete fix for CVE-2022-24439.
requirements.txt
high Security checks software dependencies conf 0.88 gitpython: PYSEC-2023-161
GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the `git` command, if a user runs GitPython from a repo has a `git.exe` or `git` exe…
requirements.txt
high Security checks software dependencies conf 0.88 gitpython: PYSEC-2023-165
GitPython is a python library used to interact with Git repositories. In order to resolve some git references, GitPython reads files from the `.git` directory, in some places the name of the file being read is provided by the user, GitPython doesn't check if this file is located outside the `.git`…
requirements.txt
high Security checks software dependencies conf 0.88 opencv-python: GHSA-3448-vrgh-85xr
NULL Pointer Dereference in OpenCV.
requirements.txt
high Security checks software dependencies conf 0.88 opencv-python: GHSA-8849-5h85-98qw
Out-of-bounds Write in OpenCV
requirements.txt
high Security checks software dependencies conf 0.88 opencv-python: GHSA-fm39-cw8h-3p63
Out-of-bounds Read in OpenCV
requirements.txt
high Security checks software dependencies conf 0.88 opencv-python: GHSA-fw99-f933-rgh8
Out-of-bounds Read and Out-of-bounds Write in OpenCV
requirements.txt
high Security checks software dependencies conf 0.88 opencv-python: GHSA-q799-q27x-vp7w
Out-of-bounds Write in OpenCV
requirements.txt
high Security checks software dependencies conf 0.88 opencv-python: PYSEC-2023-183
opencv-python versions before v4.8.1.78 bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863. opencv-python v4.8.1.78 upgrades the bundled libwebp binary to v1.3.2.
requirements.txt
high Security checks software dependencies conf 0.88 pillow: GHSA-cfh3-3jmp-rvhc
Pillow affected by out-of-bounds write when loading PSD images
requirements.txt
high Security checks software dependencies conf 0.88 pillow: GHSA-pwv6-vv43-88gr
Pillow has an OOB Write with Invalid PSD Tile Extents (Integer Overflow)
requirements.txt
high Security checks software dependencies conf 0.88 pillow: GHSA-whj4-6x5x-4v2j
FITS GZIP decompression bomb in Pillow
requirements.txt
high Security checks software dependencies conf 0.88 pillow: PYSEC-2026-165
Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when Pillow keeps track of the current position, it may lead to an integer overflow. This issue has been patched in version 12.2.0.
requirements.txt
high Security checks software dependencies conf 0.88 scipy: PYSEC-2023-102
A refcounting issue which leads to potential memory leak was discovered in scipy commit 8627df31ab in Py_FindObjects() function.
requirements.txt
high Security checks software dependencies conf 0.88 scipy: PYSEC-2023-114
** DISPUTED ** A use-after-free issue was discovered in Py_FindObjects() function in SciPy versions prior to 1.8.0. NOTE: the vendor and discoverer indicate that this is not a security issue.
requirements.txt
high Security checks software dependencies conf 0.88 setuptools: PYSEC-2025-49
setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path traversal vulnerability in `PackageIndex` is present in setuptools prior to version 78.1.1. An attacker would be allowed to write files to arbitrary locations on the filesystem with…
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2024-250
Pytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csrc/jit/mobile/flatbuffer_loader.cpp.
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2024-251
Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in torch/csrc/jit/mobile/interpreter.cpp.
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2024-252
PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in the component /runtime/vararg_functions.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2024-259
In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by multiple parties because this is intended behavior in PyTorch distributed computing.
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2025-191
A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0+cu124. Affected by this issue is the function torch.mkldnn_max_pool2d. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed to the public and may be u…
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2025-198
In PyTorch through 2.6.0, when eager is used, nn.PairwiseDistance(p=2) produces incorrect results.
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2025-203
An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service (DoS) when performing a slice operation.
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2025-204
pytorch v2.8.0 was discovered to display unexpected behavior when the components torch.rot90 and torch.randn_like are used together.
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2025-205
A syntax error in the component proxy_tensor.py of pytorch v2.7.0 allows attackers to cause a Denial of Service (DoS).
