Scan timing: clone 4.51s · analysis 16.06s · 21.7 MB · GitHub API rate-limit (preflight)
https://github.com/getlago/lago-api
· scanned 2026-06-05 12:59 UTC (5 days, 9 hours ago)
· 10 languages
233 raw signals (105 security + 128 graph) 11/13 scanners ran
Last scanned 5 days, 9 hours ago · v2 · 84 actionable findings from 2 signal sources. 85 repeated signals grouped for readability. Security checks, system graph analysis, and verified AI-agent feedback are merged into one review queue.
| Component | Sub-score | Weight | Contribution |
|---|---|---|---|
structure_score |
65.0 | 0.15 | 9.75 |
security_score |
100.0 | 0.25 | 25.00 |
testing_score |
0.0 | 0.20 | 0.00 |
documentation_score |
75.0 | 0.15 | 11.25 |
practices_score |
91.0 | 0.15 | 13.65 |
code_quality |
80.0 | 0.10 | 8.00 |
| Overall | 1.00 | 67.7 |
All 7046 nodes from the latest scan, grouped by kind. Each node is a unit the engine identified (file, function, endpoint, table…). Most users won't need this view — it's primarily for debugging the engine's graph extraction or for AI agents that want to enumerate the project structure.
| Label | Layer | Status | Path |
|---|---|---|---|
.rubocop.yml |
software | healthy | .rubocop.yml |
Gemfile |
software | healthy | Gemfile |
README.md |
software | healthy | README.md |
CLAUDE.md |
software | healthy | CLAUDE.md |
PULL_REQUEST_TEMPLATE.md |
software | healthy | PULL_REQUEST_TEMPLATE.md |
CONTRIBUTING.md |
software | healthy | CONTRIBUTING.md |
Dockerfile |
software | healthy | Dockerfile |
.annotaterb.yml |
software | healthy | .annotaterb.yml |
schema.json |
software | healthy | schema.json |
clock.rb |
software | healthy | clock.rb |
karafka.rb |
software | healthy | karafka.rb |
CODE_OF_CONDUCT.md |
software | healthy | CODE_OF_CONDUCT.md |
AGENTS.md |
software | healthy | AGENTS.md |
organization_id_column_spec.rb |
software | healthy | spec/organization_id_column_spec.rb |
spec_helper.rb |
software | healthy | spec/spec_helper.rb |
rails_helper.rb |
software | healthy | spec/rails_helper.rb |
cop_helper.rb |
software | healthy | spec/cop_helper.rb |
clockwork_spec.rb |
software | healthy | spec/clockwork_spec.rb |
i18n_spec.rb |
software | healthy | spec/i18n_spec.rb |
simple_payment_integration_spec.rb |
software | healthy | spec/integration/stripe/simple_payment_integration_spec.rb |
error_detail_spec.rb |
software | healthy | spec/models/error_detail_spec.rb |
event_spec.rb |
software | healthy | spec/models/event_spec.rb |
subscription_spec.rb |
software | healthy | spec/models/subscription_spec.rb |
inbound_webhook_spec.rb |
software | healthy | spec/models/inbound_webhook_spec.rb |
integration_resource_spec.rb |
software | healthy | spec/models/integration_resource_spec.rb |
dunning_campaign_spec.rb |
software | healthy | spec/models/dunning_campaign_spec.rb |
api_key_spec.rb |
software | healthy | spec/models/api_key_spec.rb |
wallet_transaction_spec.rb |
software | healthy | spec/models/wallet_transaction_spec.rb |
payment_receipt_spec.rb |
software | healthy | spec/models/payment_receipt_spec.rb |
commitment_spec.rb |
software | healthy | spec/models/commitment_spec.rb |
order_form_spec.rb |
software | healthy | spec/models/order_form_spec.rb |
enriched_store_subscription_migration_spec.rb |
software | healthy | spec/models/enriched_store_subscription_migration_spec.rb |
role_spec.rb |
software | healthy | spec/models/role_spec.rb |
dunning_campaign_threshold_spec.rb |
software | healthy | spec/models/dunning_campaign_threshold_spec.rb |
