Scan timing: clone 1.48s · analysis 6.02s · 0.1 MB · GitHub preflight 427ms
https://github.com/SecureBananaLabs/bug-bounty
· scanned 2026-06-05 19:36 UTC (4 days, 16 hours ago)
· 10 languages
100 raw signals (10 security + 90 graph) 58th percentile · Javascript · tiny (<2K LoC) System graph score 79 (lower by 13)
Last scanned 4 days, 16 hours ago · v2 · 54 actionable findings from 2 signal sources. 1 repeated signal grouped for readability. Security checks, system graph analysis, and verified AI-agent feedback are merged into one review queue.
| Component | Sub-score | Weight | Contribution |
|---|---|---|---|
structure_score |
75.0 | 0.15 | 11.25 |
security_score |
97.4 | 0.25 | 24.35 |
testing_score |
20.0 | 0.20 | 4.00 |
documentation_score |
55.0 | 0.15 | 8.25 |
practices_score |
67.0 | 0.15 | 10.05 |
code_quality |
80.0 | 0.10 | 8.00 |
| Overall | 1.00 | 65.9 |
All 249 nodes from the latest scan, grouped by kind. Each node is a unit the engine identified (file, function, endpoint, table…). Most users won't need this view — it's primarily for debugging the engine's graph extraction or for AI agents that want to enumerate the project structure.
| Label | Layer | Status | Path |
|---|---|---|---|
createApp |
software | healthy | apps/api/src/app.js:createApp |
bootstrap |
software | healthy | apps/api/src/server.js:bootstrap |
connectDb |
software | healthy | apps/api/src/config/db.js:connectDb |
authMiddleware |
software | healthy | apps/api/src/middleware/auth.js:authMiddleware |
errorHandler |
software | healthy | apps/api/src/middleware/errorHandler.js:errorHandler |
signAccessToken |
software | healthy | apps/api/src/utils/jwt.js:signAccessToken |
verifyAccessToken |
software | healthy | apps/api/src/utils/jwt.js:verifyAccessToken |
ok |
software | healthy | apps/api/src/utils/response.js:ok |
fail |
software | healthy | apps/api/src/utils/response.js:fail |
getJobs |
software | healthy | apps/api/src/controllers/jobController.js:getJobs |
postJob |
software | healthy | apps/api/src/controllers/jobController.js:postJob |
getMessages |
software | healthy | apps/api/src/controllers/messageController.js:getMessages |
postMessage |
software | healthy | apps/api/src/controllers/messageController.js:postMessage |
getProposals |
software | healthy | apps/api/src/controllers/proposalController.js:getProposals |
postProposal |
software | healthy | apps/api/src/controllers/proposalController.js:postProposal |
getReviews |
software | healthy | apps/api/src/controllers/reviewController.js:getReviews |
postReview |
software | healthy | apps/api/src/controllers/reviewController.js:postReview |
search |
software | healthy | apps/api/src/controllers/searchController.js:search |
uploadFile |
software | healthy | apps/api/src/controllers/uploadController.js:uploadFile |
createPayment |
software | healthy | apps/api/src/controllers/paymentController.js:createPayment |
metrics |
software | healthy | apps/api/src/controllers/adminController.js:metrics |
getUsers |
software | healthy | apps/api/src/controllers/userController.js:getUsers |
postUser |
software | healthy | apps/api/src/controllers/userController.js:postUser |
getNotifications |
software | healthy | apps/api/src/controllers/notificationController.js:getNotif… |
postNotification |
software | healthy | apps/api/src/controllers/notificationController.js:postNoti… |
register |
software | healthy | apps/api/src/controllers/authController.js:register |
login |
software | healthy | apps/api/src/controllers/authController.js:login |
oauthCallback |
software | healthy | apps/api/src/controllers/authController.js:oauthCallback |
refresh |
software | healthy | apps/api/src/controllers/authController.js:refresh |
registerUser |
software | healthy | apps/api/src/services/authService.js:registerUser |
loginUser |
software | healthy | apps/api/src/services/authService.js:loginUser |
refreshToken |
software | healthy | apps/api/src/services/authService.js:refreshToken |
createPaymentIntent |
software | healthy | apps/api/src/services/paymentService.js:createPaymentIntent |
globalSearch |
software | healthy | apps/api/src/services/searchService.js:globalSearch |
listUsers |
software | healthy | apps/api/src/services/userService.js:listUsers |
createUser |
software | healthy | apps/api/src/services/userService.js:createUser |
listProposals |
software | healthy | apps/api/src/services/proposalService.js:listProposals |
createProposal |
software | healthy | apps/api/src/services/proposalService.js:createProposal |
getAdminMetrics |
software | healthy | apps/api/src/services/adminService.js:getAdminMetrics |
listNotifications |
software | healthy | apps/api/src/services/notificationService.js:listNotificati… |
createNotification |
software | healthy | apps/api/src/services/notificationService.js:createNotifica… |