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2025-206
pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-.long().
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2025-207
A Name Error occurs in pytorch v2.7.0 when a PyTorch model consists of torch.cummin and is compiled by Inductor, leading to a Denial of Service (DoS).
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2025-208
A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv() and is compiled by Inductor, leading to a Denial of Service (DoS).
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2025-209
An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.
requirements.txt
high Security checks software dependencies conf 0.88 torch: PYSEC-2026-139
A vulnerability was identified in PyTorch 2.10.0. The affected element is an unknown function of the component pt2 Loading Handler. The manipulation leads to deserialization. The attack can only be performed from a local environment. The exploit is publicly available and might be used. The project …
requirements.txt
high Security checks software dependencies conf 0.88 urllib3: GHSA-38jv-5279-wg99
Decompression-bomb safeguards bypassed when following HTTP redirects (streaming API)
requirements.txt
high Security checks software dependencies conf 0.88 urllib3: PYSEC-2026-141
urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin redirects followed from the low-level API via ProxyManager.connection_from_url().urlopen(..., assert_same_host=False) still forward these sensitive headers. This vulnerability is fixed in 2.7.0.
requirements.txt
high Security checks software dependencies conf 0.88 urllib3: PYSEC-2026-142
urllib3 is an HTTP client library for Python. From 2.6.0 to before 2.7.0, urllib3 could decompress the whole response instead of the requested portion (1) during the second HTTPResponse.read(amt=N) call when the response was decompressed using the official Brotli library or (2) when HTTPResponse.dr…
requirements.txt
high Security checks software dependencies conf 0.88 werkzeug: GHSA-2g68-c3qc-8985
Werkzeug debugger vulnerable to remote execution when interacting with attacker controlled domain
utils/google_app_engine/additional_requirements.txt
high System graph security auth conf 1.00 Flask mutation route `predict` without `@login_required` — utils/flask_rest_api/restapi.py:26
Flask route declares POST/PUT/DELETE/PATCH methods without an auth decorator. Add `@login_required` (Flask-Login) or equivalent.
utils/flask_rest_api/restapi.py:26 securityAuth flask unauth route
high System graph cicd CI/CD security conf 1.00 3 occurrences GitHub Action tracks a moving branch
ultralytics/actions@main can move without a code change in this repo. Pin third-party actions to a reviewed 40-character commit SHA.
2 files, 3 locations
.github/workflows/links.yml:33, 59 (2 hits)
.github/workflows/format.yml:25
CI/CD securitySupply chainGithub actions
high System graph security security conf 1.00 Insecure pattern 'eval_used' in benchmarks.py:143
Found a known-risky pattern (eval_used). Review and replace if possible.
benchmarks.py:143 Eval used
high System graph security security conf 1.00 Insecure pattern 'eval_used' in classify/val.py:105
Found a known-risky pattern (eval_used). Review and replace if possible.
classify/val.py:105 Eval used
high System graph security security conf 1.00 Insecure pattern 'eval_used' in export.py:1379
Found a known-risky pattern (eval_used). Review and replace if possible.
export.py:1379 Eval used
high System graph security security conf 1.00 Insecure pattern 'eval_used' in models/common.py:514
Found a known-risky pattern (eval_used). Review and replace if possible.
models/common.py:514 Eval used
high System graph security security conf 1.00 Insecure pattern 'eval_used' in models/experimental.py:107
Found a known-risky pattern (eval_used). Review and replace if possible.
models/experimental.py:107 Eval used
high System graph security security conf 1.00 Insecure pattern 'eval_used' in models/tf.py:525
Found a known-risky pattern (eval_used). Review and replace if possible.
models/tf.py:525 Eval used
high System graph security security conf 1.00 Insecure pattern 'eval_used' in models/yolo.py:390
Found a known-risky pattern (eval_used). Review and replace if possible.
models/yolo.py:390 Eval used
high System graph security security conf 1.00 Insecure pattern 'eval_used' in segment/val.py:226
Found a known-risky pattern (eval_used). Review and replace if possible.
