{"version": "2.1.0", "$schema": "https://json.schemastore.org/sarif-2.1.0.json", "runs": [{"tool": {"driver": {"name": "Repobility", "informationUri": "https://repobility.com", "rules": [{"id": "CFG006", "name": "[CFG006] Missing .gitignore: No .gitignore file. Risk of committing secrets and build artifacts.", "shortDescription": {"text": "[CFG006] Missing .gitignore: No .gitignore file. Risk of committing secrets and build artifacts."}, "fullDescription": {"text": "Add a .gitignore appropriate for your language/framework."}, "properties": {"scanner": "repobility-threat-engine", "category": "practices", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "CORE_LARGE_FILES", "name": "Average file size is 657 lines (recommend <300)", "shortDescription": {"text": "Average file size is 657 lines (recommend <300)"}, "fullDescription": {"text": "Refactor large files by extracting related functions into separate modules. Target files with 300+ lines first. Use the Single Responsibility Principle \u2014 each module should have one clear purpose."}, "properties": {"scanner": "repobility-core", "category": "quality", "severity": "medium", "confidence": null, "cwe": "", "owasp": ""}}, {"id": "CORE_NO_CI", "name": "No CI/CD configuration found", "shortDescription": {"text": "No CI/CD configuration found"}, "fullDescription": {"text": "Add a CI/CD pipeline: create .github/workflows/ci.yml for GitHub Actions with steps to lint, test, and build on every push and pull request."}, "properties": {"scanner": "repobility-core", "category": "practices", "severity": "medium", "confidence": null, "cwe": "", "owasp": ""}}, {"id": "AIC003", "name": "Duplicated implementation block across source files", "shortDescription": {"text": "Duplicated implementation block across source files"}, "fullDescription": {"text": "Extract the shared behavior into one function/module or delete the inactive duplicate after proving which path is used."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.86, "cwe": "", "owasp": ""}}, {"id": "MINED075", "name": "[MINED075] C Malloc No Check (and 2 more): Same pattern found in 2 additional files. Review if needed.", "shortDescription": {"text": "[MINED075] C Malloc No Check (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-690 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED022", "name": "[MINED022] C Strcpy (and 2 more): Same pattern found in 2 additional files. Review if needed.", "shortDescription": {"text": "[MINED022] C Strcpy (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-120 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED049", "name": "[MINED049] Print Pii: Logging password/token/email/ssn directly to stdout.", "shortDescription": {"text": "[MINED049] Print Pii: Logging password/token/email/ssn directly to stdout."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-532 / A09:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED043", "name": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data.", "shortDescription": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-319 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED042", "name": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk.", "shortDescription": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-401 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED004", "name": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums).", "shortDescription": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-327 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC029", "name": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled ", "shortDescription": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes e"}, "fullDescription": {"text": "Validate the URL against an allowlist BEFORE fetching:\n  ALLOWED = {'images.example.com', 'cdn.example.com'}\n  host = urlparse(url).hostname\n  if host not in ALLOWED: abort(400)\nOr use a server-side proxy (Imgproxy / serve-files-only-from-S3) that isolates outbound network access from the request handler.\nBlock private CIDRs explicitly: 10/8, 172.16/12, 192.168/16, 169.254/16."}, "properties": {"scanner": "repobility-threat-engine", "category": "ssrf", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}]}}, "automationDetails": {"id": "repobility/1120"}, "properties": {"repository": "openafs/openafs", "repoUrl": "https://github.com/openafs/openafs", "branch": "master"}, "results": [{"ruleId": "CFG006", "level": "warning", "message": {"text": "[CFG006] Missing .gitignore: No .gitignore file. Risk of committing secrets and build artifacts."