{"version": "2.1.0", "$schema": "https://json.schemastore.org/sarif-2.1.0.json", "runs": [{"tool": {"driver": {"name": "Repobility", "informationUri": "https://repobility.com", "rules": [{"id": "GHSA-pq67-6m6q-mj2v", "name": "urllib3: GHSA-pq67-6m6q-mj2v", "shortDescription": {"text": "urllib3: GHSA-pq67-6m6q-mj2v"}, "fullDescription": {"text": "urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation"}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "medium", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "GHSA-34jh-p97f-mpxf", "name": "urllib3: GHSA-34jh-p97f-mpxf", "shortDescription": {"text": "urllib3: GHSA-34jh-p97f-mpxf"}, "fullDescription": {"text": "urllib3's Proxy-Authorization request header isn't stripped during cross-origin redirects"}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "medium", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "GHSA-gc5v-m9x4-r6x2", "name": "requests: GHSA-gc5v-m9x4-r6x2", "shortDescription": {"text": "requests: GHSA-gc5v-m9x4-r6x2"}, "fullDescription": {"text": "Requests has Insecure Temp File Reuse in its extract_zipped_paths() utility function"}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "medium", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "GHSA-9wx4-h78v-vm56", "name": "requests: GHSA-9wx4-h78v-vm56", "shortDescription": {"text": "requests: GHSA-9wx4-h78v-vm56"}, "fullDescription": {"text": "Requests `Session` object does not verify requests after making first request with verify=False"}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "medium", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "GHSA-9hjg-9r4m-mvj7", "name": "requests: GHSA-9hjg-9r4m-mvj7", "shortDescription": {"text": "requests: GHSA-9hjg-9r4m-mvj7"}, "fullDescription": {"text": "Requests vulnerable to .netrc credentials leak via malicious URLs"}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "medium", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "DEPCUR-PY", "name": "Python package `certifi` is 3 major version(s) behind (2023.5.7 -> 2026.5.20)", "shortDescription": {"text": "Python package `certifi` is 3 major version(s) behind (2023.5.7 -> 2026.5.20)"}, "fullDescription": {"text": "`certifi==2023.5.7` is 3 major version(s) behind the latest stable release on PyPI (2026.5.20). Pinned-but-stale Python dependencies drift away from upstream security and bugfix releases. This is the version-currency signal Dependabot raises."}, "properties": {"scanner": "repobility-dependency-currency", "category": "dependency", "severity": "medium", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED111", "name": "Bare except continues silently", "shortDescription": {"text": "Bare except continues silently"}, "fullDescription": {"text": "Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "COMP001", "name": "[COMP001] High cognitive complexity: Function `_scrape_free_proxies_list` has cognitive complexity 8 (SonarSource scale)", "shortDescription": {"text": "[COMP001] High cognitive complexity: Function `_scrape_free_proxies_list` has cognitive complexity 8 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, an"}, "fullDescription": {"text": "Extract nested branches into named helper functions; flatten early-return / guard clauses; replace long if/elif chains with dispatch dicts or polymorphism. SonarQube's threshold for 'should refactor' is 15 \u2014 yours is 8."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "low", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "MINED043", "name": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data.", "shortDescription": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-319 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "GHSA-gm62-xv2j-4w53", "name": "urllib3: GHSA-gm62-xv2j-4w53", "shortDescription": {"text": "urllib3: GHSA-gm62-xv2j-4w53"}, "fullDescription": {"text": "urllib3 allows an unbounded number of links in the decompression chain"}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "high", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "GHSA-38jv-5279-wg99", "name": "urllib3: GHSA-38jv-5279-wg99", "shortDescription": {"text": "urllib3: GHSA-38jv-5279-wg99"}, "fullDescription": {"text": "Decompression-bomb safeguards bypassed when following HTTP redirects (streaming API)"}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "high", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "GHSA-2xpw-w6gg-jr37", "name": "urllib3: GHSA-2xpw-w6gg-jr37", "shortDescription": {"text": "urllib3: GHSA-2xpw-w6gg-jr37"}, "fullDescription": {"text": "urllib3 streaming API improperly handles highly compressed data"}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "high", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "PYSEC-2026-141", "name": "urllib3: PYSEC-2026-141", "shortDescription": {"text": "urllib3: PYSEC-2026-141"}, "fullDescription": {"text": "urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin redirects followed from the low-level API via ProxyManager.connection_from_url().urlopen(..., assert_same_host=False) still forward these sensitive headers. This vulnerability is fixed in 2.7.0."}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "high", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "PYSEC-2023-212", "name": "urllib3: PYSEC-2023-212", "shortDescription": {"text": "urllib3: PYSEC-2023-212"}, "fullDescription": {"text": "urllib3 is a user-friendly HTTP client library for Python. urllib3 previously wouldn't remove the HTTP request body when an HTTP redirect response using status 301, 302, or 303 after the request had its method changed from one that could accept a request body (like `POST`) to `GET` as is required by HTTP RFCs. Although this behavior is not specified in the section for redirects, it can be inferred by piecing together information from different sections and we have observed the behavior in other major HTTP client implementations like curl and web browsers. Because the vulnerability requires a previously trusted service to become compromised in order to have an impact