segment/val.py:226 Eval used
high System graph security security conf 1.00 Insecure pattern 'eval_used' in utils/dataloaders.py:452
Found a known-risky pattern (eval_used). Review and replace if possible.
utils/dataloaders.py:452 Eval used
high System graph security security conf 1.00 Insecure pattern 'eval_used' in utils/torch_utils.py:454
Found a known-risky pattern (eval_used). Review and replace if possible.
utils/torch_utils.py:454 Eval used
high System graph security security conf 1.00 Insecure pattern 'eval_used' in val.py:282
Found a known-risky pattern (eval_used). Review and replace if possible.
val.py:282 Eval used
high System graph security security conf 1.00 Insecure pattern 'exec_used' in utils/general.py:578
Found a known-risky pattern (exec_used). Review and replace if possible.
utils/general.py:578 Exec used
low Security checks security Injection conf 0.50 [SEC005] Command Injection Risk: Unsafe shell execution or eval of user input.
Use subprocess with shell=False and a list of args. Never eval user input.
utils/downloads.py:29
medium Security checks quality Quality conf 1.00 [SEC123] Production stack trace / debug output exposed: Debug mode left on in production exposes stack traces, environment variables, framework internals — sometimes triggers RCE (Django debug page with arbitrary template eval).
Set DEBUG=False / APP_DEBUG=false in production. Provide a generic 500 handler that logs to backend but returns a sanitized page to clients.
utils/flask_rest_api/restapi.py:71
low Security checks quality Error handling conf 0.55 ✓ Repobility 21 occurrences Broad exception handler needs review
This handler catches Exception/BaseException. It is actionable when it swallows errors without logging, re-raising, or returning a structured error. Handlers that intentionally convert exceptions into typed error results should not be treated as high risk.
11 files, 21 locations
utils/torch_utils.py:108, 182, 193, 203, 316, 390 (6 hits)
utils/downloads.py:114, 117, 120 (3 hits)
export.py:624, 743 (2 hits)
utils/dataloaders.py:595, 1171 (2 hits)
utils/general.py:367, 1274 (2 hits)
benchmarks.py:204
hubconf.py:85
models/yolo.py:492
Error handlingquality
high Security checks cicd CI/CD security conf 0.82 Docker final stage has no non-root USER
Docker images run as root unless the image or Dockerfile switches to a non-root user.
utils/google_app_engine/Dockerfile:1 CI/CD securitycontainers
high Security checks cicd CI/CD security conf 0.82 Docker final stage has no non-root USER
Docker images run as root unless the image or Dockerfile switches to a non-root user.
utils/docker/Dockerfile:7 CI/CD securitycontainers
medium Security checks cicd CI/CD security conf 0.84 Dockerfile ADD downloads remote content
ADD can fetch remote URLs without checksum verification. This makes builds dependent on mutable network content.
utils/docker/Dockerfile:10 CI/CD securitycontainers
medium Security checks cicd CI/CD security conf 0.76 Dockerfile copies broad context with incomplete .dockerignore
COPY . or ADD . is safer when .dockerignore excludes secrets, git history, keys, and generated artifacts.
utils/docker/Dockerfile:28 CI/CD securitycontainers
medium Security checks cicd CI/CD security conf 0.90 Dockerfile installs dependencies after copying the full source tree
When dependency installation comes after COPY ., any source change invalidates the dependency layer and makes Docker rebuild much more slowly.
utils/docker/Dockerfile:33 CI/CD securitycontainers
medium Security checks cicd CI/CD security conf 0.86 Dockerfile separates apt update from install
Splitting apt update and install across layers can reuse stale package indexes and make builds less reliable.
utils/docker/Dockerfile:14 CI/CD securitycontainers
medium Security checks software dependencies conf 0.88 opencv-python: GHSA-hxfw-jm98-v4mq
Divide By Zero in OpenCV.
