{"version": "2.1.0", "$schema": "https://json.schemastore.org/sarif-2.1.0.json", "runs": [{"tool": {"driver": {"name": "Repobility", "informationUri": "https://repobility.com", "rules": [{"id": "MINED109", "name": "[MINED109] Mutable default argument in `man_role` (list): `def man_role(... = []/{}/set())` \u2014 Python's default value is ", "shortDescription": {"text": "[MINED109] Mutable default argument in `man_role` (list): `def man_role(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every f"}, "fullDescription": {"text": "Use None as the default and create the collection inside the function: `def man_role(x=None): x = x or []`"}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED111", "name": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or ", "shortDescription": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "fullDescription": {"text": "Either narrow the exception type, log the exception with `logger.exception(...)`, or re-raise after handling."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "WEB012", "name": "Service worker is present without a web app manifest", "shortDescription": {"text": "Service worker is present without a web app manifest"}, "fullDescription": {"text": "Add a valid manifest.json or site.webmanifest and reference it from the document head. Include name, icons, start_url, display, and theme colors."}, "properties": {"scanner": "repobility-web-presence", "category": "quality", "severity": "medium", "confidence": 0.72, "cwe": "", "owasp": ""}}, {"id": "WEB003", "name": "Public web service has no security.txt", "shortDescription": {"text": "Public web service has no security.txt"}, "fullDescription": {"text": "Add /.well-known/security.txt with Contact, Expires, Canonical, Preferred-Languages, and Policy fields. Keep the contact endpoint monitored."}, "properties": {"scanner": "repobility-web-presence", "category": "quality", "severity": "medium", "confidence": 0.78, "cwe": "", "owasp": ""}}, {"id": "WEB015", "name": "Public web app has no Content Security Policy", "shortDescription": {"text": "Public web app has no Content Security Policy"}, "fullDescription": {"text": "Add a Content-Security-Policy header through the web framework or hosting config. For static apps, add a CSP meta tag that restricts default-src, script-src, connect-src, img-src, and frame-ancestors."}, "properties": {"scanner": "repobility-web-presence", "category": "quality", "severity": "medium", "confidence": 0.7, "cwe": "", "owasp": ""}}, {"id": "DKR001", "name": "Docker final stage has no non-root USER", "shortDescription": {"text": "Docker final stage has no non-root USER"}, "fullDescription": {"text": "Add a non-root USER in the final runtime stage after files and permissions are prepared."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.82, "cwe": "", "owasp": ""}}, {"id": "DKR007", "name": "Docker build context has no .dockerignore", "shortDescription": {"text": "Docker build context has no .dockerignore"}, "fullDescription": {"text": "Add .dockerignore with at least .git, .env, private keys, dependency folders, build outputs, and local databases."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "DKR015", "name": "Docker build context is very large", "shortDescription": {"text": "Docker build context is very large"}, "fullDescription": {"text": "Shrink the build context with .dockerignore, move generated/runtime data outside the build context, and copy only the manifest files needed for cached dependency layers."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.84, "cwe": "", "owasp": ""}}, {"id": "AGT015", "name": "Remote install command pipes network code directly to a shell", "shortDescription": {"text": "Remote install command pipes network code directly to a shell"}, "fullDescription": {"text": "Publish a package-manager install path or add checksum/signature verification before execution. For docs, show the inspect-then-run flow and pin the downloaded artifact version."}, "properties": {"scanner": "repobility-agent-runtime", "category": "dependency", "severity": "medium", "confidence": 0.7, "cwe": "", "owasp": ""}}, {"id": "AIC004", "name": "Suspicious implementation file appears unreferenced", "shortDescription": {"text": "Suspicious implementation file appears unreferenced"}, "fullDescription": {"text": "Confirm whether this file is reachable. If not, delete it; if yes, wire it through explicit imports, routes, or entry points and add a test that proves the path executes."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "medium", "confidence": 0.78, "cwe": "", "owasp": ""}}, {"id": "AIC001", "name": "Parallel implementation file sits beside a canonical file", "shortDescription": {"text": "Parallel implementation file sits beside a canonical file"}, "fullDescription": {"text": "Merge the intended change into the canonical file, update tests/imports, and delete the parallel implementation if it is not the active entry point."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "medium", "confidence": 0.82, "cwe": "", "owasp": ""}}, {"id": "SEC123", "name": "[SEC123] Production stack trace / debug output exposed: Debug mode left on in production exposes stack traces, environme", "shortDescription": {"text": "[SEC123] Production stack trace / debug output exposed: Debug mode left on in production exposes stack traces, environment variables, framework internals \u2014 sometimes triggers RCE (Django debug page with arbitrary template eval)."}, "fullDescription": {"text": "Set DEBUG=False / APP_DEBUG=false in production. Provide a generic 500 handler that logs to backend but returns a sanitized page to clients."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "ERR002", "name": "[ERR002] Empty Catch Block: Empty catch blocks hide errors.", "shortDescription": {"text": "[ERR002] Empty Catch Block: Empty catch blocks hide errors."}, "fullDescription": {"text": "Log the error or rethrow it. Use console.error() at minimum."}, "properties": {"scanner": "repobility-threat-engine", "category": "error_handling", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC087", "name": "[SEC087] JS: weak Math.random for crypto: Math.random() is not cryptographically secure; using it for tokens/keys/nonces", "shortDescription": {"text": "[SEC087] JS: weak Math.random for crypto: Math.random() is not cryptographically secure; using it for tokens/keys/nonces is predictable. Ported from gosec G404 / eslint detect-pseudoRandomBytes concept (Apache-2.0)."}, "fullDescription": {"text": "Use `crypto.randomBytes(32).toString('hex')` (Node) or `crypto.getRandomValues()` (browser)."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC045", "name": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a latera", "shortDescription": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use obj"}, "fullDescription": {"text": "For literal data structures: use ast.literal_eval(text) \u2014 only parses literals, raises on code.\nFor formula evaluation: use asteval or simpleeval (purpose-built sandboxes with allow-lists).\nFor Odoo: use odoo.tools.safe_eval(expr, locals_dict, mode='exec').\nIf you genuinely need to execute admin-stored code: require explicit super-admin permission AND log every execution with a stack trace."}, "properties": {"scanner": "repobility-threat-engine", "category": "injection", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "WEB005", "name": "robots.txt does not advertise a sitemap", "shortDescription": {"text": "robots.txt does not advertise a sitemap"}, "fullDescription": {"text": "Add `Sitemap: https://your-domain.example/sitemap.xml` to robots.txt."}, "properties": {"scanner": "repobility-web-presence", "category": "quality", "severity": "low", "confidence": 0.74, "cwe": "", "owasp": ""}}, {"id": "WEB011", "name": "Public web app has no humans.txt", "shortDescription": {"text": "Public web app has no humans.txt"}, "fullDescription": {"text": "Add humans.txt with team ownership, contact URL, key documentation links, and the last-updated date."}, "properties": {"scanner": "repobility-web-presence", "category": "quality", "severity": "low", "confidence": 0.5, "cwe": "", "owasp": ""}}, {"id": "WEB008", "name": "Public docs site has no llms.txt", "shortDescription": {"text": "Public docs site has no llms.txt"}, "fullDescription": {"text": "Add llms.txt with the product summary, canonical docs, API endpoints, security guidance, and preferred CLI workflow for AI agents."}, "properties": {"scanner": "repobility-web-presence", "category": "quality", "severity": "low", "confidence": 0.64, "cwe": "", "owasp": ""}}, {"id": "WEB002", "name": "Public web app has no sitemap", "shortDescription": {"text": "Public web app has no sitemap"}, "fullDescription": {"text": "Add sitemap.xml, a sitemap index, or a framework-native sitemap route and reference it from robots.txt."}, "properties": {"scanner": "repobility-web-presence", "category": "quality", "severity": "low", "confidence": 0.72, "cwe": "", "owasp": ""}}, {"id": "DKR011", "name": "Dockerfile installs recommended OS packages", "shortDescription": {"text": "Dockerfile installs recommended OS packages"}, "fullDescription": {"text": "Add `--no-install-recommends` and explicitly list only packages the image needs."