data_export_spec.rb |
software | healthy | spec/models/data_export_spec.rb |
applied_coupon_spec.rb |
software | healthy | spec/models/applied_coupon_spec.rb |
coupon_target_spec.rb |
software | healthy | spec/models/coupon_target_spec.rb |
applied_pricing_unit_spec.rb |
software | healthy | spec/models/applied_pricing_unit_spec.rb |
data_export_part_spec.rb |
software | healthy | spec/models/data_export_part_spec.rb |
wallet_credit_spec.rb |
software | healthy | spec/models/wallet_credit_spec.rb |
pending_vies_check_spec.rb |
software | healthy | spec/models/pending_vies_check_spec.rb |
presentation_breakdown_spec.rb |
software | healthy | spec/models/presentation_breakdown_spec.rb |
membership_role_spec.rb |
software | healthy | spec/models/membership_role_spec.rb |
wallet_spec.rb |
software | healthy | spec/models/wallet_spec.rb |
wallet_transaction_consumption_spec.rb |
software | healthy | spec/models/wallet_transaction_consumption_spec.rb |
recurring_transaction_rule_spec.rb |
software | healthy | spec/models/recurring_transaction_rule_spec.rb |
daily_usage_spec.rb |
software | healthy | spec/models/daily_usage_spec.rb |
credit_note_item_spec.rb |
software | healthy | spec/models/credit_note_item_spec.rb |
invoice_custom_section_spec.rb |
software | healthy | spec/models/invoice_custom_section_spec.rb |
payment_request_spec.rb |
software | healthy | spec/models/payment_request_spec.rb |
Showing first 50 of this kind. Full payload available via the JSON button at the top of the page.
| Label | Layer | Status | Path |
|---|---|---|---|
spec |
software | healthy | spec |
integration |
software | healthy | spec/integration |
stripe |
software | healthy | spec/integration/stripe |
models |
software | healthy | spec/models |
integrations |
software | healthy | spec/models/integrations |
integration_collection_mappings |
software | healthy | spec/models/integration_collection_mappings |
fixed_charge |
software | healthy | spec/models/fixed_charge |
integration_customers |
software | healthy | spec/models/integration_customers |
analytics |
software | healthy | spec/models/analytics |
subscription |
software | healthy | spec/models/subscription |
activation_rule |
software | healthy | spec/models/subscription/activation_rule |
entitlement |
software | healthy | spec/models/entitlement |
events |
software | healthy | spec/models/events |
customer |
software | healthy | spec/models/customer |
payment_provider_customers |
software | healthy | spec/models/payment_provider_customers |
wallet_transaction |
software | healthy | spec/models/wallet_transaction |
wallet |
software | healthy | spec/models/wallet |
fee |
software | healthy | spec/models/fee |
invoice |
software | healthy | spec/models/invoice |
billing_entity |
software | healthy | spec/models/billing_entity |
payment_providers |
software | healthy | spec/models/payment_providers |
recurring_transaction_rule |
software | healthy | spec/models/recurring_transaction_rule |
concerns |
software | healthy | spec/models/concerns |
organizations |
software | healthy | spec/models/concerns/organizations |
metadata |
software | healthy | spec/models/metadata |
integration_mappings |
software | healthy | spec/models/integration_mappings |
commitment |
software | healthy | spec/models/commitment |
usage_monitoring |
software | healthy | spec/models/usage_monitoring |
clickhouse |
software | healthy | spec/models/clickhouse |
credit_note |
software | healthy | spec/models/credit_note |
plan |
software | healthy | spec/models/plan |