on confidentiality we believe the exploitability of this vulnerability is low. Additionally, many users aren't putting sensitive data in HTTP request bodies, if this is the case then this vulnerability isn't exploitable. Both of the following conditions must be true to be affected by this vulnerability: 1. Using urllib3 and"}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "high", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "PYSEC-2023-192", "name": "urllib3: PYSEC-2023-192", "shortDescription": {"text": "urllib3: PYSEC-2023-192"}, "fullDescription": {"text": "urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Cookie` HTTP header special or provide any helpers for managing cookies over HTTP, that is the responsibility of the user. However, it is possible for a user to specify a `Cookie` header and unknowingly leak information via HTTP redirects to a different origin if that user doesn't disable redirects explicitly. This issue has been patched in urllib3 version 1.26.17 or 2.0.5."}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "high", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "PYSEC-2026-87", "name": "lxml: PYSEC-2026-87", "shortDescription": {"text": "lxml: PYSEC-2026-87"}, "fullDescription": {"text": "lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration (with resolve_entities=True) allows untrusted XML input to read local files. Setting the resolve_entities option explicitly to resolve_entities='internal' or resolve_entities=False disables the local file access. This vulnerability is fixed in 6.1.0."}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "high", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "PYSEC-2024-60", "name": "idna: PYSEC-2024-60", "shortDescription": {"text": "idna: PYSEC-2024-60"}, "fullDescription": {"text": "A vulnerability was identified in the kjd/idna library, specifically within the `idna.encode()` function, affecting version 3.6. The issue arises from the function's handling of crafted input strings, which can lead to quadratic complexity and consequently, a denial of service condition. This vulnerability is triggered by a crafted input that causes the `idna.encode()` function to process the input with considerable computational load, significantly increasing the processing time in a quadratic manner relative to the input size."}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "high", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "PYSEC-2024-230", "name": "certifi: PYSEC-2024-230", "shortDescription": {"text": "certifi: PYSEC-2024-230"}, "fullDescription": {"text": "Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi starting in 2021.05.30 and prior to 2024.07.4 recognized root certificates from `GLOBALTRUST`. Certifi 2024.07.04 removes root certificates from `GLOBALTRUST` from the root store. These are in the process of being removed from Mozilla's trust store. `GLOBALTRUST`'s root certificates are being removed pursuant to an investigation which identified \"long-running and unresolved compliance issues.\""}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "high", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "PYSEC-2023-135", "name": "certifi: PYSEC-2023-135", "shortDescription": {"text": "certifi: PYSEC-2023-135"}, "fullDescription": {"text": "Certifi 2023.07.22 removes root certificates from \"e-Tugra\" from the root store. These are in the process of being removed from Mozilla's trust store. e-Tugra's root certificates are being removed pursuant to an investigation prompted by reporting of security issues in their systems."}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "high", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "MINED115", "name": "Action `ad-m/github-push-action` pinned to mutable ref `@v0.6.0`", "shortDescription": {"text": "Action `ad-m/github-push-action` pinned to mutable ref `@v0.6.0`"}, "fullDescription": {"text": "`uses: ad-m/github-push-action@v0.6.0` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED108", "name": "`self._generate_headers` used but never assigned in __init__", "shortDescription": {"text": "`self._generate_headers` used but never assigned in __init__"}, "fullDescription": {"text": "Method `get_response` of class `ResponseHandlers` reads `self._generate_headers`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "CORE_NO_TESTS", "name": "No test files found", "shortDescription": {"text": "No test files found"}, "fullDescription": {"text": "Add a test directory (tests/ or __tests__/) with unit tests for core functionality. Use pytest (Python), Jest (JS/TS), or go test (Go). Start with tests for critical business logic and security-sensitive functions."}, "properties": {"scanner": "repobility-core", "category": "testing", "severity": "high", "confidence": null, "cwe": "", "owasp": ""}}]}}, "automationDetails": {"id": "repobility/1059"}, "properties": {"repository": "Anonym0usWork1221/Free-Proxies", "repoUrl": "https://github.com/Anonym0usWork1221/Free-Proxies", "branch": "main"}, "results": [{"ruleId": "GHSA-pq67-6m6q-mj2v", "level": "warning", "message": {"text": "urllib3: GHSA-pq67-6m6q-mj2v"}, "properties": {"repobilityId": 103926, "scanner": "osv-scanner", "fingerprint": "163bdff65c3ce10f9a93a9866aca7dc5f2158119544e441758bb1e189063007d", "category": "dependency", "severity": "medium", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "", "aliases": ["CVE-2025-50181"], "package": "urllib3", "rule_id": "GHSA-pq67-6m6q-mj2v", "scanner": "osv-scanner", "correlation_key": "vuln|urllib3|CVE-2025-50181|requirements.txt"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "GHSA-34jh-p97f-mpxf", "level": "warning", "message": {"text": "urllib3: GHSA-34jh-p97f-mpxf"}, "properties": {"repobilityId": 103923, "scanner": "osv-scanner", "fingerprint": "263ef88ffb58e95c907a84244d8bddfff838336fc8a8dc6fbbaf932de3120706", "category": "dependency", "severity": "medium", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "", "aliases": ["CVE-2024-37891"], "package": "urllib3", "rule_id": "GHSA-34jh-p97f-mpxf", "scanner": "osv-scanner", "correlation_key": "vuln|urllib3|CVE-2024-37891|requirements.txt"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "GHSA-gc5v-m9x4-r6x2", "level": "warning", "message": {"text": "requests: GHSA-gc5v-m9x4-r6x2"}, "properties": {"repobilityId": 103918, "scanner": "osv-scanner", "fingerprint": "df69fc105f839b8858988bd945af94347c2e8a5ab6be2c5dec785fcd4d2fc827", "category": "dependency", "severity": "medium", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "", "aliases": ["CVE-2026-25645"], "package": "requests", "rule_id": "GHSA-gc5v-m9x4-r6x2", "scanner": "osv-scanner", "correlation_key": "vuln|requests|CVE-2026-25645|requirements.txt"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "GHSA-9wx4-h78v-vm56", "level": "warning", "message": {"text": "requests: GHSA-9wx4-h78v-vm56"}, "properties": {"repobilityId": 103917, "scanner": "osv-scanner", "fingerprint": "16335ea6537f2b6c71811f552212ec9408c35d43ff73d772da0d19be29d73991", "category": "dependency", "severity": "medium", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "", "aliases": ["CVE-2024-35195"], "package": "requests", "rule_id": "GHSA-9wx4-h78v-vm56", "scanner": "osv-scanner", "correlation_key": "vuln|requests|CVE-2024-35195|requirements.txt"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "GHSA-9hjg-9r4m-mvj7", "level": "warning", "message": {"text": "requests: GHSA-9hjg-9r4m-mvj7"}, "properties": {"repobilityId": 103916, "scanner": "osv-scanner", "fingerprint": "034eedde606d9526f151c4b574252cb5c7f7efabba940fadb09dc2a0d1598395", "category": "dependency", "severity": "medium", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "", "aliases": ["CVE-2024-47081"], "package": "requests", "rule_id": "GHSA-9hjg-9r4m-mvj7", "scanner": "osv-scanner", "correlation_key": "vuln|requests|CVE-2024-47081|requirements.txt"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "DEPCUR-PY", "level": "warning", "message": {"text": "Python package `certifi` is 3 major version(s) behind (2023.5.7 -> 2026.5.20)"}, "properties": {"repobilityId": 103899, "scanner": "repobility-dependency-currency", "fingerprint": "35554c811fb4849b238a8399afdb78c470b361b842902ac7b3c437252225b0f7", "category": "dependency", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "3 major version(s) behind", "signal": "currency", "cwe_ids": [], "package": "certifi", "scanner": "repobility-dependency-currency", "ecosystem": "pypi", "languages": ["python"], "latest_version": "2026.5.20", "correlation_key": "fp|35554c811fb4849b238a8399afdb78c470b361b842902ac7b3c437252225b0f7", "current_version": "2023.5.7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 3}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 103894, "scanner": "repobility-ast-engine", "fingerprint": "ccfe606e9b66f0cc69b4f70cf7f5091101d729823601a6c18251ec3c104b7d35", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ccfe606e9b66f0cc69b4f70cf7f5091101d729823601a6c18251ec3c104b7d35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/response_handlers.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 103893, "scanner": "repobility-ast-engine", "fingerprint": "edd3049bccdc60938e97f22682fa85aa1bf464213d264f3975760c414de45ec5", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|edd3049bccdc60938e97f22682fa85aa1bf464213d264f3975760c414de45ec5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/response_handlers.py"}, "region": {"startLine": 27}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 103892, "scanner": "repobility-ast-engine", "fingerprint": "f40b6f3b684e65ac421bd7e2cbb70b73bcbc7262a411df75b7a5b4ce27d2227c", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f40b6f3b684e65ac421bd7e2cbb70b73bcbc7262a411df75b7a5b4ce27d2227c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/response_handlers.py"}, "region": {"startLine": 18}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 103889, "scanner": "repobility-ast-engine", "fingerprint": "abfcb23be4585990e5274ace0e4a11e681ee7903fa3fb7fd8d3d16e1bbee5544", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|abfcb23be4585990e5274ace0e4a11e681ee7903fa3fb7fd8d3d16e1bbee5544"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 172}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 103888, "scanner": "repobility-ast-engine", "fingerprint": "df4235e153be97b725d303ce65db1c14ebe240e9038456b79da19b59c7f2df55", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|df4235e153be97b725d303ce65db1c14ebe240e9038456b79da19b59c7f2df55"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 149}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 103887, "scanner": "repobility-ast-engine", "fingerprint": "b6ae61375b515ff8b57badc42f29f80a8c20f31c0ce8cb999769d3a9c3a80978", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b6ae61375b515ff8b57badc42f29f80a8c20f31c0ce8cb999769d3a9c3a80978"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 110}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 103886, "scanner": "repobility-ast-engine", "fingerprint": "05fae6ef6204641847e4831459317906b8df9a206ae7e7e3ea45e90504bf4da1", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|05fae6ef6204641847e4831459317906b8df9a206ae7e7e3ea45e90504bf4da1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 58}}}]}, {"ruleId": "COMP001", "level": "note", "message": {"text": "[COMP001] High cognitive complexity: Function `_scrape_free_proxies_list` has cognitive complexity 8 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: else=1, except=1, for=1, if=2, nested_bonus=3."}, "properties": {"repobilityId": 103910, "scanner": "repobility-threat-engine", "fingerprint": "b879463a588dc40a6a80ddfe07bd043affe5d1a7cfc9a8876243b22ada0c0d6b", "category": "quality", "severity": "low", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 8 (severity threshold for low: 8+).", "evidence": {"scanner": "repobility-threat-engine", "function": "_scrape_free_proxies_list", "breakdown": {"if": 2, "for": 1, "else": 1, "except": 1, "nested_bonus": 3}, "complexity": 8, "correlation_key": "fp|b879463a588dc40a6a80ddfe07bd043affe5d1a7cfc9a8876243b22ada0c0d6b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 31}}}]}, {"ruleId": "COMP001", "level": "note", "message": {"text": "[COMP001] High cognitive complexity: Function `_scrape_git_proxify` has cognitive complexity 10 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: elif=3, except=1, for=1, if=1, nested_bonus=4."