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "low", "confidence": 0.72, "cwe": "", "owasp": ""}}, {"id": "DKR010", "name": "Dockerfile leaves apt package indexes in the image layer", "shortDescription": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "fullDescription": {"text": "End the apt install layer with `rm -rf /var/lib/apt/lists/*`."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "low", "confidence": 0.74, "cwe": "", "owasp": ""}}, {"id": "AIC005", "name": "Duplicate top-level symbol appears in a patch-style file", "shortDescription": {"text": "Duplicate top-level symbol appears in a patch-style file"}, "fullDescription": {"text": "Keep one authoritative implementation, update imports to point at it, and remove or rename the duplicate symbol."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.64, "cwe": "", "owasp": ""}}, {"id": "AIC003", "name": "Duplicated implementation block across source files", "shortDescription": {"text": "Duplicated implementation block across source files"}, "fullDescription": {"text": "Extract the shared behavior into one function/module or delete the inactive duplicate after proving which path is used."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.86, "cwe": "", "owasp": ""}}, {"id": "AIC002", "name": "Source file name looks like an AI patch artifact", "shortDescription": {"text": "Source file name looks like an AI patch artifact"}, "fullDescription": {"text": "Rename it to the domain concept it implements or merge it into the existing module it was meant to change."}, "properties": {"scanner": "repobility-ai-code-hygiene", "category": "quality", "severity": "low", "confidence": 0.62, "cwe": "", "owasp": ""}}, {"id": "SEC132", "name": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the la", "shortDescription": {"text": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the language has cleaner interpolation (Python f-strings since 3.6, JS template literals since ES6). Not a vulnerability on it"}, "fullDescription": {"text": "Python: `f\"prefix {var} suffix\"`. JS/TS: `` `prefix ${var} suffix` ``. Add a lint rule (pyupgrade UP032, eslint prefer-template) so future PRs catch this automatically."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "low", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED057", "name": "[MINED057] Todo Bomb: Code path with a TODO/FIXME/HACK comment that gates correctness \u2014 left for later but never resolve", "shortDescription": {"text": "[MINED057] Todo Bomb: Code path with a TODO/FIXME/HACK comment that gates correctness \u2014 left for later but never resolved."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED047", "name": "[MINED047] Emoji In Source: Emoji \u2705 \u274c \ud83d\ude80 in code/comments \u2014 common AI output unless explicitly requested.", "shortDescription": {"text": "[MINED047] Emoji In Source: Emoji \u2705 \u274c \ud83d\ude80 in code/comments \u2014 common AI output unless explicitly requested."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED068", "name": "[MINED068] Rust Unsafe Block: unsafe { ... } block. Compiler safety guarantees disabled inside.", "shortDescription": {"text": "[MINED068] Rust Unsafe Block: unsafe { ... } block. Compiler safety guarantees disabled inside."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-119 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED066", "name": "[MINED066] Rust Panic Macro: panic!() unwinds the stack. Use Result for recoverable errors.", "shortDescription": {"text": "[MINED066] Rust Panic Macro: panic!() unwinds the stack. Use Result for recoverable errors."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-755 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED059", "name": "[MINED059] Rust Expect In Prod: .expect(...) panics same as unwrap with a custom message.", "shortDescription": {"text": "[MINED059] Rust Expect In Prod: .expect(...) panics same as unwrap with a custom message."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-755 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED069", "name": "[MINED069] Debug True Prod: Django/Flask DEBUG=True or app.debug=True in non-test files.", "shortDescription": {"text": "[MINED069] Debug True Prod: Django/Flask DEBUG=True or app.debug=True in non-test files."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-489 / A05:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED042", "name": "[MINED042] Cpp New Without Delete (and 161 more): Same pattern found in 161 additional files. Review if needed.", "shortDescription": {"text": "[MINED042] Cpp New Without Delete (and 161 more): Same pattern found in 161 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-401 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC118", "name": "[SEC118] UUIDv1 / UUIDv3 used for security-sensitive identifier (and 2 more): Same pattern found in 2 additional files. ", "shortDescription": {"text": "[SEC118] UUIDv1 / UUIDv3 used for security-sensitive identifier (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "fullDescription": {"text": "Use `uuid.uuid4()` (random) or `secrets.token_urlsafe()` for tokens. In Go, use `uuid.NewRandom()` (google/uuid)."}, "properties": {"scanner": "repobility-threat-engine", "category": "crypto", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED075", "name": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL.", "shortDescription": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-690 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED043", "name": "[MINED043] Http Not Https (and 4 more): Same pattern found in 4 additional files. Review if needed.", "shortDescription": {"text": "[MINED043] Http Not Https (and 4 more): Same pattern found in 4 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-319 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED004", "name": "[MINED004] Weak Crypto (and 10 more): Same pattern found in 10 additional files. Review if needed.", "shortDescription": {"text": "[MINED004] Weak Crypto (and 10 more): Same pattern found in 10 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-327 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED046", "name": "[MINED046] Dart Print: print() in Flutter goes to console. Use debugPrint / logger.", "shortDescription": {"text": "[MINED046] Dart Print: print() in Flutter goes to console. Use debugPrint / logger."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-532 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED014", "name": "[MINED014] Disabled Tls Verify (and 2 more): Same pattern found in 2 additional files. Review if needed.", "shortDescription": {"text": "[MINED014] Disabled Tls Verify (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-295 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC128", "name": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 13 more): Same pattern found in 13 add", "shortDescription": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 13 more): Same pattern found in 13 additional files. Review if needed."}, "fullDescription": {"text": "Add `await` before each async call, or chain with `.then`. If you intentionally want fire-and-forget, prefix with `void` (TS) or assign to `_` (Python with `asyncio.create_task`) to make the intent explicit and survive lint."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC084", "name": "[SEC084] JS: require() with non-literal (and 7 more): Same pattern found in 7 additional files. Review if needed.", "shortDescription": {"text": "[SEC084] JS: require() with non-literal (and 7 more): Same pattern found in 7 additional files. Review if needed."}, "fullDescription": {"text": "Use static imports or a static mapping `const modules = { foo: require('./foo') }`."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC029", "name": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 9 more): Same pattern found in 9 additi", "shortDescription": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 9 more): Same pattern found in 9 additional files. Review if needed."}, "fullDescription": {"text": "Validate the URL against an allowlist BEFORE fetching:\n  ALLOWED = {'images.example.com', 'cdn.example.com'}\n  host = urlparse(url).hostname\n  if host not in ALLOWED: abort(400)\nOr use a server-side proxy (Imgproxy / serve-files-only-from-S3) that isolates outbound network access from the request handler.\nBlock private CIDRs explicitly: 10/8, 172.16/12, 192.168/16, 169.254/16."}, "properties": {"scanner": "repobility-threat-engine", "category": "ssrf", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED044", "name": "[MINED044] Js Console Log Prod (and 25 more): Same pattern found in 25 additional files. Review if needed.", "shortDescription": {"text": "[MINED044] Js Console Log Prod (and 25 more): Same pattern found in 25 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-532 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED118", "name": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder:v1` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-", "shortDescription": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder:v1` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder:v1` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build "}, "fullDescription": {"text": "Replace with: `FROM gcr.io/oss-fuzz-base/base-builder:v1@sha256:<digest>`. Get the digest from `docker manifest inspect`. Re-pin via a scheduled bot (Renovate, Dependabot)."