requirements.txt
medium Security checks software dependencies conf 0.88 opencv-python: GHSA-x3rm-644h-67m8
Out-of-bounds Read in OpenCV
requirements.txt
medium Security checks software dependencies conf 0.88 pillow: GHSA-r73j-pqj5-w3x7
Pillow has a PDF Parsing Trailer Infinite Loop (DoS)
requirements.txt
high Security checks software dependencies conf 0.70 Remote install command pipes network code directly to a shell
Agent helper projects often publish one-line installers. `curl | sh` style commands are convenient, but they bypass review unless the script is pinned, signed, or checksum-verified.
data/scripts/get_imagenet.sh:45
medium Security checks software dependencies conf 0.88 requests: GHSA-9hjg-9r4m-mvj7
Requests vulnerable to .netrc credentials leak via malicious URLs
requirements.txt
medium Security checks software dependencies conf 0.88 requests: GHSA-gc5v-m9x4-r6x2
Requests has Insecure Temp File Reuse in its extract_zipped_paths() utility function
requirements.txt
medium Security checks software dependencies conf 0.90 ✓ Repobility 2 occurrences requirements.txt: `psutil # system resources` has no version pin
Unpinned pip requirement means every fresh install may resolve a different version. Newer releases can introduce malicious code (typosquats, account compromises). Reproducible installs need exact pins.
lines 10, 42
requirements.txt:10, 42 (2 hits)
medium Security checks software dependencies conf 0.88 torch: GHSA-887c-mr87-cxwp
PyTorch Improper Resource Shutdown or Release vulnerability
requirements.txt
medium Security checks software dependencies conf 0.88 werkzeug: GHSA-29vq-49wr-vm6x
Werkzeug safe_join() allows Windows special device names
utils/google_app_engine/additional_requirements.txt
medium Security checks software dependencies conf 0.88 werkzeug: GHSA-87hc-h4r5-73f7
Werkzeug safe_join() allows Windows special device names with compound extensions
utils/google_app_engine/additional_requirements.txt
medium Security checks software dependencies conf 0.88 werkzeug: GHSA-f9vj-2wh5-fj8j
Werkzeug safe_join not safe on Windows
utils/google_app_engine/additional_requirements.txt
medium Security checks software dependencies conf 0.88 werkzeug: GHSA-hgf8-39gv-g3f2
Werkzeug safe_join() allows Windows special device names
utils/google_app_engine/additional_requirements.txt
medium Security checks software dependencies conf 0.88 werkzeug: GHSA-q34m-jh98-gwm2
Werkzeug possible resource exhaustion when parsing file data in forms
utils/google_app_engine/additional_requirements.txt
medium System graph hardware Supply chain conf 1.00 Docker base image uses a mutable or implicit tag: gcr.io/google-appengine/python
Container tags can be retagged upstream. Pin production base images to a reviewed digest (`image@sha256:...`) when reproducibility and supply-chain integrity matter.
utils/google_app_engine/Dockerfile:1 containersPinned dependencies
medium System graph hardware Supply chain conf 1.00 Dockerfile ADD downloads remote content without checksum
Remote build inputs can change or be replaced upstream. Use Dockerfile ADD --checksum or download with an explicit digest/signature verification step.
utils/docker/Dockerfile:10 containersChecksum
medium System graph hardware Security conf 1.00 Dockerfile runs as root: utils/docker/Dockerfile
No non-root USER set. Containers running as root expand the blast radius of any vulnerability inside the image.
Container
medium System graph hardware Security conf 1.00 Dockerfile runs as root: utils/google_app_engine/Dockerfile
No non-root USER set. Containers running as root expand the blast radius of any vulnerability inside the image.
Container
medium System graph cicd CI/CD security conf 1.00 3 occurrences GitHub Actions workflow grants broad write permissions
CI tokens with write permissions increase blast radius when an action, dependency, or PR workflow is compromised. Prefer job-level least-privilege permissions.
