Public scan — anyone with this URL can view this analysis. Sign up to track your own repos privately, run scheduled re-scans, and get AI fix prompts via your dashboard.
Sign up free Scan another repo
26 of your 29 findings came from Repobility's proprietary detections. ✓ Repobility tags below mark them.

Discord-Datamining/Discord-Datamining

https://github.com/Discord-Datamining/Discord-Datamining · scanned 2026-06-05 23:37 UTC (4 days, 3 hours ago) · 10 languages

24 findings 11/13 scanners ran 25th percentile · Unknown ·

File as issue Image
UNIFIED Repobility · multi-layer engine · AI coders

Complete repo analysis

15 actionable findings from 1 signal source. 9 repeated signals grouped for readability. Security checks, system graph analysis, and verified AI-agent feedback are merged into one review queue.

Combined
66.0
/100
Security checks
66
15 findings
System graph
—% cov · 0 findings
Critical
12
click to filter
Agents
6
0 votes
Crowd
0
reported
Score breakdown â 2026-05-18-v5
Component Sub-score Weight Contribution
structure_score 30.0 0.15 4.50
security_score 100.0 0.25 25.00
testing_score 70.0 0.20 14.00
documentation_score 40.0 0.15 6.00
practices_score 70.0 0.15 10.50
code_quality 80.0 0.10 8.00
Overall 1.00 68.0
security_score may be inflated — optional security scanners were skipped on this fast scan
Severity distribution — click a segment to filter
Active filters: excluding tests × Reset all
Severity: Critical 12 High 1 Medium 1 Low 1 9-Layer: Software Security Quality Integrity Frontend Hardware Data Network Cicd Source: Security checks 15 System graph 0 Crowd 0 Layer: Quality 2 Cicd 1 Software 12

Showing 15 of 15 actionable findings. 24 raw detector signals were grouped into reader-sized issues. Click TP / FP to vote on a finding's accuracy — votes adjust the confidence weighting and improve detection across the platform.

critical Security checks software dependencies conf 0.90 ✓ Repobility 4 occurrences [MINED123] Trojan Source bidi character (RLM) in source: Line 3468 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
4 files, 4 locations
2017/08/12/e487965836a298767bc1.js:3468
2017/08/17/b6f25a7887d389abb7e2.js:3468
2017/08/24/c98fa166d72eae11952f.js:3468
2017/08/25/b5a22ccb3d3992c849e1.js:3468
critical Security checks software dependencies conf 0.90 ✓ Repobility 2 occurrences [MINED123] Trojan Source bidi character (RLM) in source: Line 6917 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
2 files, 2 locations
2016/12/20/1. 94e485ff035e20ee430c/94e485ff035e20ee430c.js:6917
2016/12/20/2. a8870963c250a8cd2093/a8870963c250a8cd2093.js:6917
critical Security checks software dependencies conf 0.90 ✓ Repobility [MINED123] Trojan Source bidi character (RLM) in source: Line 6918 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
2016/12/21/1. ced997097f067a231e64/ced997097f067a231e64.js:6918
critical Security checks software dependencies conf 0.90 ✓ Repobility 6 occurrences [MINED123] Trojan Source bidi character (RLM) in source: Line 6990 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
6 files, 6 locations
2016/12/22/3. f9b8657a6a72b3773f85/f9b8657a6a72b3773f85.js:6990
2016/12/22/4. 2467ea7beed931194b02/2467ea7beed931194b02.js:6990
2016/12/22/5. 0da66baae3ec9e8bc569/0da66baae3ec9e8bc569.js:6990
2016/12/24/1. cbcc4d7f0d032c8af057/cbcc4d7f0d032c8af057.js:6990
2016/12/24/2. 326f4873d48e0e2ddaee/326f4873d48e0e2ddaee.js:6990
2016/12/29/1. 17b49a9d05ecb2de92db/17b49a9d05ecb2de92db.js:6990
critical Security checks software dependencies conf 0.90 ✓ Repobility [MINED123] Trojan Source bidi character (RLM) in source: Line 6991 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
2016/12/22/1. 4133efe1694ad190db59/4133efe1694ad190db59.js:6991
critical Security checks software dependencies conf 0.90 ✓ Repobility [MINED123] Trojan Source bidi character (RLM) in source: Line 7123 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
2017/02/02/ee640ca8e7c1393b15fb.js:7123
critical Security checks software dependencies conf 0.90 ✓ Repobility [MINED123] Trojan Source bidi character (RLM) in source: Line 7135 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
2017/02/04/fef01036f6d68c9c8e01.js:7135
critical Security checks software dependencies conf 0.90 ✓ Repobility [MINED123] Trojan Source bidi character (RLM) in source: Line 7144 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
2017/02/14/0584587053f470863c80.js:7144
critical Security checks software dependencies conf 0.90 ✓ Repobility [MINED123] Trojan Source bidi character (RLM) in source: Line 7264 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
2017/02/16/1bb08998baf8a4ce9ec0.js:7264
critical Security checks software dependencies conf 0.90 ✓ Repobility [MINED123] Trojan Source bidi character (RLM) in source: Line 7268 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
2017/02/21/ce2f0155b28a495d117c.js:7268
critical Security checks software dependencies conf 0.90 ✓ Repobility [MINED123] Trojan Source bidi character (RLM) in source: Line 7283 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
2017/02/25/a7eee00a48ede58f47e2.js:7283
critical Security checks software dependencies conf 0.90 ✓ Repobility [MINED123] Trojan Source bidi character (RLM) in source: Line 7291 contains a Unicode bidirectional override character (U+200F RLM). This is the 'Trojan Source' attack (CVE-2021-42574): the character makes the compiler / interpreter see different code than the human reviewer.
Audit the line manually. If the character is not intentional (it almost never is in code), remove it. Configure your editor / pre-commit hook to reject bidi controls in source.
2017/02/28/ff5ad90d6dc1fd6e1c2c.js:7291
high Security checks cicd CI/CD security conf 0.90 ✓ Repobility GitHub Action is tag-pinned rather than SHA-pinned
[MINED115] Action `Discord-Datamining/comments-action` pinned to mutable ref `@main`: `uses: Discord-Datamining/comments-action@main` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K…
.github/workflows/comments.yml:13 CI/CD securitySupply chainGitHub Actions
medium Security checks quality Practices conf 1.00 [CFG006] Missing .gitignore: No .gitignore file. Risk of committing secrets and build artifacts.
Add a .gitignore appropriate for your language/framework.
low Security checks quality Documentation No LICENSE file
Add a LICENSE file to your repository. Use choosealicense.com to pick the right license (MIT for permissive, Apache 2.0 for patent protection, GPL for copyleft).
For AI agents: Voting guide (TP/FP) MCP manifest Stdio wrapper SARIF Integrate Findings queue Vote TP/FP on findings to calibrate the engine.
For AI agents + API integrations
Email me when this repo regresses
Free. We re-scan periodically; new criticals → your inbox. No signup required for the scan itself.
API access

This page is publicly accessible at: https://repobility.com/scan/c1eeac61-a31c-4fe0-af56-82759a1fd1cd/

To check status programmatically (no auth required): 

curl -s https://repobility.com/api/v1/public/scan/c1eeac61-a31c-4fe0-af56-82759a1fd1cd/

Important — please don't re-submit the same URL repeatedly. The submission endpoint is idempotent: re-submitting the same git URL returns this same scan_token, not a new one. To re-scan this repo, sign up free and use the dashboard.