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED106", "name": "[MINED106] Phantom test coverage: test_disconnect: Test function `test_disconnect` runs code but contains no assert / ex", "shortDescription": {"text": "[MINED106] Phantom test coverage: test_disconnect: Test function `test_disconnect` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "fullDescription": {"text": "Add an explicit assertion that captures the test's intent, or remove the test."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED108", "name": "[MINED108] `self.SeenOpenBrace` used but never assigned in __init__: Method `Update` of class `NestingState` reads `self", "shortDescription": {"text": "[MINED108] `self.SeenOpenBrace` used but never assigned in __init__: Method `Update` of class `NestingState` reads `self.SeenOpenBrace`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError th"}, "fullDescription": {"text": "Initialize `self.SeenOpenBrace = <default>` in __init__, or add a class-level default."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "DKR014", "name": "Dockerfile copies the entire context without .dockerignore", "shortDescription": {"text": "Dockerfile copies the entire context without .dockerignore"}, "fullDescription": {"text": "Create .dockerignore before using broad context copies, or copy only the required files and directories."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "high", "confidence": 0.92, "cwe": "", "owasp": ""}}, {"id": "MINED017", "name": "[MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic.", "shortDescription": {"text": "[MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-78 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC040", "name": "[SEC040] innerHTML XSS \u2014 template literal with server-supplied data: Setting .innerHTML with a template literal that int", "shortDescription": {"text": "[SEC040] innerHTML XSS \u2014 template literal with server-supplied data: Setting .innerHTML with a template literal that interpolates server-supplied or user-supplied data is the canonical stored/reflected XSS vector. The browser parses the HTM"}, "fullDescription": {"text": "For plain text: use el.textContent = data.value (auto-escapes).\nFor HTML you need to render: el.innerHTML = DOMPurify.sanitize(html).\nFor React/Vue/Svelte: stop using innerHTML; use the framework's binding.\nWhen data comes from CV/PDF parsers, sanitize at the parser boundary too."}, "properties": {"scanner": "repobility-threat-engine", "category": "xss", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC085", "name": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. ", "shortDescription": {"text": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0)."}, "fullDescription": {"text": "Use execFile / spawn with separate args array; never pass shell strings."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED036", "name": "[MINED036] Python Os System Call: os.system() invokes shell with no escaping.", "shortDescription": {"text": "[MINED036] Python Os System Call: os.system() invokes shell with no escaping."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-78 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC005", "name": "[SEC005] Command Injection Risk: Unsafe shell execution or eval of user input.", "shortDescription": {"text": "[SEC005] Command Injection Risk: Unsafe shell execution or eval of user input."}, "fullDescription": {"text": "Use subprocess with shell=False and a list of args. Never eval user input."}, "properties": {"scanner": "repobility-threat-engine", "category": "injection", "severity": "high", "confidence": 0.8, "cwe": "", "owasp": ""}}, {"id": "MINED116", "name": "[MINED116] Workflow uses `secrets.GH_USER_TOKEN` on a `pull_request` trigger: This workflow triggers on `pull_request`, ", "shortDescription": {"text": "[MINED116] Workflow uses `secrets.GH_USER_TOKEN` on a `pull_request` trigger: This workflow triggers on `pull_request`, which checks out the FORK's code. Referencing `${ secrets.GH_USER_TOKEN }` lets a PR from any fork exfiltrate the secret"}, "fullDescription": {"text": "Either remove the secret reference, or switch the trigger to `pull_request_target` AND ensure no fork-controlled code runs before the secret is consumed."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "critical", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "MINED107", "name": "[MINED107] Missing import: `re` used but not imported: The file uses `re.something(...)` but never imports `re`. This ra", "shortDescription": {"text": "[MINED107] Missing import: `re` used but not imported: The file uses `re.something(...)` but never imports `re`. This raises NameError at runtime the first time the line executes."}, "fullDescription": {"text": "Add `import re` at the top of the file."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED024", "name": "[MINED024] Js Eval Usage: eval() executes arbitrary code. Code injection risk.", "shortDescription": {"text": "[MINED024] Js Eval Usage: eval() executes arbitrary code. Code injection risk."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-95 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED022", "name": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf.", "shortDescription": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-120 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED035", "name": "[MINED035] Js New Function: new Function(...) compiles strings to functions.", "shortDescription": {"text": "[MINED035] Js New Function: new Function(...) compiles strings to functions."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-95 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}]}}, "automationDetails": {"id": "repobility/743"}, "properties": {"repository": "nodejs/node", "repoUrl": "https://github.com/nodejs/node", "branch": "main"}, "results": [{"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `man_role` (list): `def man_role(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61080, "scanner": "repobility-ast-engine", "fingerprint": "bffae8ae59a9069799c96ab8c7a4a3fd1b50565ce85f4220ee91e8e0d61e7c86", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|bffae8ae59a9069799c96ab8c7a4a3fd1b50565ce85f4220ee91e8e0d61e7c86"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/uv/docs/src/sphinx-plugins/manpage.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `man_role` (dict): `def man_role(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61079, "scanner": "repobility-ast-engine", "fingerprint": "6ee13e61c522271b3f7e6a5a67e50fa31288e78cee7a9f853b0af591d7ec36fe", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|6ee13e61c522271b3f7e6a5a67e50fa31288e78cee7a9f853b0af591d7ec36fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/uv/docs/src/sphinx-plugins/manpage.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `__init__` (list): `def __init__(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61072, "scanner": "repobility-ast-engine", "fingerprint": "58a3d1e211b73e7d03b710ef7650b5fae00c87e07ce182f945da4acf658378e1", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|58a3d1e211b73e7d03b710ef7650b5fae00c87e07ce182f945da4acf658378e1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/dev/gm.py"}, "region": {"startLine": 539}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `extend` (list): `def extend(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61071, "scanner": "repobility-ast-engine", "fingerprint": "e09543a8c9b61d66e8e13271b28df8bb830dcb146e06e538b2244e781ba30962", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e09543a8c9b61d66e8e13271b28df8bb830dcb146e06e538b2244e781ba30962"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/dev/gm.py"}, "region": {"startLine": 435}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `__init__` (list): `def __init__(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61070, "scanner": "repobility-ast-engine", "fingerprint": "8208782100373eff03e7e99736f138e8b6dbee48e19d2e74bafce103920618c0", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8208782100373eff03e7e99736f138e8b6dbee48e19d2e74bafce103920618c0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/dev/gm.py"}, "region": {"startLine": 428}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `ptr_arg_cmd` (list): `def ptr_arg_cmd(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61063, "scanner": "repobility-ast-engine", "fingerprint": "5baba94a20a09df7594627a7166cacd8f7f3d9340f96e07293e2663869b76097", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5baba94a20a09df7594627a7166cacd8f7f3d9340f96e07293e2663869b76097"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/lldb_commands.py"}, "region": {"startLine": 46}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `GetVars` (list): `def GetVars(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61062, "scanner": "repobility-ast-engine", "fingerprint": "d9f8ec2cb968b1166f1660457ab209e7d35e78fa955ee440b190175dda9978b8", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d9f8ec2cb968b1166f1660457ab209e7d35e78fa955ee440b190175dda9978b8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/generate-builtins-tests.py"}, "region": {"startLine": 