3 files, 3 locations
.github/workflows/cla.yml
.github/workflows/format.yml
.github/workflows/merge-main-into-prs.yml
CI/CD securitySupply chainGithub actions
medium System graph security security conf 1.00 Insecure pattern 'subprocess_shell_true' in classify/train.py:110
Found a known-risky pattern (subprocess_shell_true). Review and replace if possible.
classify/train.py:110 Subprocess shell true
medium System graph security security conf 1.00 Insecure pattern 'subprocess_shell_true' in export.py:930
Found a known-risky pattern (subprocess_shell_true). Review and replace if possible.
export.py:930 Subprocess shell true
medium System graph security security conf 1.00 Insecure pattern 'subprocess_shell_true' in utils/downloads.py:29
Found a known-risky pattern (subprocess_shell_true). Review and replace if possible.
utils/downloads.py:29 Subprocess shell true
medium System graph security security conf 1.00 Insecure pattern 'subprocess_shell_true' in utils/general.py:366
Found a known-risky pattern (subprocess_shell_true). Review and replace if possible.
utils/general.py:366 Subprocess shell true
medium System graph security security conf 1.00 Insecure pattern 'subprocess_shell_true' in utils/torch_utils.py:107
Found a known-risky pattern (subprocess_shell_true). Review and replace if possible.
utils/torch_utils.py:107 Subprocess shell true
medium System graph quality Integrity conf 1.00 Network/subprocess call without timeout or try/except — classify/train.py:110
`subprocess.run(...)` here lacks both a `timeout=` arg and an enclosing try/except. This is exactly the class of bug that took down our git-clone earlier (HTTP/2 stream cancel surfaced as a fatal). Add a `timeout=` and wrap in try/except, or use a wrapper that retries.
runtime safetyRobustness
medium System graph quality Integrity conf 1.00 Network/subprocess call without timeout or try/except — export.py:930
`subprocess.run(...)` here lacks both a `timeout=` arg and an enclosing try/except. This is exactly the class of bug that took down our git-clone earlier (HTTP/2 stream cancel surfaced as a fatal). Add a `timeout=` and wrap in try/except, or use a wrapper that retries.
runtime safetyRobustness
medium System graph quality Integrity conf 1.00 Network/subprocess call without timeout or try/except — models/common.py:882
`requests.get(...)` here lacks both a `timeout=` arg and an enclosing try/except. This is exactly the class of bug that took down our git-clone earlier (HTTP/2 stream cancel surfaced as a fatal). Add a `timeout=` and wrap in try/except, or use a wrapper that retries.
runtime safetyRobustness
medium System graph quality Integrity conf 1.00 Network/subprocess call without timeout or try/except — segment/train.py:693
`subprocess.run(...)` here lacks both a `timeout=` arg and an enclosing try/except. This is exactly the class of bug that took down our git-clone earlier (HTTP/2 stream cancel surfaced as a fatal). Add a `timeout=` and wrap in try/except, or use a wrapper that retries.
runtime safetyRobustness
medium System graph quality Integrity conf 1.00 Network/subprocess call without timeout or try/except — segment/val.py:512
`subprocess.run(...)` here lacks both a `timeout=` arg and an enclosing try/except. This is exactly the class of bug that took down our git-clone earlier (HTTP/2 stream cancel surfaced as a fatal). Add a `timeout=` and wrap in try/except, or use a wrapper that retries.
runtime safetyRobustness
medium System graph quality Integrity conf 1.00 Network/subprocess call without timeout or try/except — train.py:747
`subprocess.run(...)` here lacks both a `timeout=` arg and an enclosing try/except. This is exactly the class of bug that took down our git-clone earlier (HTTP/2 stream cancel surfaced as a fatal). Add a `timeout=` and wrap in try/except, or use a wrapper that retries.
runtime safetyRobustness
medium System graph quality Integrity conf 1.00 Network/subprocess call without timeout or try/except — utils/aws/resume.py:53
`subprocess.Popen(...)` here lacks both a `timeout=` arg and an enclosing try/except. This is exactly the class of bug that took down our git-clone earlier (HTTP/2 stream cancel surfaced as a fatal). Add a `timeout=` and wrap in try/except, or use a wrapper that retries.