}, "properties": {"repobilityId": 110813, "scanner": "repobility-threat-engine", "fingerprint": "c65fc71ce58c37a0e07837c0fe294108b731c43ef16027a2f0971c757bbe9a16", "category": "practices", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "No .gitignore file found in repository root", "evidence": {"reason": "No .gitignore file found in repository root", "rule_id": "CFG006", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "repo|practices|cfg006"}}}, {"ruleId": "CORE_LARGE_FILES", "level": "warning", "message": {"text": "Average file size is 657 lines (recommend <300)"}, "properties": {"repobilityId": 110799, "scanner": "repobility-core", "fingerprint": "7669c62d54ca478982e3c88c62ed34f91776755fb31c3e3e157e61a2b976c5d3", "category": "quality", "severity": "medium", "confidence": null, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"rule_id": "CORE_LARGE_FILES", "scanner": "repobility-core", "correlation_key": "fp|7669c62d54ca478982e3c88c62ed34f91776755fb31c3e3e157e61a2b976c5d3"}}}, {"ruleId": "CORE_NO_CI", "level": "warning", "message": {"text": "No CI/CD configuration found"}, "properties": {"repobilityId": 110798, "scanner": "repobility-core", "fingerprint": "ca5da3551af97272c4f099fc472740148135a15816b81b90bd862e8f91ec66ce", "category": "practices", "severity": "medium", "confidence": null, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"rule_id": "CORE_NO_CI", "scanner": "repobility-core", "correlation_key": "repo|practices|core_no_ci"}}}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110843, "scanner": "repobility-ai-code-hygiene", "fingerprint": "ba898c31ad95f683dc14678950272bbe9c84aeb38d2a5b6e45343cf9a432f0da", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsrdr/kernel/fs/AFSClose.cpp", "duplicate_line": 48, "correlation_key": "fp|ba898c31ad95f683dc14678950272bbe9c84aeb38d2a5b6e45343cf9a432f0da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsrdr/kernel/fs/AFSFSControl.cpp"}, "region": {"startLine": 18}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110842, "scanner": "repobility-ai-code-hygiene", "fingerprint": "c69b511e7daffb80ec8251399bc142809e153ec9cf035f0fa712be3a6c0739f2", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsrdr/kernel/fs/AFSCreate.cpp", "duplicate_line": 76, "correlation_key": "fp|c69b511e7daffb80ec8251399bc142809e153ec9cf035f0fa712be3a6c0739f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsrdr/kernel/fs/AFSFSControl.cpp"}, "region": {"startLine": 14}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110841, "scanner": "repobility-ai-code-hygiene", "fingerprint": "0ba8518c3529f7150cd8a516db743f3641af619e279fe7377b1bfbbcb42b29b6", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsrdr/kernel/fs/AFSDirControl.cpp", "duplicate_line": 7, "correlation_key": "fp|0ba8518c3529f7150cd8a516db743f3641af619e279fe7377b1bfbbcb42b29b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsrdr/kernel/fs/AFSFSControl.cpp"}, "region": {"startLine": 9}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110840, "scanner": "repobility-ai-code-hygiene", "fingerprint": "cf5e110d8402cb7c9b337381c65b6fecb6aa2473c9a422d02e4b57240db496da", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsrdr/kernel/fs/AFSDirControl.cpp", "duplicate_line": 22, "correlation_key": "fp|cf5e110d8402cb7c9b337381c65b6fecb6aa2473c9a422d02e4b57240db496da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsrdr/kernel/fs/AFSEa.cpp"}, "region": {"startLine": 21}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110839, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1ef9bc8129efe8a59f85fbdf8f072eedf0a45284803305482bcf99736b32c26a", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsrdr/kernel/fs/AFSClose.cpp", "duplicate_line": 48, "correlation_key": "fp|1ef9bc8129efe8a59f85fbdf8f072eedf0a45284803305482bcf99736b32c26a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsrdr/kernel/fs/AFSEa.cpp"}, "region": {"startLine": 15}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110838, "scanner": "repobility-ai-code-hygiene", "fingerprint": "61680705e24a7371a920185fe07c5ad01b68a6c5e7d468866fd1ac4558e8e18f", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsrdr/kernel/fs/AFSCreate.cpp", "duplicate_line": 