Scan timing: clone 4.63s · analysis 10.16s · 27.9 MB · GitHub API rate-limit (preflight)
https://github.com/astral-sh/uv
· scanned 2026-05-31 01:25 UTC (5 days, 14 hours ago)
· 10 languages
493 findings (142 legacy + 351 scanner) 11/13 scanners ran 67th percentile · Rust · huge (>500K LoC) Scanner says 73 (higher by 11)
Last scanned 5 days, 14 hours ago · v2 · 320 findings from 2 sources. Findings combine the legacy security pipeline AND the multi-layer engine (atlas, wiring, flows, ranked) AND verified AI agent contributions.
| Component | Sub-score | Weight | Contribution |
|---|---|---|---|
structure_score |
60.0 | 0.15 | 9.00 |
security_score |
100.0 | 0.25 | 25.00 |
testing_score |
84.0 | 0.20 | 16.80 |
documentation_score |
100.0 | 0.15 | 15.00 |
practices_score |
100.0 | 0.15 | 15.00 |
code_quality |
35.0 | 0.10 | 3.50 |
| Overall | 1.00 | 84.3 |
Top 10 actions, ranked by impact × ease. Severity drives impact; tag-based fix-clarity drives ease.
crates/uv-client/src/registry_client.rs:1739crates/uv-client/src/registry_client.rs:1795crates/uv-client/src/registry_client.rs:1845crates/uv-auth/src/middleware.rs:1048crates/uv-auth/src/middleware.rs:1094crates/uv-auth/src/middleware.rs:1208crates/uv-auth/src/middleware.rs:1249crates/uv-auth/src/middleware.rs:1297crates/uv-auth/src/middleware.rs:1337crates/uv-auth/src/middleware.rs:1380Click "Find this gap" on any action above to jump to it on the Findings tab. Adjust the chip bar to filter by impact (severity), layer, or source.
This page is publicly accessible at:
https://repobility.com/scan/bee51646-a8dc-410c-9ffa-753bd32e1390/
To check status programmatically (no auth required):
curl -s https://repobility.com/api/v1/public/scan/bee51646-a8dc-410c-9ffa-753bd32e1390/Important — please don't re-submit the same URL repeatedly. The submission endpoint is idempotent: re-submitting the same git URL returns this same scan_token, not a new one. To re-scan this repo, sign up free and use the dashboard.