payment_request |
software | healthy | spec/models/payment_request |
charge |
software | healthy | spec/models/charge |
requests |
software | healthy | spec/requests |
api |
software | healthy | spec/requests/api |
v1 |
software | healthy | spec/requests/api/v1 |
credit_notes |
software | healthy | spec/requests/api/v1/credit_notes |
wallets |
software | healthy | spec/requests/api/v1/wallets |
analytics |
software | healthy | spec/requests/api/v1/analytics |
customers |
software | healthy | spec/requests/api/v1/customers |
wallets |
software | healthy | spec/requests/api/v1/customers/wallets |
data_api |
software | healthy | spec/requests/api/v1/data_api |
subscriptions |
software | healthy | spec/requests/api/v1/subscriptions |
entitlements |
software | healthy | spec/requests/api/v1/subscriptions/entitlements |
charges |
software | healthy | spec/requests/api/v1/subscriptions/charges |
plans |
software | healthy | spec/requests/api/v1/plans |
entitlements |
software | healthy | spec/requests/api/v1/plans/entitlements |
charges |
software | healthy | spec/requests/api/v1/plans/charges |
features |
software | healthy | spec/requests/api/v1/features |
data_api |
software | healthy | spec/requests/data_api |
Showing first 50 of this kind. Full payload available via the JSON button at the top of the page.
| Label | Layer | Status | Path |
|---|---|---|---|
password_literal::spec/models/user_spec.rb |
security | healthy | spec/models/user_spec.rb |
password_literal::spec/models/user_spec.rb |
security | healthy | spec/models/user_spec.rb |
password_literal::spec/requests/graphql_controller_spec.rb |
security | healthy | spec/requests/graphql_controller_spec.rb |
password_literal::spec/lib/lago/redis_config_builder_spec.rb |
security | healthy | spec/lib/lago/redis_config_builder_spec.rb |
password_literal::spec/lib/lago/redis_config_builder_spec.rb |
security | healthy | spec/lib/lago/redis_config_builder_spec.rb |
password_literal::spec/lib/lago/redis_config_builder_spec.rb |
security | healthy | spec/lib/lago/redis_config_builder_spec.rb |
password_literal::spec/lib/lago/redis_config_builder_spec.rb |
security | healthy | spec/lib/lago/redis_config_builder_spec.rb |
password_literal::spec/graphql/mutations/register_user_spec… |
security | healthy | spec/graphql/mutations/register_user_spec.rb |
password_literal::spec/graphql/mutations/register_user_spec… |
security | healthy | spec/graphql/mutations/register_user_spec.rb |
password_literal::spec/graphql/mutations/login_user_spec.rb |
security | healthy | spec/graphql/mutations/login_user_spec.rb |
password_literal::spec/graphql/mutations/login_user_spec.rb |
security | healthy | spec/graphql/mutations/login_user_spec.rb |
password_literal::spec/graphql/mutations/login_user_spec.rb |
security | healthy | spec/graphql/mutations/login_user_spec.rb |
password_literal::spec/graphql/mutations/password_resets/re… |
security | healthy | spec/graphql/mutations/password_resets/reset_spec.rb |
password_literal::spec/graphql/mutations/password_resets/re… |
security | healthy | spec/graphql/mutations/password_resets/reset_spec.rb |
password_literal::spec/graphql/mutations/password_resets/re… |
security | healthy | spec/graphql/mutations/password_resets/reset_spec.rb |
password_literal::spec/services/users_service_spec.rb |
security | healthy | spec/services/users_service_spec.rb |
password_literal::spec/services/password_resets/reset_servi… |
security | healthy | spec/services/password_resets/reset_service_spec.rb |