}, "properties": {"repobilityId": 103909, "scanner": "repobility-threat-engine", "fingerprint": "7c98b6208f1c2741c5cb4c03fddc825ab6050d27ab07bade3425f5d18e51f94b", "category": "quality", "severity": "low", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 10 (severity threshold for low: 8+).", "evidence": {"scanner": "repobility-threat-engine", "function": "_scrape_git_proxify", "breakdown": {"if": 1, "for": 1, "elif": 3, "except": 1, "nested_bonus": 4}, "complexity": 10, "correlation_key": "fp|7c98b6208f1c2741c5cb4c03fddc825ab6050d27ab07bade3425f5d18e51f94b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 115}}}]}, {"ruleId": "COMP001", "level": "note", "message": {"text": "[COMP001] High cognitive complexity: Function `_scrape_proxy_scrape` has cognitive complexity 10 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: elif=3, except=1, for=1, if=1, nested_bonus=4."}, "properties": {"repobilityId": 103908, "scanner": "repobility-threat-engine", "fingerprint": "e0f1218e9e9ee4c710530b3165c618a33a56d54ab941f5359749780ed639deaf", "category": "quality", "severity": "low", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 10 (severity threshold for low: 8+).", "evidence": {"scanner": "repobility-threat-engine", "function": "_scrape_proxy_scrape", "breakdown": {"if": 1, "for": 1, "elif": 3, "except": 1, "nested_bonus": 4}, "complexity": 10, "correlation_key": "fp|e0f1218e9e9ee4c710530b3165c618a33a56d54ab941f5359749780ed639deaf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 77}}}]}, {"ruleId": "DEPCUR-PY", "level": "note", "message": {"text": "Python package `urllib3` is minor version(s) behind (2.0.3 -> 2.7.0)"}, "properties": {"repobilityId": 103905, "scanner": "repobility-dependency-currency", "fingerprint": "912dbecc38551046acc0f16b420573dd733e5deba0be26ab5b9a869c3083f02f", "category": "dependency", "severity": "low", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "minor version(s) behind", "signal": "currency", "cwe_ids": [], "package": "urllib3", "scanner": "repobility-dependency-currency", "ecosystem": "pypi", "languages": ["python"], "latest_version": "2.7.0", "correlation_key": "fp|912dbecc38551046acc0f16b420573dd733e5deba0be26ab5b9a869c3083f02f", "current_version": "2.0.3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 12}}}]}, {"ruleId": "DEPCUR-PY", "level": "note", "message": {"text": "Python package `soupsieve` is minor version(s) behind (2.4.1 -> 2.8.4)"}, "properties": {"repobilityId": 103904, "scanner": "repobility-dependency-currency", "fingerprint": "7a6d745b325241bc98c986a9c4a5e7a24e515339484463a77e00c16feb67660e", "category": "dependency", "severity": "low", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "minor version(s) behind", "signal": "currency", "cwe_ids": [], "package": "soupsieve", "scanner": "repobility-dependency-currency", "ecosystem": "pypi", "languages": ["python"], "latest_version": "2.8.4", "correlation_key": "fp|7a6d745b325241bc98c986a9c4a5e7a24e515339484463a77e00c16feb67660e", "current_version": "2.4.1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 11}}}]}, {"ruleId": "DEPCUR-PY", "level": "note", "message": {"text": "Python package `requests` is minor version(s) behind (2.31.0 -> 2.34.2)"}, "properties": {"repobilityId": 103903, "scanner": "repobility-dependency-currency", "fingerprint": "dc1dc74c213e190d71d3f2858771a92b078f0fc366ff82a7daff27ea7cb7a1cf", "category": "dependency", "severity": "low", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "minor version(s) behind", "signal": "currency", "cwe_ids": [], "package": "requests", "scanner": "repobility-dependency-currency", "ecosystem": "pypi", "languages": ["python"], "latest_version": "2.34.2", "correlation_key": "fp|dc1dc74c213e190d71d3f2858771a92b078f0fc366ff82a7daff27ea7cb7a1cf", "current_version": "2.31.0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 9}}}]}, {"ruleId": "DEPCUR-PY", "level": "note", "message": {"text": "Python package `pyparsing` is minor version(s) behind (3.0.9 -> 3.3.2)"}, "properties": {"repobilityId": 103902, "scanner": "repobility-dependency-currency", "fingerprint": "105cdd5790f4f7506c312fc8425eaeac1832a14587e8fe679321bb47552a27b8", "category": "dependency", "severity": "low", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "minor version(s) behind", "signal": "currency", "cwe_ids": [], "package": "pyparsing", "scanner": "repobility-dependency-currency", "ecosystem": "pypi", "languages": ["python"], "latest_version": "3.3.2", "correlation_key": "fp|105cdd5790f4f7506c312fc8425eaeac1832a14587e8fe679321bb47552a27b8", "current_version": "3.0.9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 8}}}]}, {"ruleId": "DEPCUR-PY", "level": "note", "message": {"text": "Python package `idna` is minor version(s) behind (3.4 -> 3.18)"}, "properties": {"repobilityId": 103901, "scanner": "repobility-dependency-currency", "fingerprint": "65bc2598233e44b6fe8fc0c578e5ff5976120ae5dcdef321ff0218aac30753a8", "category": "dependency", "severity": "low", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "minor version(s) behind", "signal": "currency", "cwe_ids": [], "package": "idna", "scanner": "repobility-dependency-currency", "ecosystem": "pypi", "languages": ["python"], "latest_version": "3.18", "correlation_key": "fp|65bc2598233e44b6fe8fc0c578e5ff5976120ae5dcdef321ff0218aac30753a8", "current_version": "3.4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 6}}}]}, {"ruleId": "DEPCUR-PY", "level": "note", "message": {"text": "Python package `charset-normalizer` is minor version(s) behind (3.1.0 -> 3.4.7)"}, "properties": {"repobilityId": 