34}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `ClangTidyRunSingleFile` (list): `def ClangTidyRunSingleFile(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61060, "scanner": "repobility-ast-engine", "fingerprint": "fa1ea176775ad137dbff5470c9325ebc7dfe8344d4da1b6776a642b7c383ddf2", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|fa1ea176775ad137dbff5470c9325ebc7dfe8344d4da1b6776a642b7c383ddf2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/run-clang-tidy.py"}, "region": {"startLine": 221}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61054, "scanner": "repobility-ast-engine", "fingerprint": "903b435deaca6d9353704977c6284816d2499c9e010a096e81d21c6d4fd58f74", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|903b435deaca6d9353704977c6284816d2499c9e010a096e81d21c6d4fd58f74"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/inspector_protocol/code_generator.py"}, "region": {"startLine": 133}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61053, "scanner": "repobility-ast-engine", "fingerprint": "65c1fb7b8bd96db3c8e6bbeb81c699b683ce4af720be87baf70bc9793c9bca12", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|65c1fb7b8bd96db3c8e6bbeb81c699b683ce4af720be87baf70bc9793c9bca12"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/inspector_protocol/code_generator.py"}, "region": {"startLine": 91}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61049, "scanner": "repobility-ast-engine", "fingerprint": "34ff51a3b0763aac5ba34a52a7ff482c61135f60761570d8cf9d79e5078f44cb", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|34ff51a3b0763aac5ba34a52a7ff482c61135f60761570d8cf9d79e5078f44cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/asyncsupport.py"}, "region": {"startLine": 68}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61048, "scanner": "repobility-ast-engine", "fingerprint": "b3982479f855db03c64b3899b6c6621abb6e5e9fc33539f2c835c0e9f0e47758", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b3982479f855db03c64b3899b6c6621abb6e5e9fc33539f2c835c0e9f0e47758"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/asyncsupport.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61047, "scanner": "repobility-ast-engine", "fingerprint": "bcb59767f417efdd5f37f7128ffe36a328c3ac6091732c2cf06545318ef20fd2", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|bcb59767f417efdd5f37f7128ffe36a328c3ac6091732c2cf06545318ef20fd2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 102}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61030, "scanner": "repobility-ast-engine", "fingerprint": "eb991a408497e6ebdb2fb44f95f3d1c8a10b9c69bf202f2148f7f976f802729c", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|eb991a408497e6ebdb2fb44f95f3d1c8a10b9c69bf202f2148f7f976f802729c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/bccache.py"}, "region": {"startLine": 360}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61029, "scanner": "repobility-ast-engine", "fingerprint": "544f447d48fd43c4e1970a028f0cabd105e2d9afa41fe0221c23a55bc0fc5d94", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|544f447d48fd43c4e1970a028f0cabd105e2d9afa41fe0221c23a55bc0fc5d94"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/bccache.py"}, "region": {"startLine": 347}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61028, "scanner": "repobility-ast-engine", "fingerprint": "8d728220cbdb27110ef2f7d57e137b735ccb8c9dc9e43ee6071ad20cada76f47", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8d728220cbdb27110ef2f7d57e137b735ccb8c9dc9e43ee6071ad20cada76f47"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/compiler.py"}, "region": {"startLine": 1269}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61027, "scanner": "repobility-ast-engine", "fingerprint": "907fd797eb95b8198060109327f17caa01bd5c94f738486ddd4e552e553e5724", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|907fd797eb95b8198060109327f17caa01bd5c94f738486ddd4e552e553e5724"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/environment.py"}, "region": {"startLine": 1041}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61026, "scanner": "repobility-ast-engine", "fingerprint": "87d1172a85eeafcab55653a64a9a60a8a68d302168cb850e7069e8b3edeea410", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|87d1172a85eeafcab55653a64a9a60a8a68d302168cb850e7069e8b3edeea410"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/environment.py"}, "region": {"startLine": 1006}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61025, "scanner": "repobility-ast-engine", "fingerprint": "aca27ae03f320edd9adcb581a157ae6d476c5fcda1b3cd5904210d40ad3ca2e6", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|aca27ae03f320edd9adcb581a157ae6d476c5fcda1b3cd5904210d40ad3ca2e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/environment.py"}, "region": {"startLine": 95}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61022, "scanner": "repobility-ast-engine", "fingerprint": "3cfbbdfc5caba1013f115322a9c219dd2bf944fa2b8ca05f4ff8cc60324c117b", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3cfbbdfc5caba1013f115322a9c219dd2bf944fa2b8ca05f4ff8cc60324c117b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/debug.py"}, "region": {"startLine": 290}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61021, "scanner": "repobility-ast-engine", "fingerprint": "c6fd35fce365dede05c3fa819079f1789e0c5f0d5ce6d0df3ac96fd663f2754b", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|c6fd35fce365dede05c3fa819079f1789e0c5f0d5ce6d0df3ac96fd663f2754b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/nativetypes.py"}, "region": {"startLine": 97}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61020, "scanner": "repobility-ast-engine", "fingerprint": "9e5004bb1aa9a23ffc635cf2a63e2997f69f16e2a86ffe2385ef6d1124a5d6a9", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9e5004bb1aa9a23ffc635cf2a63e2997f69f16e2a86ffe2385ef6d1124a5d6a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/nativetypes.py"}, "region": {"startLine": 210}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61018, "scanner": "repobility-ast-engine", "fingerprint": "48d086fdc7e2cf333e936172aa0be67516d1743fc231a29dacae9d4ffdce6c04", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|48d086fdc7e2cf333e936172aa0be67516d1743fc231a29dacae9d4ffdce6c04"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/generator/analyzer.py"}, "region": {"startLine": 804}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `GenerateCompileDBWithNinja` (list): `def GenerateCompileDBWithNinja(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61016, "scanner": "repobility-ast-engine", "fingerprint": "d08691d72bbd3cf853e2538be740b55fdd9e3475f6deddad0146ef3c788ba062", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d08691d72bbd3cf853e2538be740b55fdd9e3475f6deddad0146ef3c788ba062"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/generator/ninja.py"}, "region": {"startLine": 2885}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61014, "scanner": "repobility-ast-engine", "fingerprint": "3232e791228f8870089edbb6452bf44a61c8d8c8cfbfe4fdda43766100053ed9", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3232e791228f8870089edbb6452bf44a61c8d8c8cfbfe4fdda43766100053ed9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/common_test.py"}, "region": {"startLine": 114}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61011, "scanner": "repobility-ast-engine", "fingerprint": "b76dfa20c99618366ba9e07071ea3b1fe69688116f78a30baf27047952220446", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b76dfa20c99618366ba9e07071ea3b1fe69688116f78a30baf27047952220446"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/mac_tool.py"}, "region": {"startLine": 161}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61010, "scanner": "repobility-ast-engine", "fingerprint": "f56b31a3165432b14f04db4b549e5e8af626523ce54d75dfb77ca2792c4cbe00", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f56b31a3165432b14f04db4b549e5e8af626523ce54d75dfb77ca2792c4cbe00"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/common.py"}, "region": {"startLine": 724}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `CopyTool` (dict): `def CopyTool(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61009, "scanner": "repobility-ast-engine", "fingerprint": "759b45363c61196518c6a8ea6f70e80bb83c6dfcd0893195641f5f9a5b0af339", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|759b45363c61196518c6a8ea6f70e80bb83c6dfcd0893195641f5f9a5b0af339"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/common.py"}, "region": {"startLine": 526}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 61006, "scanner": "repobility-ast-engine", "fingerprint": "a4e6539fa71c96dfcfa8b6c879b79a01b125832e6fea39c1d2dffa690dbb4328", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a4e6539fa71c96dfcfa8b6c879b79a01b125832e6fea39c1d2dffa690dbb4328"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/input.py"}, "region": {"startLine": 549}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `AddImplicitPostbuilds` (list): `def