password_literal::spec/services/password_resets/reset_servi… |
security | healthy | spec/services/password_resets/reset_service_spec.rb |
password_literal::spec/services/auth/google_service_spec.rb |
security | healthy | spec/services/auth/google_service_spec.rb |
password_literal::spec/services/auth/google_service_spec.rb |
security | healthy | spec/services/auth/google_service_spec.rb |
password_literal::spec/services/invites/accept_service_spec… |
security | healthy | spec/services/invites/accept_service_spec.rb |
generic_api_key::config/i18n-tasks.yml |
security | healthy | config/i18n-tasks.yml |
password_literal::app/models/concerns/organizations/authent… |
security | healthy | app/models/concerns/organizations/authentication_methods.rb |
generic_api_key::db/seeds/01_base.rb |
security | healthy | db/seeds/01_base.rb |
generic_api_key::db/seeds/01_base.rb |
security | healthy | db/seeds/01_base.rb |
password_literal::db/seeds/01_base.rb |
security | healthy | db/seeds/01_base.rb |
password_literal::db/seeds/01_base.rb |
security | healthy | db/seeds/01_base.rb |
password_literal::.github/workflows/spec.yml |
security | healthy | .github/workflows/spec.yml |
password_literal::.github/workflows/migrations-test.yml |
security | healthy | .github/workflows/migrations-test.yml |
| Label | Layer | Status | Path |
|---|---|---|---|
auth::app/graphql/mutations/auth/okta/accept_invite.rb |
security | healthy | app/graphql/mutations/auth/okta/accept_invite.rb |
auth::app/models/webhook.rb |
security | healthy | app/models/webhook.rb |
auth::app/graphql/mutations/auth/google/accept_invite.rb |
security | healthy | app/graphql/mutations/auth/google/accept_invite.rb |
auth::app/services/webhook_endpoints/create_service.rb |
security | healthy | app/services/webhook_endpoints/create_service.rb |
auth::Gemfile |
security | healthy | Gemfile |
auth::app/controllers/graphql_controller.rb |
security | healthy | app/controllers/graphql_controller.rb |
auth::app/graphql/types/auth/okta/accept_invite_input.rb |
security | healthy | app/graphql/types/auth/okta/accept_invite_input.rb |
auth::app/controllers/api/v1/organizations_controller.rb |
security | healthy | app/controllers/api/v1/organizations_controller.rb |
auth::app/graphql/mutations/auth/google/register_user.rb |
security | healthy | app/graphql/mutations/auth/google/register_user.rb |
auth::app/controllers/application_controller.rb |
security | healthy | app/controllers/application_controller.rb |
auth::app/services/auth/token_service.rb |
security | healthy | app/services/auth/token_service.rb |
auth::app/controllers/concerns/authenticable_user.rb |
security | healthy | app/controllers/concerns/authenticable_user.rb |
auth::app/services/payment_providers/gocardless_service.rb |
security | healthy | app/services/payment_providers/gocardless_service.rb |
auth::spec/requests/graphql_controller_spec.rb |
security | healthy | spec/requests/graphql_controller_spec.rb |
auth::app/models/webhook_endpoint.rb |
security | healthy | app/models/webhook_endpoint.rb |
auth::spec/requests/api/v1/webhook_endpoints_controller_spe… |
security | healthy | spec/requests/api/v1/webhook_endpoints_controller_spec.rb |
auth::spec/mailers/organization_mailer_spec.rb |
security | healthy | spec/mailers/organization_mailer_spec.rb |
auth::app/graphql/mutations/auth/google/login_user.rb |
security | healthy | app/graphql/mutations/auth/google/login_user.rb |
auth::spec/models/webhook_spec.rb |
security | healthy | spec/models/webhook_spec.rb |