103900, "scanner": "repobility-dependency-currency", "fingerprint": "0fc259aba5bfbcd9e463af7f08acb15a7b127d10150f6979c5a33b97223b32d5", "category": "dependency", "severity": "low", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "minor version(s) behind", "signal": "currency", "cwe_ids": [], "package": "charset-normalizer", "scanner": "repobility-dependency-currency", "ecosystem": "pypi", "languages": ["python"], "latest_version": "3.4.7", "correlation_key": "fp|0fc259aba5bfbcd9e463af7f08acb15a7b127d10150f6979c5a33b97223b32d5", "current_version": "3.1.0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 4}}}]}, {"ruleId": "DEPCUR-PY", "level": "note", "message": {"text": "Python package `beautifulsoup4` is minor version(s) behind (4.12.2 -> 4.14.3)"}, "properties": {"repobilityId": 103897, "scanner": "repobility-dependency-currency", "fingerprint": "5e3c7c24ad014f958eb26a4f127e8525184acd95b5a7d7f123b051374ff675f7", "category": "dependency", "severity": "low", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "minor version(s) behind", "signal": "currency", "cwe_ids": [], "package": "beautifulsoup4", "scanner": "repobility-dependency-currency", "ecosystem": "pypi", "languages": ["python"], "latest_version": "4.14.3", "correlation_key": "fp|5e3c7c24ad014f958eb26a4f127e8525184acd95b5a7d7f123b051374ff675f7", "current_version": "4.12.2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "COMP001", "level": "none", "message": {"text": "[COMP001] High cognitive complexity (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 103911, "scanner": "repobility-threat-engine", "fingerprint": "33f8a11bb9950391724aaaf564313c9967d2e5a2c97736723f8a42124b41d155", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"scanner": "repobility-threat-engine", "function": "_scrape_proxy_scrape", "breakdown": {"if": 1, "for": 1, "elif": 3, "except": 1, "nested_bonus": 4}, "aggregated": true, "complexity": 10, "correlation_key": "fp|33f8a11bb9950391724aaaf564313c9967d2e5a2c97736723f8a42124b41d155", "aggregated_count": 1}}}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 103907, "scanner": "repobility-threat-engine", "fingerprint": "03aa9029a96f24f82dffe7e819a3d462b13cd251e133a6696a4414a300f492ca", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|03aa9029a96f24f82dffe7e819a3d462b13cd251e133a6696a4414a300f492ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 99}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 103906, "scanner": "repobility-threat-engine", "fingerprint": "3e1a7a99b306920fc28537e942cee170bb5ffa6f0e848373e24d668e8d55b43e", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|3e1a7a99b306920fc28537e942cee170bb5ffa6f0e848373e24d668e8d55b43e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_handlers.py"}, "region": {"startLine": 27}}}]}, {"ruleId": "DEPCUR-PY", "level": "none", "message": {"text": "Python package `bs4` is patch version(s) behind (0.0.1 -> 0.0.2)"}, "properties": {"repobilityId": 103898, "scanner": "repobility-dependency-currency", "fingerprint": "1bb2d4b0beea94b16b7aecf7ed3c190cb0058ef29dabf2fcd017e25fa7f393dc", "category": "dependency", "severity": "info", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"gap": "patch version(s) behind", "signal": "currency", "cwe_ids": [], "package": "bs4", "scanner": "repobility-dependency-currency", "ecosystem": "pypi", "languages": ["python"], "latest_version": "0.0.2", "correlation_key": "fp|1bb2d4b0beea94b16b7aecf7ed3c190cb0058ef29dabf2fcd017e25fa7f393dc", "current_version": "0.0.1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 2}}}]}, {"ruleId": "GHSA-gm62-xv2j-4w53", "level": "error", "message": {"text": "urllib3: GHSA-gm62-xv2j-4w53"}, "properties": {"repobilityId": 103925, "scanner": "osv-scanner", "fingerprint": "c6179b31454e1888b1c1cb677d9a99fa3cc26aa20b5c461bc02cfa5532b4b7de", "category": "dependency", "severity": "high", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "", "aliases": ["CVE-2025-66418"], "package": "urllib3", "rule_id": "GHSA-gm62-xv2j-4w53", "scanner": "osv-scanner", "correlation_key": "vuln|urllib3|CVE-2025-66418|requirements.txt"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "GHSA-38jv-5279-wg99", "level": "error", "message": {"text": "urllib3: GHSA-38jv-5279-wg99"}, "properties": {"repobilityId": 103924, "scanner": "osv-scanner", "fingerprint": "7efc812025ab761a376ad0e88be78a767b579da26a39959de36b3ff8586ddf87", "category": "dependency", "severity": "high", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "", "aliases": ["CVE-2026-21441"], "package": "urllib3", "rule_id": "GHSA-38jv-5279-wg99", "scanner": "osv-scanner", "correlation_key": "vuln|urllib3|CVE-2026-21441|requirements.txt"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "GHSA-2xpw-w6gg-jr37", "level": "error", "message": {"text": "urllib3: GHSA-2xpw-w6gg-jr37"}, "properties": {"repobilityId": 103922, "scanner": "osv-scanner", "fingerprint": "3e8220a54bdfdded3281f2e83b5ce135568419305f3e1461f7898b0d265417c6", "category": "dependency", "severity": "high", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "", "aliases": ["CVE-2025-66471"], "package": "urllib3", "rule_id": "GHSA-2xpw-w6gg-jr37", "scanner": "osv-scanner", "correlation_key": "vuln|urllib3|CVE-2025-66471|requirements.txt"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "PYSEC-2026-141", "level": "error", "message": {"text": "urllib3: PYSEC-2026-141"}, "properties": {"repobilityId": 103921, "scanner": "osv-scanner", "fingerprint": "c9782ea239ddf9652bd8aa66c5c6c4ebee4d2b704faaab015341940a64bb5ee3", "category": "dependency", "severity": "high", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "", "aliases": ["CVE-2026-44431", "GHSA-qccp-gfcp-xxvc"], "package": "urllib3", "rule_id": "PYSEC-2026-141", "scanner": "osv-scanner", "correlation_key": "vuln|urllib3|CVE-2026-44431|requirements.txt", "duplicate_count": 1, "duplicate_rule_ids": ["GHSA-qccp-gfcp-xxvc", "PYSEC-2026-141"], "duplicate_scanners": ["osv-scanner"], "duplicate_fingerprints": ["8fea5709b1e04c1904accc4ad0dc76733fefc920773cbaba3c59a24994880532", "c9782ea239ddf9652bd8aa66c5c6c4ebee4d2b704faaab015341940a64bb5ee3"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "PYSEC-2023-212", "level": "error", "message": {"text": "urllib3: PYSEC-2023-212"}, "properties": {"repobilityId": 103920, "scanner": "osv-scanner", "fingerprint": "c54313db294544b9cee782de7e62a50e816abe039964f07deaebb09ad1516523", "category": "dependency", "severity": "high", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "", "aliases": ["CVE-2023-45803", "GHSA-g4mx-q9vg-27p4"], "package": "urllib3", "rule_id": "PYSEC-2023-212", "scanner": "osv-scanner", "correlation_key": "vuln|urllib3|CVE-2023-45803|requirements.txt", "duplicate_count": 1, "duplicate_rule_ids": ["GHSA-g4mx-q9vg-27p4", "PYSEC-2023-212"], "duplicate_scanners": ["osv-scanner"], "duplicate_fingerprints": ["9e561813e7f0196d36c9996b633bffde6cb85ab62a6af4b0ce8849ce8ecb4407", "c54313db294544b9cee782de7e62a50e816abe039964f07deaebb09ad1516523"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "PYSEC-2023-192", "level": "error", "message": {"text": "urllib3: PYSEC-2023-192"}, "properties": {"repobilityId": 103919, "scanner": "osv-scanner", "fingerprint": "b110863b59a30694f553144a5a3026341cc71a876ca55dcc2d00ac4e7d1bfbb4", "category": "dependency", "severity": "high", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "", "aliases": ["CVE-2023-43804", "GHSA-v845-jxx5-vc9f"], "package": "urllib3", "rule_id": "PYSEC-2023-192", "scanner": "osv-scanner", "correlation_key": "vuln|urllib3|CVE-2023-43804|requirements.txt", "duplicate_count": 1, "duplicate_rule_ids": ["GHSA-v845-jxx5-vc9f", "PYSEC-2023-192"], "duplicate_scanners": ["osv-scanner"], "duplicate_fingerprints": ["0ac8b0cf8e48c27fbf6bd020d44273f83233a1fbe3784477392c21a314d271e9", "b110863b59a30694f553144a5a3026341cc71a876ca55dcc2d00ac4e7d1bfbb4"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "PYSEC-2026-87", "level": "error", "message": {"text": "lxml: PYSEC-2026-87"}, "properties": {"repobilityId": 103915, "scanner": "osv-scanner", "fingerprint": "57e96b9801c134a817a0972843002a06c0681c2469d31acfb0a75334eca5c6cc", "category": "dependency", "severity": "high", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "", "aliases": ["CVE-2026-41066", "GHSA-vfmq-68hx-4jfw"], "package": "lxml", "rule_id": "PYSEC-2026-87", "scanner": "osv-scanner", "correlation_key": "vuln|lxml|CVE-2026-41066|requirements.txt", "duplicate_count": 1, "duplicate_rule_ids": ["GHSA-vfmq-68hx-4jfw", "PYSEC-2026-87"], "duplicate_scanners": ["osv-scanner"], "duplicate_fingerprints": ["57e96b9801c134a817a0972843002a06c0681c2469d31acfb0a75334eca5c6cc", "b79d9a76eb4b6780ceedd1368a02f722861f752f14e3e7c4daf1a67af52287a2"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "PYSEC-2024-60", "level": "error", "message": {"text": "idna: PYSEC-2024-60"}, "properties": {"repobilityId": 103914, "scanner": "osv-scanner", "fingerprint": "91113cce2369769194ac023b3c197ccf7fd96944c8169b8bd99b7cb0274d34ab", "category": "dependency", "severity": "high", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 2 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "", "aliases": ["CVE-2024-3651", "GHSA-jjg7-2v4v-x38h"], "package": "idna", "rule_id": "PYSEC-2024-60", "scanner": "osv-scanner", "correlation_key": "vuln|idna|CVE-2024-3651|requirements.txt", "duplicate_count": 2, "duplicate_rule_ids": ["GHSA-65pc-fj4g-8rjx", "GHSA-jjg7-2v4v-x38h", "PYSEC-2024-60"], "duplicate_scanners": ["osv-scanner"], "duplicate_fingerprints": ["096ad1adcda9b23f165f1175fd8691f1cfd4f580557aea52903b73ec76fbc472", "91113cce2369769194ac023b3c197ccf7fd96944c8169b8bd99b7cb0274d34ab", "e452be1b16751fb655eacaaaa3673510e96279c786514c967100f0c3fee268df"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "PYSEC-2024-230", "level": "error", "message": {"text": "certifi: PYSEC-2024-230"}, "properties": {"repobilityId": 103913, "scanner": "osv-scanner", "fingerprint": "bee980d80d51b9dfd707a50f376187c4523bbfbde964f885c1e806c5883f055b", "category": "dependency", "severity": "high", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "", "aliases": ["CVE-2024-39689", "GHSA-248v-346w-9cwc"], "package": "certifi", "rule_id": "PYSEC-2024-230", "scanner": "osv-scanner", "correlation_key": "vuln|certifi|CVE-2024-39689|requirements.txt", "duplicate_count": 1, "duplicate_rule_ids": ["GHSA-248v-346w-9cwc", "PYSEC-2024-230"], "duplicate_scanners": ["osv-scanner"], "duplicate_fingerprints": ["901c458821b7ede9abfb23327e8ff6794336f56fde8cf4f3908bcf053243023d", "bee980d80d51b9dfd707a50f376187c4523bbfbde964f885c1e806c5883f055b"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "PYSEC-2023-135", "level": "error", "message": {"text": "certifi: PYSEC-2023-135"}, "properties": {"repobilityId": 103912, "scanner": "osv-scanner", "fingerprint": "f117ddd3a7d4ff2dbff86340a9f90d1e5d65aa7cb917c613a3f229237f02b43f", "category": "dependency", "severity": "high", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "", "aliases": ["CVE-2023-37920", "GHSA-xqr8-7jwr-rhp7"], "package": "certifi", "rule_id": "PYSEC-2023-135", "scanner": "osv-scanner", "correlation_key": "vuln|certifi|CVE-2023-37920|requirements.txt", "duplicate_count": 1, "duplicate_rule_ids": ["GHSA-xqr8-7jwr-rhp7", "PYSEC-2023-135"], "duplicate_scanners": ["osv-scanner"], "duplicate_fingerprints": ["141d2bec40f38fd6a38bf14a84eabb89c9c870654d374f8917a544bcf7efa594", "f117ddd3a7d4ff2dbff86340a9f90d1e5d65aa7cb917c613a3f229237f02b43f"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "requirements.