AddImplicitPostbuilds(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61004, "scanner": "repobility-ast-engine", "fingerprint": "43d291763842a23668391ea63ec1e838ee3862e9965561bfd5604d9efad1954c", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|43d291763842a23668391ea63ec1e838ee3862e9965561bfd5604d9efad1954c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/xcode_emulation.py"}, "region": {"startLine": 1236}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `AddDebugSettings` (dict): `def AddDebugSettings(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61002, "scanner": "repobility-ast-engine", "fingerprint": "43563e2fe96a155306f6b3073c7c301cc90b26d472493fb0fd249b3a64367a35", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|43563e2fe96a155306f6b3073c7c301cc90b26d472493fb0fd249b3a64367a35"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/MSVSUserFile.py"}, "region": {"startLine": 79}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `Load` (list): `def Load(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61001, "scanner": "repobility-ast-engine", "fingerprint": "344838c9976244bffbd5312e2b38398ef6c274f70fc3bf0a2eb02800303d2c8a", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|344838c9976244bffbd5312e2b38398ef6c274f70fc3bf0a2eb02800303d2c8a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/__init__.py"}, "region": {"startLine": 71}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "[MINED109] Mutable default argument in `Load` (dict): `def Load(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"repobilityId": 61000, "scanner": "repobility-ast-engine", "fingerprint": "2cfff9e0c55be8612b34270ebc83f8965873e265b0ad97c657cb381b508ea6d4", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2cfff9e0c55be8612b34270ebc83f8965873e265b0ad97c657cb381b508ea6d4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/__init__.py"}, "region": {"startLine": 71}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 60997, "scanner": "repobility-ast-engine", "fingerprint": "12d822f7040b954e624dbc9788d5b0d163426fe5d9d385bc887146003b5814c3", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|12d822f7040b954e624dbc9788d5b0d163426fe5d9d385bc887146003b5814c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/gyp_main.py"}, "region": {"startLine": 33}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 60996, "scanner": "repobility-ast-engine", "fingerprint": "d951fb21c55c8abf1d40c4055d14637dfa45ffbced858f8f7f70f9410a42f979", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d951fb21c55c8abf1d40c4055d14637dfa45ffbced858f8f7f70f9410a42f979"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/gyp_main.py"}, "region": {"startLine": 20}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 60995, "scanner": "repobility-ast-engine", "fingerprint": "a0b64fc1fe42e08a1161a81ced6daf3643c5b3ee038243593baa97d961e86efa", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a0b64fc1fe42e08a1161a81ced6daf3643c5b3ee038243593baa97d961e86efa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/build_addons.py"}, "region": {"startLine": 71}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 60969, "scanner": "repobility-ast-engine", "fingerprint": "47a28d1d88f1afa31b66c883e6ab5ea4abbdee1c8c5d0f59e0b6ef7d9da4dcf3", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|47a28d1d88f1afa31b66c883e6ab5ea4abbdee1c8c5d0f59e0b6ef7d9da4dcf3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/search_files.py"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 60968, "scanner": "repobility-ast-engine", "fingerprint": "2686953124462cabed99771a8df5a253adc6d9e1e36a3607b81b0733a8616daa", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2686953124462cabed99771a8df5a253adc6d9e1e36a3607b81b0733a8616daa"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gypi_to_gn.py"}, "region": {"startLine": 332}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"repobilityId": 60967, "scanner": "repobility-ast-engine", "fingerprint": "610b89d40a1c0b7129c451b292e0084e01b27c220957959d4cdb5478408a8f9f", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|610b89d40a1c0b7129c451b292e0084e01b27c220957959d4cdb5478408a8f9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/prepare_lief.py"}, "region": {"startLine": 79}}}]}, {"ruleId": "WEB012", "level": "warning", "message": {"text": "Service worker is present without a web app manifest"}, "properties": {"repobilityId": 60966, "scanner": "repobility-web-presence", "fingerprint": "fcb0b1c9ad72f83092dc6928d3e76ca25d428a654bdcd26192cf227ad67fe1ea", "category": "quality", "severity": "medium", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "A service worker was discovered but no common web manifest file was found.", "evidence": {"rule_id": "WEB012", "scanner": "repobility-web-presence", "references": ["https://developer.mozilla.org/en-US/docs/Web/Manifest"], "correlation_key": "fp|fcb0b1c9ad72f83092dc6928d3e76ca25d428a654bdcd26192cf227ad67fe1ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "manifest.json"}, "region": {"startLine": 1}}}]}, {"ruleId": "WEB003", "level": "warning", "message": {"text": "Public web service has no security.txt"}, "properties": {"repobilityId": 60964, "scanner": "repobility-web-presence", "fingerprint": "5cd26606c5a53c9f403ff7a92a6917c19cf440a23ce03e2b90e8c493312ef8cd", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Repository looks like a public web app/API but no security.txt file or route was discovered.", "evidence": {"rule_id": "WEB003", "scanner": "repobility-web-presence", "references": ["https://www.rfc-editor.org/rfc/rfc9116", "https://github.com/Lissy93/web-check"], "correlation_key": "fp|5cd26606c5a53c9f403ff7a92a6917c19cf440a23ce03e2b90e8c493312ef8cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".well-known/security.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "WEB015", "level": "warning", "message": {"text": "Public web app has no Content Security Policy"}, "properties": {"repobilityId": 60963, "scanner": "repobility-web-presence", "fingerprint": "7eb70cae3ff63d8ed7c31706185d32b37655333b40b58ca826d740b08fb1ad63", "category": "quality", "severity": "medium", "confidence": 0.7, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Repository looks like a public web app but no CSP header, framework header config, Helmet policy, or CSP meta tag was discovered.", "evidence": {"rule_id": "WEB015", "scanner": "repobility-web-presence", "references": ["https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP", "https://github.com/Lissy93/web-check"], "correlation_key": "fp|7eb70cae3ff63d8ed7c31706185d32b37655333b40b58ca826d740b08fb1ad63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "index.html"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 60959, "scanner": "repobility-docker", "fingerprint": "b3b29a6b57b0ea1b2fdadd4e8af579056a5eb01fcec130abcbf2887cf9fd1ead", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "ubuntu:22.04", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|b3b29a6b57b0ea1b2fdadd4e8af579056a5eb01fcec130abcbf2887cf9fd1ead"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/openssl/config/Dockerfile"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKR007", "level": "warning", "message": {"text": "Docker build context has no .dockerignore"}, "properties": {"repobilityId": 60958, "scanner": "repobility-docker", "fingerprint": "c98378cf8c37e4866e89d6ca06a24b7e8c44654aa34e6e4bf1367c4a4c0c5b44", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Dockerfile exists but repository root has no .dockerignore.", "evidence": {"rule_id": "DKR007", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c98378cf8c37e4866e89d6ca06a24b7e8c44654aa34e6e4bf1367c4a4c0c5b44"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".dockerignore"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 60957, "scanner": "repobility-docker", "fingerprint": "53ecaed965630ce924aa81b1f68d40b261fd600908d0a476e36e0d913e9bcbd8", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "gcr.io/oss-fuzz-base/base-builder:v1", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|53ecaed965630ce924aa81b1f68d40b261fd600908d0a476e36e0d913e9bcbd8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/ngtcp2/ngtcp2/third-party/urlparse/.clusterfuzzlite/Dockerfile"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKR015", "level": "warning", "message": {"text": "Docker build context is very large"}, "properties": {"repobilityId": 60953, "scanner": "repobility-docker", "fingerprint": "b15d4f710afeff2af4cd4ab204332853f9025b78869a0e87bb466a798bb1a15b", "category": "docker", "severity": "medium", "confidence": 0.84, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Estimated Docker build context exceeds Repobility's size or file-count threshold.", "evidence": {"capped": false, "rule_id": "DKR015", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "largest_paths": [{"path": ".git/objects/pack/pack-a413184d14341edf7a73612597a2957dd213139f.pack", "size_mb": 72.7}, {"path": ".git/objects/pack/pack-4849c033e33fd9a2530a9617826be453c62feee2.pack", "size_mb": 36.0}, {"path": "deps/icu-small/source/data/in/icudt78l.dat.bz2", "size_mb": 10.8}, {"path": "test/fixtures/snapshot/typescript.js", "size_mb": 10.1}, {"path": "deps/sqlite/sqlite3.c", "size_mb": 9.1}], "included_files": 48980, "context_size_mb": 