runtime safetyRobustness
medium System graph quality Integrity conf 1.00 Network/subprocess call without timeout or try/except — utils/downloads.py:29
`subprocess.check_output(...)` here lacks both a `timeout=` arg and an enclosing try/except. This is exactly the class of bug that took down our git-clone earlier (HTTP/2 stream cancel surfaced as a fatal). Add a `timeout=` and wrap in try/except, or use a wrapper that retries.
runtime safetyRobustness
medium System graph quality Integrity conf 1.00 Network/subprocess call without timeout or try/except — utils/flask_rest_api/example_request.py:15
`requests.post(...)` here lacks both a `timeout=` arg and an enclosing try/except. This is exactly the class of bug that took down our git-clone earlier (HTTP/2 stream cancel surfaced as a fatal). Add a `timeout=` and wrap in try/except, or use a wrapper that retries.
runtime safetyRobustness
medium System graph quality Integrity conf 1.00 Network/subprocess call without timeout or try/except — utils/general.py:576
`subprocess.run(...)` here lacks both a `timeout=` arg and an enclosing try/except. This is exactly the class of bug that took down our git-clone earlier (HTTP/2 stream cancel surfaced as a fatal). Add a `timeout=` and wrap in try/except, or use a wrapper that retries.
runtime safetyRobustness
medium System graph quality Integrity conf 1.00 Network/subprocess call without timeout or try/except — val.py:590
`subprocess.run(...)` here lacks both a `timeout=` arg and an enclosing try/except. This is exactly the class of bug that took down our git-clone earlier (HTTP/2 stream cancel surfaced as a fatal). Add a `timeout=` and wrap in try/except, or use a wrapper that retries.
runtime safetyRobustness
medium System graph security Coverage conf 1.00 No auth library detected
The scanner did not find any standard auth library (JWT, OAuth, NextAuth, Auth0, etc.). Either auth lives in custom code, in a separate service, or is missing.
auth
medium System graph quality Tests conf 1.00 Very low test-to-source ratio
1 test file(s) for 51 source file(s) (ratio 0.02). Consider adding integration or unit tests for critical paths.
Coverage
low Security checks cicd CI/CD security conf 0.72 .dockerignore misses sensitive defaults
.dockerignore exists but does not cover common secret or VCS patterns.
.dockerignore CI/CD securitycontainers
low Security checks cicd CI/CD security conf 0.72 Dockerfile installs recommended OS packages
Installing recommended packages often pulls in unnecessary runtime surface area.
utils/google_app_engine/Dockerfile:13 CI/CD securitycontainers
low Security checks cicd CI/CD security conf 0.72 Dockerfile installs recommended OS packages
Installing recommended packages often pulls in unnecessary runtime surface area.
utils/docker/Dockerfile:15 CI/CD securitycontainers
high Security checks cicd CI/CD security conf 0.72 3 occurrences Dockerfile keeps pip download cache
Pip's package cache increases image size and can preserve unnecessary artifacts.
2 files, 3 locations
utils/docker/Dockerfile:32, 33 (2 hits)
utils/google_app_engine/Dockerfile:18
CI/CD securitycontainers
low Security checks cicd CI/CD security conf 0.74 Dockerfile leaves apt package indexes in the image layer
Package indexes increase image size and can expose stale metadata in the final image layer.
utils/google_app_engine/Dockerfile:13 CI/CD securitycontainers
low Security checks quality Quality conf 0.60 11 occurrences Duplicated implementation block across source files
Duplicate implementation blocks are maintenance debt. Keep them visible, but they are not a high-severity defect unless the duplicated logic is security-sensitive or drifting.
9 files, 11 locations
segment/predict.py:35, 91 (2 hits)
val.py:7, 37 (2 hits)
classify/val.py:8
detect.py:239
train.py:46
utils/loggers/comet/hpo.py:40
utils/segment/augmentations.py:21
utils/segment/loss.py:15
duplicationquality
low Security checks quality Quality conf 0.74 robots.txt does not advertise a sitemap
Sitemap directives in robots.txt help crawlers and AI agents find the canonical public URL inventory quickly.