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `ad-m/github-push-action` pinned to mutable ref `@v0.6.0`"}, "properties": {"repobilityId": 103896, "scanner": "repobility-supply-chain", "fingerprint": "584b3ab484c6095850c73fcfd3bb1d083197b958e773c31abc417880ecb560ba", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|584b3ab484c6095850c73fcfd3bb1d083197b958e773c31abc417880ecb560ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/actions.yml"}, "region": {"startLine": 38}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/setup-python` pinned to mutable ref `@v4`"}, "properties": {"repobilityId": 103895, "scanner": "repobility-supply-chain", "fingerprint": "d44151ef005c3b0e201c79e768f2085a5ac8b125556dba54322a7b02cfb47aa4", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|d44151ef005c3b0e201c79e768f2085a5ac8b125556dba54322a7b02cfb47aa4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/actions.yml"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._generate_headers` used but never assigned in __init__"}, "properties": {"repobilityId": 103891, "scanner": "repobility-ast-engine", "fingerprint": "a6ebad8b81304c50e80b7d9c05535be66ec46a8d3bef4d973bd5eed91ebd09d4", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a6ebad8b81304c50e80b7d9c05535be66ec46a8d3bef4d973bd5eed91ebd09d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/response_handlers.py"}, "region": {"startLine": 14}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._proxy_unpacker` used but never assigned in __init__"}, "properties": {"repobilityId": 103890, "scanner": "repobility-ast-engine", "fingerprint": "138d886c5537019a2e99b4b3e58f0dd16f56859b6a17e5bad3434c95e1c4bc67", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|138d886c5537019a2e99b4b3e58f0dd16f56859b6a17e5bad3434c95e1c4bc67"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_handlers.py"}, "region": {"startLine": 18}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._clean_proxies` used but never assigned in __init__"}, "properties": {"repobilityId": 103885, "scanner": "repobility-ast-engine", "fingerprint": "cb2fdbf24a602b36f602fd9c1ffe917418259f79c55f14cb4fb5ff0d0bef2788", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|cb2fdbf24a602b36f602fd9c1ffe917418259f79c55f14cb4fb5ff0d0bef2788"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 209}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._scrape_proxy_list_download` used but never assigned in __init__"}, "properties": {"repobilityId": 103884, "scanner": "repobility-ast-engine", "fingerprint": "b0f5066336fb0151dcedd4d299c266732e934959835640cb50a5f43c8c0d8950", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b0f5066336fb0151dcedd4d299c266732e934959835640cb50a5f43c8c0d8950"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 194}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._scrape_proxy_scrape` used but never assigned in __init__"}, "properties": {"repobilityId": 103883, "scanner": "repobility-ast-engine", "fingerprint": "31693c1ebd2d1e59ffb01279530fce0eec6f77dfbda74062a6c705d087a7a762", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|31693c1ebd2d1e59ffb01279530fce0eec6f77dfbda74062a6c705d087a7a762"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 193}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._scrape_free_proxy_list` used but never assigned in __init__"}, "properties": {"repobilityId": 103882, "scanner": "repobility-ast-engine", "fingerprint": "5ee1ee834b8e1efb2d7cc812d6c963a50b191101d8bdd971b992a61ebfad9c9c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5ee1ee834b8e1efb2d7cc812d6c963a50b191101d8bdd971b992a61ebfad9c9c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 192}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._scrape_git_proxify` used but never assigned in __init__"}, "properties": {"repobilityId": 103881, "scanner": "repobility-ast-engine", "fingerprint": "70c2936d673eb00b4ae2a3c59bc1e1c06ca2bec56d55516a7db8531b0077fb3a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|70c2936d673eb00b4ae2a3c59bc1e1c06ca2bec56d55516a7db8531b0077fb3a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 191}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._append_proxy` used but never assigned in __init__"}, "properties": {"repobilityId": 103880, "scanner": "repobility-ast-engine", "fingerprint": "bd351e4ba00bb1878d7a02fd80f9c6a92b90461ee55d6eeb180d20b6a51394f7", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|bd351e4ba00bb1878d7a02fd80f9c6a92b90461ee55d6eeb180d20b6a51394f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 170}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._append_proxy` used but never assigned in __init__"}, "properties": {"repobilityId": 103879, "scanner": "repobility-ast-engine", "fingerprint": "a5fb3357e5d7f3c7f3e8c6d714a490fb143d30c118c376dbc07f21fc676a49b2", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a5fb3357e5d7f3c7f3e8c6d714a490fb143d30c118c376dbc07f21fc676a49b2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 147}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._append_proxy` used but never assigned in __init__"}, "properties": {"repobilityId": 103878, "scanner": "repobility-ast-engine", "fingerprint": "954c431741afdf5897058570518bf9762e66419b1b61bdacf3751a9b9f004308", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|954c431741afdf5897058570518bf9762e66419b1b61bdacf3751a9b9f004308"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 141}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._append_proxy` used but never assigned in __init__"}, "properties": {"repobilityId": 103877, "scanner": "repobility-ast-engine", "fingerprint": "3ba235a353e586ffe1443f0d5bbfdbcc62526202f4e21de316f0fb3057d205f3", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3ba235a353e586ffe1443f0d5bbfdbcc62526202f4e21de316f0fb3057d205f3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 135}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._append_proxy` used but never assigned in __init__"}, "properties": {"repobilityId": 103876, "scanner": "repobility-ast-engine", "fingerprint": "800a4846b773176f45c50da3b4af19f4d9bdb33c8a33aabd94bae395ad82c4f5", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|800a4846b773176f45c50da3b4af19f4d9bdb33c8a33aabd94bae395ad82c4f5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 129}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._append_proxy` used but never assigned in __init__"}, "properties": {"repobilityId": 103875, "scanner": "repobility-ast-engine", "fingerprint": "f9276f184861a9910d7652ed6309a3974457784d9501eb006cea375511707b3c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f9276f184861a9910d7652ed6309a3974457784d9501eb006cea375511707b3c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 