770.3, "correlation_key": "fp|b15d4f710afeff2af4cd4ab204332853f9025b78869a0e87bb466a798bb1a15b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".dockerignore"}, "region": {"startLine": 1}}}]}, {"ruleId": "AGT015", "level": "warning", "message": {"text": "Remote install command pipes network code directly to a shell"}, "properties": {"repobilityId": 60952, "scanner": "repobility-agent-runtime", "fingerprint": "7e35b917b48f191d94d95df3ed441fd1606c9062b7f59f61130d05b31078c219", "category": "dependency", "severity": "medium", "confidence": 0.7, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "File contains a remote download piped directly to a shell without visible checksum or signature verification.", "evidence": {"rule_id": "AGT015", "scanner": "repobility-agent-runtime", "references": [], "correlation_key": "fp|7e35b917b48f191d94d95df3ed441fd1606c9062b7f59f61130d05b31078c219"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/npm/README.md"}, "region": {"startLine": 16}}}]}, {"ruleId": "AIC004", "level": "warning", "message": {"text": "Suspicious implementation file appears unreferenced"}, "properties": {"repobilityId": 60920, "scanner": "repobility-ai-code-hygiene", "fingerprint": "97798ed3ef91e544311933dee0258d65fea1e7ccefb22a741b017c5ddfd5a802", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Patch-style source file has no detected inbound reference from other repository files.", "evidence": {"suffix": "update", "rule_id": "AIC004", "scanner": "repobility-ai-code-hygiene", "references": ["https://knip.dev/", "https://github.com/jendrikseipp/vulture"], "correlation_key": "fp|97798ed3ef91e544311933dee0258d65fea1e7ccefb22a741b017c5ddfd5a802"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-vfs-ctime-update.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC004", "level": "warning", "message": {"text": "Suspicious implementation file appears unreferenced"}, "properties": {"repobilityId": 60919, "scanner": "repobility-ai-code-hygiene", "fingerprint": "9c88fc57837049f16f727edc8e7b3d37135c32844454986670887c1c2c77f2cb", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Patch-style source file has no detected inbound reference from other repository files.", "evidence": {"suffix": "final", "rule_id": "AIC004", "scanner": "repobility-ai-code-hygiene", "references": ["https://knip.dev/", "https://github.com/jendrikseipp/vulture"], "correlation_key": "fp|9c88fc57837049f16f727edc8e7b3d37135c32844454986670887c1c2c77f2cb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-stream-write-final.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC004", "level": "warning", "message": {"text": "Suspicious implementation file appears unreferenced"}, "properties": {"repobilityId": 60918, "scanner": "repobility-ai-code-hygiene", "fingerprint": "fe75ceeff616f490cb1cc3d6a102faf4d8ab4144c0b5e4c9460275dfd8982dde", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Patch-style source file has no detected inbound reference from other repository files.", "evidence": {"suffix": "final", "rule_id": "AIC004", "scanner": "repobility-ai-code-hygiene", "references": ["https://knip.dev/", "https://github.com/jendrikseipp/vulture"], "correlation_key": "fp|fe75ceeff616f490cb1cc3d6a102faf4d8ab4144c0b5e4c9460275dfd8982dde"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-stream-transform-final.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC004", "level": "warning", "message": {"text": "Suspicious implementation file appears unreferenced"}, "properties": {"repobilityId": 60917, "scanner": "repobility-ai-code-hygiene", "fingerprint": "e5867cc9c70bad3943ae6ea52d6038df8787b3827f04935c2fcdd7e89450e055", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Patch-style source file has no detected inbound reference from other repository files.", "evidence": {"suffix": "copy", "rule_id": "AIC004", "scanner": "repobility-ai-code-hygiene", "references": ["https://knip.dev/", "https://github.com/jendrikseipp/vulture"], "correlation_key": "fp|e5867cc9c70bad3943ae6ea52d6038df8787b3827f04935c2fcdd7e89450e055"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-dgram-send-multi-buffer-copy.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC004", "level": "warning", "message": {"text": "Suspicious implementation file appears unreferenced"}, "properties": {"repobilityId": 60916, "scanner": "repobility-ai-code-hygiene", "fingerprint": "3e5bb545e1fe4bae2ab8c3bc7cd7600cd5729ebe7723d60c0fbaba7bf5e962dd", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Patch-style source file has no detected inbound reference from other repository files.", "evidence": {"suffix": "copy", "rule_id": "AIC004", "scanner": "repobility-ai-code-hygiene", "references": ["https://knip.dev/", "https://github.com/jendrikseipp/vulture"], "correlation_key": "fp|3e5bb545e1fe4bae2ab8c3bc7cd7600cd5729ebe7723d60c0fbaba7bf5e962dd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-dgram-connect-send-multi-buffer-copy.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC004", "level": "warning", "message": {"text": "Suspicious implementation file appears unreferenced"}, "properties": {"repobilityId": 60915, "scanner": "repobility-ai-code-hygiene", "fingerprint": "4f65e397ad307d32539a24c065a063e71923027e34f8ea0a1f067acab45aa0e1", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Patch-style source file has no detected inbound reference from other repository files.", "evidence": {"suffix": "copy", "rule_id": "AIC004", "scanner": "repobility-ai-code-hygiene", "references": ["https://knip.dev/", "https://github.com/jendrikseipp/vulture"], "correlation_key": "fp|4f65e397ad307d32539a24c065a063e71923027e34f8ea0a1f067acab45aa0e1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-buffer-copy.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC004", "level": "warning", "message": {"text": "Suspicious implementation file appears unreferenced"}, "properties": {"repobilityId": 60914, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1a4b537624de12cbedd65bfc9d3d38d701a0cd6f51f8203b2791d4cb19c3aa6d", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Patch-style source file has no detected inbound reference from other repository files.", "evidence": {"suffix": "new", "rule_id": "AIC004", "scanner": "repobility-ai-code-hygiene", "references": ["https://knip.dev/", "https://github.com/jendrikseipp/vulture"], "correlation_key": "fp|1a4b537624de12cbedd65bfc9d3d38d701a0cd6f51f8203b2791d4cb19c3aa6d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/openssl/openssl/crypto/asn1/tasn_new.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC004", "level": "warning", "message": {"text": "Suspicious implementation file appears unreferenced"}, "properties": {"repobilityId": 60913, "scanner": "repobility-ai-code-hygiene", "fingerprint": "bc1cabfe0eb5818428ec876cfea90563f72ffa1190c03eaa07d6fe3d97307a41", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Patch-style source file has no detected inbound reference from other repository files.", "evidence": {"suffix": "alt", "rule_id": "AIC004", "scanner": "repobility-ai-code-hygiene", "references": ["https://knip.dev/", "https://github.com/jendrikseipp/vulture"], "correlation_key": "fp|bc1cabfe0eb5818428ec876cfea90563f72ffa1190c03eaa07d6fe3d97307a41"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/third-party/mbedtls/library/ecp_internal_alt.h"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC004", "level": "warning", "message": {"text": "Suspicious implementation file appears unreferenced"}, "properties": {"repobilityId": 60912, "scanner": "repobility-ai-code-hygiene", "fingerprint": "d6e3f7dcecdec513af5705b5791247708df259cc3511e7ebbf747a030a378224", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Patch-style source file has no detected inbound reference from other repository files.", "evidence": {"suffix": "new", "rule_id": "AIC004", "scanner": "repobility-ai-code-hygiene", "references": ["https://knip.dev/", "https://github.com/jendrikseipp/vulture"], "correlation_key": "fp|d6e3f7dcecdec513af5705b5791247708df259cc3511e7ebbf747a030a378224"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/third-party/mbedtls/library/ecp_curves_new.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC001", "level": "warning", "message": {"text": "Parallel implementation file sits beside a canonical file"}, "properties": {"repobilityId": 60901, "scanner": "repobility-ai-code-hygiene", "fingerprint": "4b2baa8ed2e346543820da7064b681a1a2d9d65ec972f0ee94bb63ece07f321f", "category": "quality", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Source filename has a patch-style suffix and a same-directory canonical sibling exists.", "evidence": {"suffix": "old", "rule_id": "AIC001", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195", "https://knip.dev/"], "canonical_file": "deps/icu-small/source/common/unicode/utf.h", "correlation_key": "fp|4b2baa8ed2e346543820da7064b681a1a2d9d65ec972f0ee94bb63ece07f321f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/icu-small/source/common/unicode/utf_old.h"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC001", "level": "warning", "message": {"text": "Parallel implementation file sits beside a canonical file"}, "properties": {"repobilityId": 60899, "scanner": "repobility-ai-code-hygiene", "fingerprint": "3ead5ac73de489a23499e30858530817c7740d91d5cce08ca48e14144c295127", "category": "quality", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Source filename has a patch-style suffix and a same-directory canonical sibling exists.", "evidence": {"suffix": "new", "rule_id": "AIC001", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195", "https://knip.dev/"], "canonical_file": "deps/LIEF/third-party/mbedtls/library/ecp_curves.c", "correlation_key": "fp|3ead5ac73de489a23499e30858530817c7740d91d5cce08ca48e14144c295127"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/third-party/mbedtls/library/ecp_curves_new.