.github/workflows/links.yml
low System graph hardware Coverage conf 1.00 Containers defined but no K8s/orchestration manifest found
Repo has Dockerfiles/compose but no Kubernetes/Nomad manifests. If the target deployment is K8s, the manifests may live in a separate ops repo.
Deployment
low System graph hardware Supply chain conf 1.00 Docker base image is tag-pinned but not digest-pinned: pytorch/pytorch:2.8.0-cuda12.8-cudnn9-runtime
Container tags can be retagged upstream. Pin production base images to a reviewed digest (`image@sha256:...`) when reproducibility and supply-chain integrity matter.
utils/docker/Dockerfile:7 containersPinned dependencies
low System graph software Dead code candidate conf 1.00 File has no detected symbols: utils/aws/resume.py
Source file with no class/function declarations — possible config, dead code, or scratch file.
low System graph software Dead code candidate conf 1.00 File has no detected symbols: utils/flask_rest_api/example_request.py
Source file with no class/function declarations — possible config, dead code, or scratch file.
low System graph software Dead code candidate conf 1.00 File has no detected symbols: utils/loggers/clearml/hpo.py
Source file with no class/function declarations — possible config, dead code, or scratch file.
low System graph quality Integrity conf 1.00 Near-duplicate function bodies in 19 places
Functions with the same first-5-line body hash: models/common.py:forward, models/common.py:forward, models/common.py:forward, models/common.py:forward This is *the* AI-coder failure mode (4× more duplication in vibe-coded repos — see https://jw.hn/ai-code-hygiene). Consolidate or document why they…
duplicatesduplication
low System graph quality Integrity conf 1.00 13 occurrences Near-duplicate function bodies in 2 places
Functions with the same first-5-line body hash: benchmarks.py:run, benchmarks.py:test This is *the* AI-coder failure mode (4× more duplication in vibe-coded repos — see https://jw.hn/ai-code-hygiene). Consolidate or document why they're separate.
13 occurrences
repo-level (13 hits)
duplicatesduplication
low System graph quality Integrity conf 1.00 Near-duplicate function bodies in 20 places
Functions with the same first-5-line body hash: models/tf.py:call, models/tf.py:call, models/tf.py:call, models/tf.py:call This is *the* AI-coder failure mode (4× more duplication in vibe-coded repos — see https://jw.hn/ai-code-hygiene). Consolidate or document why they're separate.
duplicatesduplication
low System graph quality Integrity conf 1.00 3 occurrences Near-duplicate function bodies in 3 places
Functions with the same first-5-line body hash: models/experimental.py:forward, models/experimental.py:forward, models/experimental.py:forward This is *the* AI-coder failure mode (4× more duplication in vibe-coded repos — see https://jw.hn/ai-code-hygiene). Consolidate or document why they're sepa…
3 occurrences
repo-level (3 hits)
duplicatesduplication
low System graph quality Integrity conf 1.00 Near-duplicate function bodies in 4 places
Functions with the same first-5-line body hash: models/yolo.py:forward, models/yolo.py:forward, models/yolo.py:forward, models/yolo.py:forward This is *the* AI-coder failure mode (4× more duplication in vibe-coded repos — see https://jw.hn/ai-code-hygiene). Consolidate or document why they're sepa…
duplicatesduplication
low System graph quality Integrity conf 1.00 Near-duplicate function bodies in 8 places
Functions with the same first-5-line body hash: utils/activations.py:forward, utils/activations.py:forward, utils/activations.py:forward, utils/activations.py:forward This is *the* AI-coder failure mode (4× more duplication in vibe-coded repos — see https://jw.hn/ai-code-hygiene). Consolidate or d…
duplicatesduplication
low System graph quality Integrity conf 1.00 Old/deprecated-named symbol `convert_variables_to_constants_v2` in export.py:747
Names with suffixes like `_old`, `_v1`, `_deprecated` usually indicate replaced-but-not-removed code (typical AI-coder leftover). Confirm and delete, or rename if it's the active version.