listReviews |
software | healthy | apps/api/src/services/reviewService.js:listReviews |
createReview |
software | healthy | apps/api/src/services/reviewService.js:createReview |
listMessages |
software | healthy | apps/api/src/services/messageService.js:listMessages |
sendMessage |
software | healthy | apps/api/src/services/messageService.js:sendMessage |
listJobs |
software | healthy | apps/api/src/services/jobService.js:listJobs |
createJob |
software | healthy | apps/api/src/services/jobService.js:createJob |
Navigation |
software | healthy | apps/web/components/Navigation.tsx:Navigation |
LandingPage |
software | healthy | apps/web/app/page.tsx:LandingPage |
RootLayout |
software | healthy | apps/web/app/layout.tsx:RootLayout |
Showing first 50 of this kind. Full payload available via the JSON button at the top of the page.
| Label | Layer | Status | Path |
|---|---|---|---|
README.md |
software | healthy | README.md |
package.json |
software | healthy | package.json |
CONTRIBUTING.md |
software | healthy | CONTRIBUTING.md |
package-lock.json |
software | healthy | package-lock.json |
leaderboard.json |
software | healthy | leaderboard.json |
package.json |
software | healthy | apps/api/package.json |
app.js |
software | healthy | apps/api/src/app.js |
server.js |
software | healthy | apps/api/src/server.js |
db.js |
software | healthy | apps/api/src/config/db.js |
env.js |
software | warning | apps/api/src/config/env.js |
health.test.js |
software | warning | apps/api/src/tests/health.test.js |
rateLimit.js |
software | warning | apps/api/src/middleware/rateLimit.js |
auth.js |
software | healthy | apps/api/src/middleware/auth.js |
errorHandler.js |
software | healthy | apps/api/src/middleware/errorHandler.js |
jwt.js |
software | healthy | apps/api/src/utils/jwt.js |
response.js |
software | healthy | apps/api/src/utils/response.js |
proposalRoutes.js |
software | warning | apps/api/src/routes/proposalRoutes.js |
uploadRoutes.js |
software | warning | apps/api/src/routes/uploadRoutes.js |
adminRoutes.js |
software | warning | apps/api/src/routes/adminRoutes.js |
userRoutes.js |
software | warning | apps/api/src/routes/userRoutes.js |
searchRoutes.js |
software | warning | apps/api/src/routes/searchRoutes.js |
reviewRoutes.js |
software | warning | apps/api/src/routes/reviewRoutes.js |
paymentRoutes.js |
software | warning | apps/api/src/routes/paymentRoutes.js |
jobRoutes.js |
software | warning | apps/api/src/routes/jobRoutes.js |
messageRoutes.js |
software | warning | apps/api/src/routes/messageRoutes.js |
notificationRoutes.js |
software | warning | apps/api/src/routes/notificationRoutes.js |
authRoutes.js |
software | warning | apps/api/src/routes/authRoutes.js |
jobController.js |
software | healthy | apps/api/src/controllers/jobController.js |
messageController.js |
software | healthy | apps/api/src/controllers/messageController.js |
proposalController.js |
software | healthy | apps/api/src/controllers/proposalController.js |
reviewController.js |
software | healthy | apps/api/src/controllers/reviewController.js |
searchController.js |
software | healthy | apps/api/src/controllers/searchController.js |
uploadController.js |
software | healthy | apps/api/src/controllers/uploadController.js |
paymentController.js |
software | healthy | apps/api/src/controllers/paymentController.js |
adminController.js |
software | healthy | apps/api/src/controllers/adminController.js |
userController.js |
software | healthy | apps/api/src/controllers/userController.js |
notificationController.js |
software | healthy | apps/api/src/controllers/notificationController.js |
authController.js |
software | healthy | apps/api/src/controllers/authController.js |
authService.js |
software | healthy | apps/api/src/services/authService.js |
paymentService.js |
software | healthy | apps/api/src/services/paymentService.js |
searchService.js |
software | healthy | apps/api/src/services/searchService.js |
userService.js |
software | healthy | apps/api/src/services/userService.js |
proposalService.js |
software | healthy | apps/api/src/services/proposalService.js |
adminService.js |
software | healthy | apps/api/src/services/adminService.js |
notificationService.js |
software | healthy | apps/api/src/services/notificationService.js |
reviewService.js |
software | healthy | apps/api/src/services/reviewService.js |
messageService.js |
software | healthy | apps/api/src/services/messageService.js |
jobService.js |
software | healthy | apps/api/src/services/jobService.js |
job.js |
software | warning | apps/api/src/validators/job.js |
auth.js |
software | warning | apps/api/src/validators/auth.js |
Showing first 50 of this kind. Full payload available via the JSON button at the top of the page.