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "SEC123", "level": "warning", "message": {"text": "[SEC123] Production stack trace / debug output exposed: Debug mode left on in production exposes stack traces, environment variables, framework internals \u2014 sometimes triggers RCE (Django debug page with arbitrary template eval)."}, "properties": {"repobilityId": 60890, "scanner": "repobility-threat-engine", "fingerprint": "facd694e3afdd08a5b5e12619a855fed4b0a8b8b21d2218139bdb3d829d3ab6f", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "debug = true", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC123", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|facd694e3afdd08a5b5e12619a855fed4b0a8b8b21d2218139bdb3d829d3ab6f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/PE/Builder.hpp"}, "region": {"startLine": 83}}}]}, {"ruleId": "ERR002", "level": "warning", "message": {"text": "[ERR002] Empty Catch Block: Empty catch blocks hide errors."}, "properties": {"repobilityId": 60881, "scanner": "repobility-threat-engine", "fingerprint": "9f96c12de9a78281d5d963f00a756fef6c1cee3ec435f70ae185e39b47390c9f", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".catch(() => {})", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR002", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|9f96c12de9a78281d5d963f00a756fef6c1cee3ec435f70ae185e39b47390c9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/process/handled-rejections.js"}, "region": {"startLine": 34}}}]}, {"ruleId": "SEC087", "level": "warning", "message": {"text": "[SEC087] JS: weak Math.random for crypto: Math.random() is not cryptographically secure; using it for tokens/keys/nonces is predictable. Ported from gosec G404 / eslint detect-pseudoRandomBytes concept (Apache-2.0)."}, "properties": {"repobilityId": 60880, "scanner": "repobility-threat-engine", "fingerprint": "231c46dc58147cf6c5c8fdcb91343286c01a760376060af5fec0a3836a646371", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "Math.random()] = Math.random();\n\n      n /= 10;  // Enumeration is comparativ", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC087", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|231c46dc58147cf6c5c8fdcb91343286c01a760376060af5fec0a3836a646371"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/process/bench-env.js"}, "region": {"startLine": 32}}}]}, {"ruleId": "SEC045", "level": "warning", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use object introspection (().__class__.__mro__[-1].__subclasses__()) to reach os.system. CWE-95 (eval injection)."}, "properties": {"repobilityId": 60838, "scanner": "repobility-threat-engine", "fingerprint": "8344ca16ab36ab5392d95612bc29d6735ecc79bd555de2349931fa6534fdac8b", "category": "injection", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "new Function(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|token|74|sec045"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/buffers/buffer-swap.js"}, "region": {"startLine": 74}}}]}, {"ruleId": "SEC045", "level": "warning", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use object introspection (().__class__.__mro__[-1].__subclasses__()) to reach os.system. CWE-95 (eval injection)."}, "properties": {"repobilityId": 60837, "scanner": "repobility-threat-engine", "fingerprint": "c91bc1f44b2ba7fe827d246502beecd528759382a950c9faaf0cbccd2f923dee", "category": "injection", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "new Function(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|token|24|sec045"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/buffers/buffer-fill.js"}, "region": {"startLine": 24}}}]}, {"ruleId": "SEC045", "level": "warning", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use object introspection (().__class__.__mro__[-1].__subclasses__()) to reach os.system. CWE-95 (eval injection)."}, "properties": {"repobilityId": 60836, "scanner": "repobility-threat-engine", "fingerprint": "fdd4bedf929119d13b0666ceaaf164e95d3d5667c2e67988aabcd892d40adefc", "category": "injection", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".exec(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|token|186|sec045"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/_http-benchmarkers.js"}, "region": {"startLine": 186}}}]}, {"ruleId": "WEB005", "level": "note", "message": {"text": "robots.txt does not advertise a sitemap"}, "properties": {"repobilityId": 60965, "scanner": "repobility-web-presence", "fingerprint": "c517dbc5590bbc52212665abd17de883dba6e4008fe0f0ea0253193267724611", "category": "quality", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Discovered robots file or route lacks a Sitemap directive.", "evidence": {"rule_id": "WEB005", "scanner": "repobility-web-presence", "references": ["https://www.rfc-editor.org/rfc/rfc9309", "https://www.sitemaps.org/protocol.html"], "correlation_key": "fp|c517dbc5590bbc52212665abd17de883dba6e4008fe0f0ea0253193267724611"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/http/_chunky_http_client.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "WEB011", "level": "note", "message": {"text": "Public web app has no humans.txt"}, "properties": {"repobilityId": 60962, "scanner": "repobility-web-presence", "fingerprint": "bdd551fbe1ab6405480e0d5755632562c2096cb9e9a6a071ef60e4c27a6873f1", "category": "quality", "severity": "low", "confidence": 0.5, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Repository looks like a public web app but no humans.txt file or route was discovered.", "evidence": {"rule_id": "WEB011", "scanner": "repobility-web-presence", "references": ["https://github.com/Lissy93/web-check"], "correlation_key": "fp|bdd551fbe1ab6405480e0d5755632562c2096cb9e9a6a071ef60e4c27a6873f1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "humans.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "WEB008", "level": "note", "message": {"text": "Public docs site has no llms.txt"}, "properties": {"repobilityId": 60961, "scanner": "repobility-web-presence", "fingerprint": "cdce8ed8706710d39c3e7272dad572dd639cff74fd3d2ac62d8f6f522b891d76", "category": "quality", "severity": "low", "confidence": 0.64, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Repository looks public and documentation-heavy but no llms.txt file or route was discovered.", "evidence": {"rule_id": "WEB008", "scanner": "repobility-web-presence", "references": ["https://llmstxt.org/"], "correlation_key": "fp|cdce8ed8706710d39c3e7272dad572dd639cff74fd3d2ac62d8f6f522b891d76"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "llms.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "WEB002", "level": "note", "message": {"text": "Public web app has no sitemap"}, "properties": {"repobilityId": 60960, "scanner": "repobility-web-presence", "fingerprint": "fccbe72d13ca3ba9197ec37b0daa0802fb6d5ebff54b3eb9f09b59b0f8d0acdf", "category": "quality", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Repository looks like a public web app but no sitemap file or route was discovered.", "evidence": {"rule_id": "WEB002", "scanner": "repobility-web-presence", "references": ["https://www.sitemaps.org/protocol.html", "https://github.com/Lissy93/web-check"], "correlation_key": "fp|fccbe72d13ca3ba9197ec37b0daa0802fb6d5ebff54b3eb9f09b59b0f8d0acdf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "sitemap.xml"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKR011", "level": "note", "message": {"text": "Dockerfile installs recommended OS packages"}, "properties": {"repobilityId": 60955, "scanner": "repobility-docker", "fingerprint": "a79ec93f3c91ec350cc7dbc816ebb088164d2e04b1b416c735a064fc73d3e490", "category": "docker", "severity": "low", "confidence": 0.72, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt install appears without --no-install-recommends.", "evidence": {"rule_id": "DKR011", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|a79ec93f3c91ec350cc7dbc816ebb088164d2e04b1b416c735a064fc73d3e490"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/ngtcp2/ngtcp2/third-party/urlparse/.clusterfuzzlite/Dockerfile"}, "region": {"startLine": 2}}}]}, {"ruleId": "DKR010", "level": "note", "message": {"text": "Dockerfile leaves apt package indexes in the image layer"}, "properties": {"repobilityId": 60954, "scanner": "repobility-docker", "fingerprint": "c5413711a834dc30e412ff95ab352c7f180606f46b06306aad5a22da60997822", "category": "docker", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "apt update/install layer does not remove /var/lib/apt/lists.", "evidence": {"rule_id": "DKR010", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c5413711a834dc30e412ff95ab352c7f180606f46b06306aad5a22da60997822"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/ngtcp2/ngtcp2/third-party/urlparse/.clusterfuzzlite/Dockerfile"}, "region": {"startLine": 2}}}]}, {"ruleId": "AIC005", "level": "note", "message": {"text": "Duplicate top-level symbol appears in a patch-style file"}, "properties": {"repobilityId": 60951, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a9749cfd8d933dad05de9777b3aeaf8233b9e057847bf651dc670b033f995fde", "category": "quality", "severity": "low", "confidence": 0.64, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Patch-style file defines a top-level symbol also defined in another source file.", "evidence": {"symbol": "Error", "rule_id": "AIC005", "scanner": "repobility-ai-code-hygiene", "references": ["https://github.com/jendrikseipp/vulture", "https://knip.dev/"], "duplicate_file": "configure.py", "correlation_key": "fp|a9749cfd8d933dad05de9777b3aeaf8233b9e057847bf651dc670b033f995fde"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/simple_copy.