76, "correlation_key": "fp|61680705e24a7371a920185fe07c5ad01b68a6c5e7d468866fd1ac4558e8e18f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsrdr/kernel/fs/AFSEa.cpp"}, "region": {"startLine": 11}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110837, "scanner": "repobility-ai-code-hygiene", "fingerprint": "b33fc37fcf1515b6aef0895a13f7cf5f1abbf3b8cfaf7c67dce3397648959f62", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsrdr/kernel/fs/AFSClose.cpp", "duplicate_line": 48, "correlation_key": "fp|b33fc37fcf1515b6aef0895a13f7cf5f1abbf3b8cfaf7c67dce3397648959f62"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsrdr/kernel/fs/AFSDirControl.cpp"}, "region": {"startLine": 16}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110836, "scanner": "repobility-ai-code-hygiene", "fingerprint": "c85509c5a5b09b1cec9579d2d05e4c4660bf85932f4cdf6638b312ec53fa6aba", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsrdr/kernel/fs/AFSCreate.cpp", "duplicate_line": 76, "correlation_key": "fp|c85509c5a5b09b1cec9579d2d05e4c4660bf85932f4cdf6638b312ec53fa6aba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsrdr/kernel/fs/AFSDirControl.cpp"}, "region": {"startLine": 12}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110835, "scanner": "repobility-ai-code-hygiene", "fingerprint": "b830d8c0513b7de8538a09ab635609b99d202bbd353663aa5099b6d39164340b", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsd/afsdacl.c", "duplicate_line": 1, "correlation_key": "fp|b830d8c0513b7de8538a09ab635609b99d202bbd353663aa5099b6d39164340b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsd/logon_ad.cpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110834, "scanner": "repobility-ai-code-hygiene", "fingerprint": "2b2f2598eb80f7ff6e1f3ea686a53d138e71f978d834445b135cdd7dcf13f26d", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsd/lanahelper.cpp", "duplicate_line": 7, "correlation_key": "fp|2b2f2598eb80f7ff6e1f3ea686a53d138e71f978d834445b135cdd7dcf13f26d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsd/lanahelper.h"}, "region": {"startLine": 7}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110833, "scanner": "repobility-ai-code-hygiene", "fingerprint": "73af475f5839d5285bcbd28e62d59b62938ef141aedf539e3e5a24f6a728a77b", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsd/afsdacl.c", "duplicate_line": 1, "correlation_key": "fp|73af475f5839d5285bcbd28e62d59b62938ef141aedf539e3e5a24f6a728a77b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsd/lanahelper.h"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110832, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a17dcd6c30b805d608e3674a851432ad29d8304473878d00101370db4abaa490", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsd/afsdacl.c", "duplicate_line": 1, "correlation_key": "fp|a17dcd6c30b805d608e3674a851432ad29d8304473878d00101370db4abaa490"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsd/lanahelper.cpp"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110831, "scanner": "repobility-ai-code-hygiene", "fingerprint": "5cb926e9d1411c9a0b6770104a70531cf5520e3b8b16076b5565243a4463c20a", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsd/afsdacl.c", "duplicate_line": 1, "correlation_key": "fp|5cb926e9d1411c9a0b6770104a70531cf5520e3b8b16076b5565243a4463c20a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsd/afslogon.h"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110830, "scanner": "repobility-ai-code-hygiene", "fingerprint": "b54abcbe96511b189bcc126b4c0bcd66f6fc625be55b51858a01f572c8037b22", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/al_misc.cpp", "duplicate_line": 282, "correlation_key": "fp|b54abcbe96511b189bcc126b4c0bcd66f6fc625be55b51858a01f572c8037b22"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsclass/internal.cpp"}, "region": {"startLine": 63}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110829, "scanner": "repobility-ai-code-hygiene", "fingerprint": "5123096ab76c62629fde3b36d89cc5f95fecce3e55f090ab745b084eda9e2144", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsclass/c_grp.cpp", "duplicate_line": 188, "correlation_key": "fp|5123096ab76c62629fde3b36d89cc5f95fecce3e55f090ab745b084eda9e2144"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsclass/c_usr.cpp"}, "region": {"startLine": 