| Label | Layer | Status | Path |
|---|---|---|---|
apps |
software | healthy | apps |
api |
software | healthy | apps/api |
src |
software | healthy | apps/api/src |
config |
software | healthy | apps/api/src/config |
tests |
software | healthy | apps/api/src/tests |
middleware |
software | healthy | apps/api/src/middleware |
utils |
software | healthy | apps/api/src/utils |
routes |
software | healthy | apps/api/src/routes |
controllers |
software | healthy | apps/api/src/controllers |
services |
software | healthy | apps/api/src/services |
validators |
software | healthy | apps/api/src/validators |
web |
software | healthy | apps/web |
components |
software | healthy | apps/web/components |
app |
software | healthy | apps/web/app |
settings |
software | healthy | apps/web/app/settings |
notifications |
software | healthy | apps/web/app/notifications |
freelancers |
software | healthy | apps/web/app/freelancers |
[username] |
software | healthy | apps/web/app/freelancers/[username] |
search |
software | healthy | apps/web/app/freelancers/search |
dashboard |
software | healthy | apps/web/app/dashboard |
client |
software | healthy | apps/web/app/dashboard/client |
freelancer |
software | healthy | apps/web/app/dashboard/freelancer |
billing |
software | healthy | apps/web/app/billing |
admin |
software | healthy | apps/web/app/admin |
messaging |
software | healthy | apps/web/app/messaging |
jobs |
software | healthy | apps/web/app/jobs |
post |
software | healthy | apps/web/app/jobs/post |
[id] |
software | healthy | apps/web/app/jobs/[id] |
lib |
software | healthy | apps/web/lib |
packages |
software | healthy | packages |
ui |
software | healthy | packages/ui |
src |
software | healthy | packages/ui/src |
db |
software | healthy | packages/db |
src |
software | healthy | packages/db/src |
.github |
software | healthy | .github |
workflows |
software | healthy | .github/workflows |
| Label | Layer | Status | Path |
|---|---|---|---|
GET /health |
api | healthy | apps/api/src/app.js |
USE /api/auth |
api | healthy | apps/api/src/app.js |
USE /api/users |
api | healthy | apps/api/src/app.js |
USE /api/jobs |
api | healthy | apps/api/src/app.js |
USE /api/proposals |
api | healthy | apps/api/src/app.js |
USE /api/payments |
api | healthy | apps/api/src/app.js |
USE /api/reviews |
api | healthy | apps/api/src/app.js |
USE /api/messages |
api | healthy | apps/api/src/app.js |
USE /api/notifications |
api | healthy | apps/api/src/app.js |
USE /api/uploads |
api | healthy | apps/api/src/app.js |
USE /api/search |
api | healthy | apps/api/src/app.js |
USE /api/admin |
api | healthy | apps/api/src/app.js |
GET / |
api | healthy | apps/api/src/routes/proposalRoutes.js |
POST / |
api | healthy | apps/api/src/routes/proposalRoutes.js |
GET /metrics |
api | healthy | apps/api/src/routes/adminRoutes.js |
POST /register |
api | healthy | apps/api/src/routes/authRoutes.js |
POST /login |
api | healthy | apps/api/src/routes/authRoutes.js |
GET /oauth/:provider/callback |
api | healthy | apps/api/src/routes/authRoutes.js |
POST /refresh |
api | healthy | apps/api/src/routes/authRoutes.js |
| Label | Layer | Status | Path |
|---|---|---|---|
LandingPage |
frontend | healthy | apps/web/app/page.tsx |
RootLayout |
frontend | healthy | apps/web/app/layout.tsx |
SettingsPage |
frontend | healthy | apps/web/app/settings/page.tsx |
NotificationsPage |