| Label | Layer | Status | Path |
|---|---|---|---|
DOCKERHUB_USERNAME |
cicd | healthy | — |
AWS_SECRET_ACCESS_KEY |
cicd | healthy | — |
PRODUCTION_GOCARDLESS_CLIENT_SECRET |
cicd | healthy | — |
SEGMENT_WRITE_KEY |
cicd | healthy | — |
PLATFORM_PAIR |
cicd | healthy | — |
KNAPSACK_PRO_TEST_SUITE_TOKEN_RSPEC |
cicd | healthy | — |
DOCKERHUB_PASSWORD |
cicd | healthy | — |
BUNDLE_GEMS__CONTRIBSYS__COM |
cicd | healthy | — |
PRODUCTION_GOCARDLESS_CLIENT_ID |
cicd | healthy | — |
GH_TOKEN |
cicd | healthy | — |
REGISTRY_IMAGE |
cicd | healthy | — |
AWS_ACCESS_KEY_ID |
cicd | healthy | — |
| Label | Layer | Status | Path |
|---|---|---|---|
run-spec |
cicd | healthy | .github/workflows/spec.yml |
front-typecheck |
cicd | healthy | .github/workflows/front-compatibility.yml |
run-migrations |
cicd | healthy | .github/workflows/migrations-test.yml |
build-images |
cicd | healthy | .github/workflows/release.yml |
merge |
cicd | healthy | .github/workflows/release.yml |
notify |
cicd | healthy | .github/workflows/release.yml |
linters |
cicd | healthy | .github/workflows/linters.yml |
build-api-image |
cicd | healthy | .github/workflows/internal-build.yml |
| Label | Layer | Status | Path |
|---|---|---|---|
port:5432 |
network | healthy | config/database.yml |
port:8123 |
network | healthy | config/database.yml |
port:9000 |
network | healthy | .github/workflows/spec.yml |
port:6379 |
network | healthy | .github/workflows/spec.yml |
port:62144 |
network | healthy | .github/workflows/spec.yml |
port:26214 |
network | healthy | .github/workflows/spec.yml |
| Label | Layer | Status | Path |
|---|---|---|---|
gha::spec |
cicd | healthy | .github/workflows/spec.yml |
gha::front-compatibility |
cicd | healthy | .github/workflows/front-compatibility.yml |
gha::migrations-test |
cicd | healthy | .github/workflows/migrations-test.yml |
gha::release |
cicd | healthy | .github/workflows/release.yml |
gha::linters |
cicd | healthy | .github/workflows/linters.yml |
gha::internal-build |
cicd | healthy | .github/workflows/internal-build.yml |
| Label | Layer | Status | Path |
|---|---|---|---|
redis |
data | healthy | Gemfile |
clickhouse |
data | healthy | Gemfile |
postgresql |
data | healthy | Dockerfile |
postgres |
data | healthy | .github/workflows/spec.yml |
| Label | Layer | Status | Path |
|---|---|---|---|
partman |
data | healthy | db/structure.sql |
public |
data | healthy | db/structure.sql |
events_enriched_expanded |
data | healthy | db/clickhouse_migrate/cloud/05_events_enriched_expanded.sql |
default |
data | healthy | db/clickhouse_migrate/cloud/03_activity_logs.sql |
| Label | Layer | Status | Path |
|---|---|---|---|
sidekiq |
data | healthy | Gemfile |
kafka |
data | healthy | Gemfile |
| Label | Layer | Status | Path |
|---|---|---|---|
repobility-clone-shnel8gn |
software | healthy | /tmp/repobility-clone-shnel8gn |
| Label | Layer | Status | Path |
|---|---|---|---|
image::Dockerfile |
hardware | healthy | Dockerfile |
| Label | Layer | Status | Path |
|---|---|---|---|
vps::aws |
hardware | healthy | Gemfile |
This page is publicly accessible at:
https://repobility.com/scan/d5bbf7bb-a3db-4b3d-8722-27b2b726c0b2/
To check status programmatically (no auth required):
curl -s https://repobility.com/api/v1/public/scan/d5bbf7bb-a3db-4b3d-8722-27b2b726c0b2/Important — please don't re-submit the same URL repeatedly. The submission endpoint is idempotent: re-submitting the same git URL returns this same scan_token, not a new one. To re-scan this repo, sign up free and use the dashboard.