158}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110828, "scanner": "repobility-ai-code-hygiene", "fingerprint": "604a96069c03aa007e7af2e01204608e31cc464890502aefbf4d607913633ceb", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsclass/c_agg.cpp", "duplicate_line": 145, "correlation_key": "fp|604a96069c03aa007e7af2e01204608e31cc464890502aefbf4d607913633ceb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsclass/c_svc.cpp"}, "region": {"startLine": 44}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110827, "scanner": "repobility-ai-code-hygiene", "fingerprint": "018ebca83d216359ab1a2334f41f7c511f03230989c72b0238b259c0caf87c85", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsclass/c_agg.cpp", "duplicate_line": 149, "correlation_key": "fp|018ebca83d216359ab1a2334f41f7c511f03230989c72b0238b259c0caf87c85"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsclass/c_set.cpp"}, "region": {"startLine": 150}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110826, "scanner": "repobility-ai-code-hygiene", "fingerprint": "0a78d0f1ae80b9bb08d0eb02d2899834356127a177bbfd5c4bb98d699298b6c0", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/al_wizard.cpp", "duplicate_line": 681, "correlation_key": "fp|0a78d0f1ae80b9bb08d0eb02d2899834356127a177bbfd5c4bb98d699298b6c0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/resize.cpp"}, "region": {"startLine": 244}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110825, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1d5c963faa25d330484eab132557856240d8b53bdd06a98fcf4896a38c763aff", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/al_misc.cpp", "duplicate_line": 341, "correlation_key": "fp|1d5c963faa25d330484eab132557856240d8b53bdd06a98fcf4896a38c763aff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/resize.cpp"}, "region": {"startLine": 36}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110824, "scanner": "repobility-ai-code-hygiene", "fingerprint": "c4c39a5b659bd36981bfdd3a55c0f0fb3a72266061ccaf753afc1c124d220c8a", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/ctl_date.cpp", "duplicate_line": 10, "correlation_key": "fp|c4c39a5b659bd36981bfdd3a55c0f0fb3a72266061ccaf753afc1c124d220c8a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/ctl_time.cpp"}, "region": {"startLine": 10}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110823, "scanner": "repobility-ai-code-hygiene", "fingerprint": "7b0596c2cd3aeba038be0bbb1f2d76679b603f5b34b6eb6a65d52de5c9d402d0", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/al_misc.cpp", "duplicate_line": 341, "correlation_key": "fp|7b0596c2cd3aeba038be0bbb1f2d76679b603f5b34b6eb6a65d52de5c9d402d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/ctl_time.cpp"}, "region": {"startLine": 4}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110822, "scanner": "repobility-ai-code-hygiene", "fingerprint": "9b3757f84ceb91447facd02be6fef839d04ea69dcbe5ca94ef6830be0f13394f", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/ctl_date.cpp", "duplicate_line": 10, "correlation_key": "fp|9b3757f84ceb91447facd02be6fef839d04ea69dcbe5ca94ef6830be0f13394f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/ctl_spinner.cpp"}, "region": {"startLine": 17}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110821, "scanner": "repobility-ai-code-hygiene", "fingerprint": "ddc1b9443861779f2e441f44dc1068c1def699eed6bf23ae41e1fd56b4844751", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/al_misc.cpp", "duplicate_line": 341, "correlation_key": "fp|ddc1b9443861779f2e441f44dc1068c1def699eed6bf23ae41e1fd56b4844751"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/ctl_spinner.cpp"}, "region": {"startLine": 11}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110820, "scanner": "repobility-ai-code-hygiene", "fingerprint": "68c4f4439e9adb3862e7f87e1ff0b3340d52853057188b3c5c909dd08345ce28", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/ctl_date.cpp", "duplicate_line": 10, "correlation_key": "fp|68c4f4439e9adb3862e7f87e1ff0b3340d52853057188b3c5c909dd08345ce28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/ctl_sockaddr.cpp"}, "region": {"startLine": 10}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110819, "scanner": "repobility-ai-code-hygiene", "fingerprint": "5c0e11df5777d3ac30302c9da6e48ae9a04da57cddcf77575f81cdb4ab7abb2e", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/al_misc.cpp", "duplicate_line": 