frontend | healthy | apps/web/app/notifications/page.tsx |
FreelancerProfilePage |
frontend | healthy | apps/web/app/freelancers/[username]/page.tsx |
FreelancerSearchPage |
frontend | healthy | apps/web/app/freelancers/search/page.tsx |
ClientDashboardPage |
frontend | healthy | apps/web/app/dashboard/client/page.tsx |
FreelancerDashboardPage |
frontend | healthy | apps/web/app/dashboard/freelancer/page.tsx |
BillingPage |
frontend | healthy | apps/web/app/billing/page.tsx |
AdminPanelPage |
frontend | healthy | apps/web/app/admin/page.tsx |
MessagingPage |
frontend | healthy | apps/web/app/messaging/page.tsx |
JobsPage |
frontend | healthy | apps/web/app/jobs/page.tsx |
PostJobPage |
frontend | healthy | apps/web/app/jobs/post/page.tsx |
JobDetailPage |
frontend | healthy | apps/web/app/jobs/[id]/page.tsx |
| Label | Layer | Status | Path |
|---|---|---|---|
/page.tsx |
frontend | healthy | apps/web/app/page.tsx |
/settings |
frontend | healthy | apps/web/app/settings/page.tsx |
/notifications |
frontend | healthy | apps/web/app/notifications/page.tsx |
/freelancers/[username] |
frontend | healthy | apps/web/app/freelancers/[username]/page.tsx |
/freelancers/search |
frontend | healthy | apps/web/app/freelancers/search/page.tsx |
/dashboard/client |
frontend | healthy | apps/web/app/dashboard/client/page.tsx |
/dashboard/freelancer |
frontend | healthy | apps/web/app/dashboard/freelancer/page.tsx |
/billing |
frontend | healthy | apps/web/app/billing/page.tsx |
/admin |
frontend | healthy | apps/web/app/admin/page.tsx |
/messaging |
frontend | healthy | apps/web/app/messaging/page.tsx |
/jobs |
frontend | healthy | apps/web/app/jobs/page.tsx |
/jobs/post |
frontend | healthy | apps/web/app/jobs/post/page.tsx |
/jobs/[id] |
frontend | healthy | apps/web/app/jobs/[id]/page.tsx |
| Label | Layer | Status | Path |
|---|---|---|---|
auth::apps/api/src/routes/authRoutes.js |
security | healthy | apps/api/src/routes/authRoutes.js |
auth::apps/api/src/middleware/auth.js |
security | healthy | apps/api/src/middleware/auth.js |
auth::apps/api/src/services/authService.js |
security | healthy | apps/api/src/services/authService.js |
auth::apps/api/src/utils/jwt.js |
security | healthy | apps/api/src/utils/jwt.js |
| Label | Layer | Status | Path |
|---|---|---|---|
repobility-clone-tcrhwapn |
software | healthy | /tmp/repobility-clone-tcrhwapn |
| Label | Layer | Status | Path |
|---|---|---|---|
postgresql |
data | healthy | apps/api/src/services/searchService.js |
| Label | Layer | Status | Path |
|---|---|---|---|
127.0.0.1 |
network | healthy | apps/api/src/tests/health.test.js |
| Label | Layer | Status | Path |
|---|---|---|---|
gha::update-pr-leaderboard |
cicd | healthy | .github/workflows/update-pr-leaderboard.yml |
| Label | Layer | Status | Path |
|---|---|---|---|
update-leaderboard |
cicd | healthy | .github/workflows/update-pr-leaderboard.yml |
This page is publicly accessible at:
https://repobility.com/scan/f1d68f9b-9d99-4068-a91a-44a8e353f39c/
To check status programmatically (no auth required):
curl -s https://repobility.com/api/v1/public/scan/f1d68f9b-9d99-4068-a91a-44a8e353f39c/Important — please don't re-submit the same URL repeatedly. The submission endpoint is idempotent: re-submitting the same git URL returns this same scan_token, not a new one. To re-scan this repo, sign up free and use the dashboard.