108}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._append_proxy` used but never assigned in __init__"}, "properties": {"repobilityId": 103874, "scanner": "repobility-ast-engine", "fingerprint": "638ff340ee5629d610f378070d88e1f60e6126494ffc7acd5e607fe333364b45", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|638ff340ee5629d610f378070d88e1f60e6126494ffc7acd5e607fe333364b45"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 102}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._append_proxy` used but never assigned in __init__"}, "properties": {"repobilityId": 103873, "scanner": "repobility-ast-engine", "fingerprint": "427edcbd64faaba99a2e7c07a0c9704adf227c3409adb1a41bee4a0f7e8327e7", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|427edcbd64faaba99a2e7c07a0c9704adf227c3409adb1a41bee4a0f7e8327e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 96}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._append_proxy` used but never assigned in __init__"}, "properties": {"repobilityId": 103872, "scanner": "repobility-ast-engine", "fingerprint": "3a2149a6a77a5f60d9575c471705c29103da08cf3f4bffa7912dead6774d0bfd", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3a2149a6a77a5f60d9575c471705c29103da08cf3f4bffa7912dead6774d0bfd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 90}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._scrape_free_proxies_list` used but never assigned in __init__"}, "properties": {"repobilityId": 103871, "scanner": "repobility-ast-engine", "fingerprint": "dfc34dcb2a980d336f288b8dd3310d61c2094de3624c3de5b1116751e2368534", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|dfc34dcb2a980d336f288b8dd3310d61c2094de3624c3de5b1116751e2368534"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 74}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._scrape_free_proxies_list` used but never assigned in __init__"}, "properties": {"repobilityId": 103870, "scanner": "repobility-ast-engine", "fingerprint": "d653091292e2e5a80ec00450d196cc9d685019c3ae136e930a6debef7142a99c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d653091292e2e5a80ec00450d196cc9d685019c3ae136e930a6debef7142a99c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 72}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._scrape_free_proxies_list` used but never assigned in __init__"}, "properties": {"repobilityId": 103869, "scanner": "repobility-ast-engine", "fingerprint": "717c152db839b11763b8183fcede10c1ce8d9a7824c9d3d9e845d0e439744cbb", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|717c152db839b11763b8183fcede10c1ce8d9a7824c9d3d9e845d0e439744cbb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 70}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._scrape_free_proxies_list` used but never assigned in __init__"}, "properties": {"repobilityId": 103868, "scanner": "repobility-ast-engine", "fingerprint": "7393017b78f4eb5d7043d4d160c74e47b11d038bd78da5271f712bd9c03e716d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|7393017b78f4eb5d7043d4d160c74e47b11d038bd78da5271f712bd9c03e716d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 68}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._scrape_free_proxies_list` used but never assigned in __init__"}, "properties": {"repobilityId": 103867, "scanner": "repobility-ast-engine", "fingerprint": "6a96f1c9e0f3d3246b6a055c860d5c161f9d7829f1f32a6288e9cfbd022f55ae", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|6a96f1c9e0f3d3246b6a055c860d5c161f9d7829f1f32a6288e9cfbd022f55ae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 66}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._scrape_free_proxies_list` used but never assigned in __init__"}, "properties": {"repobilityId": 103866, "scanner": "repobility-ast-engine", "fingerprint": "13603646fea939a072b6bd73c8018a91e5d69ac33553796e1c9117fbecf63793", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|13603646fea939a072b6bd73c8018a91e5d69ac33553796e1c9117fbecf63793"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 64}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._append_proxy` used but never assigned in __init__"}, "properties": {"repobilityId": 103865, "scanner": "repobility-ast-engine", "fingerprint": "4c3f9bdc37ef93d3e65bf4ba76af1478c34a4a4adebbfbe71161b80080033c16", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4c3f9bdc37ef93d3e65bf4ba76af1478c34a4a4adebbfbe71161b80080033c16"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 55}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._append_proxy` used but never assigned in __init__"}, "properties": {"repobilityId": 103864, "scanner": "repobility-ast-engine", "fingerprint": "38ba8200741ebe938b59648eb639ab01bb78fa4afccaca069cb352ffe8f265b9", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|38ba8200741ebe938b59648eb639ab01bb78fa4afccaca069cb352ffe8f265b9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "utils/proxy_scraper.py"}, "region": {"startLine": 52}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._create_files` used but never assigned in __init__"}, "properties": {"repobilityId": 103863, "scanner": "repobility-ast-engine", "fingerprint": "cdcec75549d3e8bccbc5b55de0752ed0c69c13b44c1876377f5ad0549bdd79b0", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|cdcec75549d3e8bccbc5b55de0752ed0c69c13b44c1876377f5ad0549bdd79b0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "proxies.py"}, "region": {"startLine": 106}}}]}, {"ruleId": "CORE_NO_TESTS", "level": "error", "message": {"text": "No test files found"}, "properties": {"repobilityId": 103862, "scanner": "repobility-core", "fingerprint": "0200e9918bc2a7bf9c116d0907e50ac3df640c758b93852cf1890ec6e14d870d", "category": "testing", "severity": "high", "confidence": null, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"rule_id": "CORE_NO_TESTS", "scanner": "repobility-core", "correlation_key": "repo|testing|core_no_tests"}}}]}]}