341, "correlation_key": "fp|5c0e11df5777d3ac30302c9da6e48ae9a04da57cddcf77575f81cdb4ab7abb2e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/ctl_sockaddr.cpp"}, "region": {"startLine": 4}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110818, "scanner": "repobility-ai-code-hygiene", "fingerprint": "4e228fd1c48f15acc1ffc02f3c2c39372ca6e51c84a181cdf3a09dc28c3622f0", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/ctl_date.cpp", "duplicate_line": 10, "correlation_key": "fp|4e228fd1c48f15acc1ffc02f3c2c39372ca6e51c84a181cdf3a09dc28c3622f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/ctl_elapsed.cpp"}, "region": {"startLine": 10}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110817, "scanner": "repobility-ai-code-hygiene", "fingerprint": "d81eb3e30d464c8ad218374c6d4612fdb2c658053b50bb27c0f7a9d6b9452aa1", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/al_misc.cpp", "duplicate_line": 341, "correlation_key": "fp|d81eb3e30d464c8ad218374c6d4612fdb2c658053b50bb27c0f7a9d6b9452aa1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/ctl_elapsed.cpp"}, "region": {"startLine": 4}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110816, "scanner": "repobility-ai-code-hygiene", "fingerprint": "666b68777a6017bd8b73413547bde6f906fd507b298188a36b78d0b6bbf7c847", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/al_misc.cpp", "duplicate_line": 341, "correlation_key": "fp|666b68777a6017bd8b73413547bde6f906fd507b298188a36b78d0b6bbf7c847"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/ctl_date.cpp"}, "region": {"startLine": 4}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110815, "scanner": "repobility-ai-code-hygiene", "fingerprint": "7329a093b981f7b7703f4b6f403db44573b7359d0cbd80a8aeb1ed739ea5271c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afs_setup_utils/animate_icon.cpp", "duplicate_line": 4, "correlation_key": "fp|7329a093b981f7b7703f4b6f403db44573b7359d0cbd80a8aeb1ed739ea5271c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/al_misc.cpp"}, "region": {"startLine": 71}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 110814, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a8a6ca2555e66a2ec6f14067b43c2495deb4c8b91ef4be51b1cab2ff544a153e", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "src/WINNT/afsapplib/al_creds.cpp", "duplicate_line": 639, "correlation_key": "fp|a8a6ca2555e66a2ec6f14067b43c2495deb4c8b91ef4be51b1cab2ff544a153e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsapplib/al_error.cpp"}, "region": {"startLine": 88}}}]}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "properties": {"repobilityId": 110812, "scanner": "repobility-threat-engine", "fingerprint": "2148500cc1319a680ca3bc67932d84da0bd5c64e48a447def3d3442e0e4cf2e9", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 2 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|2148500cc1319a680ca3bc67932d84da0bd5c64e48a447def3d3442e0e4cf2e9", "aggregated_count": 2}}}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 110811, "scanner": "repobility-threat-engine", "fingerprint": "ec1ae103593618aca50945c03f1695b99c3e80998bf9336c31a9e7643329d71a", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|ec1ae103593618aca50945c03f1695b99c3e80998bf9336c31a9e7643329d71a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsd/cm_rpc.c"}, "region": {"startLine": 63}}}]}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 110810, "scanner": "repobility-threat-engine", "fingerprint": "2f9270882e1e159c999ea3aaaf3d6fe451cd69f9343c1c6fe960ffe9b3a6b12f", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|2f9270882e1e159c999ea3aaaf3d6fe451cd69f9343c1c6fe960ffe9b3a6b12f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsd/cm_getaddrs.c"}, "region": {"startLine": 173}}}]}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 110809, "scanner": "repobility-threat-engine", "fingerprint": "dae821147576a0bb9132cc7bbc6cdb9ac1b7fa2c12b9a23333aed96692042c54", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|dae821147576a0bb9132cc7bbc6cdb9ac1b7fa2c12b9a23333aed96692042c54"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsd/cm_eacces.c"}, "region": {"startLine": 68}}}]}, {"ruleId": "MINED022", "level": "none", "message": {"text": "[MINED022] C Strcpy (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "properties": {"repobilityId": 110807, "scanner": "repobility-threat-engine", "fingerprint": "9143f7f6b7d486efb62b6069c281049a17e4c9d5a06828d478262d6151032363", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 2 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|9143f7f6b7d486efb62b6069c281049a17e4c9d5a06828d478262d6151032363", "aggregated_count": 2}}}, {"ruleId": "MINED049", "level": "none", "message": {"text": "[MINED049] Print Pii: Logging password/token/email/ssn directly to stdout."