old markerDead code
low System graph quality Integrity conf 1.00 Old/deprecated-named symbol `execute_v2` in models/common.py:721
Names with suffixes like `_old`, `_v1`, `_deprecated` usually indicate replaced-but-not-removed code (typical AI-coder leftover). Confirm and delete, or rename if it's the active version.
old markerDead code
low System graph quality Integrity conf 1.00 Old/deprecated-named symbol `get_local_copy` in utils/loggers/clearml/clearml_utils.py:27
Names with suffixes like `_old`, `_v1`, `_deprecated` usually indicate replaced-but-not-removed code (typical AI-coder leftover). Confirm and delete, or rename if it's the active version.
old markerDead code
low System graph software Dead code conf 1.00 Possibly dead Python function: apply_classifier
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/general.py:1193
low System graph software Dead code conf 1.00 Possibly dead Python function: cache_images_to_disk
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/dataloaders.py:866
low System graph software Dead code conf 1.00 Possibly dead Python function: call
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
models/tf.py:659
low System graph software Dead code conf 1.00 Possibly dead Python function: check_python
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/general.py:420
low System graph software Dead code conf 1.00 Possibly dead Python function: crop
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
models/common.py:1013
low System graph software Dead code conf 1.00 Possibly dead Python function: file_age
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/general.py:318
low System graph software Dead code conf 1.00 Possibly dead Python function: flatten_recursive
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/dataloaders.py:1051
low System graph software Dead code conf 1.00 Possibly dead Python function: forward_fuse
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
models/common.py:88
low System graph software Dead code conf 1.00 Possibly dead Python function: is_chinese
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/general.py:83
low System graph software Dead code conf 1.00 Possibly dead Python function: join_threads
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/__init__.py:46
low System graph software Dead code conf 1.00 Possibly dead Python function: load_mosaic9
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/dataloaders.py:932
low System graph software Dead code conf 1.00 Possibly dead Python function: outer_func
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
export.py:209
low System graph software Dead code conf 1.00 Possibly dead Python function: render
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
models/common.py:1021
low System graph software Dead code conf 1.00 Possibly dead Python function: seed_worker
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/dataloaders.py:120
low System graph software Dead code conf 1.00 Possibly dead Python function: tp_fp
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/metrics.py:190
low System graph software Dead code conf 1.00 Possibly dead Python function: transform_fn
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
export.py:440
low System graph software Dead code conf 1.00 Possibly dead Python function: wh_iou
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/metrics.py:332
low System graph software Dead code conf 1.00 Possibly dead Python function: wrapper
No callers detected by AST scan in this repo. Could be exported for external callers or a framework handler.
utils/__init__.py:37
low System graph quality Complexity conf 1.00 Very large file: export.py (1525 lines)
Files with >800 lines often hide complexity hotspots and discourage tests.
low System graph quality Complexity conf 1.00 Very large file: models/common.py (1112 lines)
Files with >800 lines often hide complexity hotspots and discourage tests.
low System graph quality Complexity conf 1.00 Very large file: utils/dataloaders.py (1365 lines)
Files with >800 lines often hide complexity hotspots and discourage tests.
low System graph quality Complexity conf 1.00 Very large file: utils/general.py (1286 lines)
Files with >800 lines often hide complexity hotspots and discourage tests.
For AI agents: Voting guide (TP/FP) MCP manifest Stdio wrapper SARIF Integrate Findings queue Vote TP/FP on findings to calibrate the engine.
For AI agents + API integrations
Email me when this repo regresses
Free. We re-scan periodically; new criticals → your inbox. No signup required for the scan itself.
API access

This page is publicly accessible at: https://repobility.com/scan/bed6286b-1a4f-46b9-a1ce-2f60cf0cf858/

To check status programmatically (no auth required): 

curl -s https://repobility.com/api/v1/public/scan/bed6286b-1a4f-46b9-a1ce-2f60cf0cf858/

Important — please don't re-submit the same URL repeatedly. The submission endpoint is idempotent: re-submitting the same git URL returns this same scan_token, not a new one. To re-scan this repo, sign up free and use the dashboard.