}, "properties": {"repobilityId": 110803, "scanner": "repobility-threat-engine", "fingerprint": "15886227008a3cc52ab4235bce8f6d4ed04e0fee9a25477fbe5ad98e4423c4e5", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "print-pii", "owasp": "A09:2021", "cwe_ids": ["CWE-532"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348015+00:00", "triaged_in_corpus": 12, "observations_count": 676566, "ai_coder_pattern_id": 26}, "scanner": "repobility-threat-engine", "correlation_key": "fp|15886227008a3cc52ab4235bce8f6d4ed04e0fee9a25477fbe5ad98e4423c4e5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsadmsvr/TaAfsAdmSvrUser.cpp"}, "region": {"startLine": 133}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 110802, "scanner": "repobility-threat-engine", "fingerprint": "afc5d8590823a4c9a9baa3ba60400640ba3e6af430356223739acde6e2307e28", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|afc5d8590823a4c9a9baa3ba60400640ba3e6af430356223739acde6e2307e28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afs_setup_utils/GetWebDll/GetWebDll.cpp"}, "region": {"startLine": 194}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 110801, "scanner": "repobility-threat-engine", "fingerprint": "4e826fa034db2b419fdb36f7d193e10b7d1735d5f04011d63cea4171f5c8a6bd", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|4e826fa034db2b419fdb36f7d193e10b7d1735d5f04011d63cea4171f5c8a6bd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afs_setup_utils/GetWebDll/GetWebDll.cpp"}, "region": {"startLine": 125}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 110808, "scanner": "repobility-threat-engine", "fingerprint": "5ca83612950c22a275b7c4b574409f26bbe7f63d9dcf86d1064ad46207e17d3f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|5ca83612950c22a275b7c4b574409f26bbe7f63d9dcf86d1064ad46207e17d3f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsd/cm_buf.h"}, "region": {"startLine": 93}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 110800, "scanner": "repobility-threat-engine", "fingerprint": "9464be3f0763fedf28a2fc7966bc60a06507c05066be13d08c3f11a9eaa2e937", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "URL(l", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|9464be3f0763fedf28a2fc7966bc60a06507c05066be13d08c3f11a9eaa2e937"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afs_setup_utils/GetWebDll/GetWebDll.cpp"}, "region": {"startLine": 191}}}]}, {"ruleId": "MINED022", "level": "error", "message": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "properties": {"repobilityId": 110806, "scanner": "repobility-threat-engine", "fingerprint": "cf1f2a90d5ec245f1a80bf611a486e52fde2be7da679fe411f43ee8b3a27558d", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "correlation_key": "fp|cf1f2a90d5ec245f1a80bf611a486e52fde2be7da679fe411f43ee8b3a27558d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsd/cklog.c"}, "region": {"startLine": 303}}}]}, {"ruleId": "MINED022", "level": "error", "message": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "properties": {"repobilityId": 110805, "scanner": "repobility-threat-engine", "fingerprint": "4c61b6d6acdc52459e0991f7395d4e4b7bacbb8fb284e4a5d0a3e7d416a74b0a", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "correlation_key": "fp|4c61b6d6acdc52459e0991f7395d4e4b7bacbb8fb284e4a5d0a3e7d416a74b0a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsd/afsd.c"}, "region": {"startLine": 50}}}]}, {"ruleId": "MINED022", "level": "error", "message": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "properties": {"repobilityId": 110804, "scanner": "repobility-threat-engine", "fingerprint": "4bdb7a10c638842c3b5b6e475ef7f7c8a9f8ad7539fba6d14fb3c81824a6eb37", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "correlation_key": "fp|4bdb7a10c638842c3b5b6e475ef7f7c8a9f8ad7539fba6d14fb3c81824a6eb37"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "src/WINNT/afsclass/internal.cpp"}, "region": {"startLine": 324}}}]}]}]}