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60950, "scanner": "repobility-ai-code-hygiene", "fingerprint": "583bf9418c0a22e690af47fcbd5484469631cdc3e25ec7c0cbab615867e816f2", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/PE/LoadConfigurations/DynamicRelocation/DynamicFixupARM64Kernel.hpp", "duplicate_line": 15, "correlation_key": "fp|583bf9418c0a22e690af47fcbd5484469631cdc3e25ec7c0cbab615867e816f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/PE/LoadConfigurations/DynamicRelocation/DynamicFixupControlTransfer.hpp"}, "region": {"startLine": 9}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60949, "scanner": "repobility-ai-code-hygiene", "fingerprint": "10ea85f3cd0eb08faf4837b11a1d9332e160badb26612ad240232d11ffd99b6e", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/ObjC/Method.hpp", "duplicate_line": 16, "correlation_key": "fp|10ea85f3cd0eb08faf4837b11a1d9332e160badb26612ad240232d11ffd99b6e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/PDB/types/Method.hpp"}, "region": {"startLine": 18}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60948, "scanner": "repobility-ai-code-hygiene", "fingerprint": "fce4b2e4f6f1a4c5962f801eb0b3e4dd73b31b7da237e6060abe07155aed5fec", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DWARF/Type.hpp", "duplicate_line": 17, "correlation_key": "fp|fce4b2e4f6f1a4c5962f801eb0b3e4dd73b31b7da237e6060abe07155aed5fec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/PDB/Type.hpp"}, "region": {"startLine": 16}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60947, "scanner": "repobility-ai-code-hygiene", "fingerprint": "4df4967d87441e3656cc871234dda96d0e54c2991fb8d75d5b9b7540e2c5fd02", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DWARF/Function.hpp", "duplicate_line": 43, "correlation_key": "fp|4df4967d87441e3656cc871234dda96d0e54c2991fb8d75d5b9b7540e2c5fd02"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/PDB/Function.hpp"}, "region": {"startLine": 35}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60946, "scanner": "repobility-ai-code-hygiene", "fingerprint": "b7d9b3b2b224840e170dcaca329f93a36e7c57853c97772356db27092aa64696", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DWARF/CompilationUnit.hpp", "duplicate_line": 3, "correlation_key": "fp|b7d9b3b2b224840e170dcaca329f93a36e7c57853c97772356db27092aa64696"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/PDB/CompilationUnit.hpp"}, "region": {"startLine": 4}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60945, "scanner": "repobility-ai-code-hygiene", "fingerprint": "242c6b02ebcbfb1bba3a76e93fd1670770411ce853f031a381c0e05cc4b40cff", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DWARF/CompilationUnit.hpp", "duplicate_line": 29, "correlation_key": "fp|242c6b02ebcbfb1bba3a76e93fd1670770411ce853f031a381c0e05cc4b40cff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/ObjC/Protocol.hpp"}, "region": {"startLine": 29}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60944, "scanner": "repobility-ai-code-hygiene", "fingerprint": "27e30236365c0a86458cfbde6a2f31e612f378481741f4ce313a3f01fb2f7991", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DWARF/CompilationUnit.hpp", "duplicate_line": 29, "correlation_key": "fp|27e30236365c0a86458cfbde6a2f31e612f378481741f4ce313a3f01fb2f7991"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/ObjC/Property.hpp"}, "region": {"startLine": 29}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60943, "scanner": "repobility-ai-code-hygiene", "fingerprint": "2cc1be426c1133515ab71b3bc71e30c17223770d0a4f1da535a2b59893f4a37a", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DWARF/CompilationUnit.hpp", "duplicate_line": 29, "correlation_key": "fp|2cc1be426c1133515ab71b3bc71e30c17223770d0a4f1da535a2b59893f4a37a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/ObjC/Method.hpp"}, "region": {"startLine": 29}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60942, "scanner": "repobility-ai-code-hygiene", "fingerprint": "89275c9284b87a90bc7e78e945e772d8486b48d0167856b1179e569a166f12a5", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DWARF/CompilationUnit.hpp", "duplicate_line": 29, "correlation_key": "fp|89275c9284b87a90bc7e78e945e772d8486b48d0167856b1179e569a166f12a5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/ObjC/IVar.hpp"}, "region": {"startLine": 29}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60941, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a591b688af8e0c3576041f99d66acc93ce77d0d1a771b4584b3b26ede04335d7", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DWARF/CompilationUnit.hpp", "duplicate_line": 29, "correlation_key": "fp|a591b688af8e0c3576041f99d66acc93ce77d0d1a771b4584b3b26ede04335d7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/ObjC/Class.hpp"}, "region": {"startLine": 29}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60940, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1207f1410e4fa047bde7dad2a750cb9ebd18b23b736ee1037052271ce712e8ea", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/MachO/CodeSignature.hpp", "duplicate_line": 22, "correlation_key": "fp|1207f1410e4fa047bde7dad2a750cb9ebd18b23b736ee1037052271ce712e8ea"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/SegmentSplitInfo.hpp"}, "region": {"startLine": 20}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60939, "scanner": "repobility-ai-code-hygiene", "fingerprint": "8bd26f1aded59c695c7f70a8b28763f889ba700315b4b7bb19074f43b6bea5ac", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/MachO/AtomInfo.hpp", "duplicate_line": 18, "correlation_key": "fp|8bd26f1aded59c695c7f70a8b28763f889ba700315b4b7bb19074f43b6bea5ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/SegmentSplitInfo.hpp"}, "region": {"startLine": 18}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60938, "scanner": "repobility-ai-code-hygiene", "fingerprint": "95095260cfc61416d7d2c93ca876ed699b6c85e740f5f7f5c3e2eda06433e7c3", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/COFF/Binary.hpp", "duplicate_line": 34, "correlation_key": "fp|95095260cfc61416d7d2c93ca876ed699b6c85e740f5f7f5c3e2eda06433e7c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/SegmentCommand.hpp"}, "region": {"startLine": 80}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60937, "scanner": "repobility-ai-code-hygiene", "fingerprint": "c1a5b72b2af11cabba8e20d14b196f7d38a5cdd0698d7678eef90f89ccaa449b", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/MachO/ChainedBindingInfo.hpp", "duplicate_line": 35, "correlation_key": "fp|c1a5b72b2af11cabba8e20d14b196f7d38a5cdd0698d7678eef90f89ccaa449b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/RelocationFixup.hpp"}, "region": {"startLine": 41}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60936, "scanner": "repobility-ai-code-hygiene", "fingerprint": "d8dec9bd16cab281a26ac69e99b8b41ed482c2a89bda5a75c2b3fc5f50d3a6db", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/ELF/Relocation.hpp", "duplicate_line": 126, "correlation_key": "fp|d8dec9bd16cab281a26ac69e99b8b41ed482c2a89bda5a75c2b3fc5f50d3a6db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/Relocation.hpp"}, "region": {"startLine": 37}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60935, "scanner": "repobility-ai-code-hygiene", "fingerprint": "4cbd767cf33ddae38d91ece2ca5944f1e135199b57c41a0d474af1ea3a3cdeb3", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/MachO/AtomInfo.hpp", "duplicate_line": 18, "correlation_key": "fp|4cbd767cf33ddae38d91ece2ca5944f1e135199b57c41a0d474af1ea3a3cdeb3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/LinkerOptHint.hpp"}, "region": {"startLine": 20}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60934, "scanner": "repobility-ai-code-hygiene", "fingerprint": "627acc9971f5910643eef2ba3b5926802e61448a1516a65bd1cf49511e6d8dab", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/MachO/AtomInfo.hpp", "duplicate_line": 18, "correlation_key": "fp|627acc9971f5910643eef2ba3b5926802e61448a1516a65bd1cf49511e6d8dab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/FunctionVariants.hpp"}, "region": {"startLine": 121}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60933, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1d4b95dc7aedcbc20b89f541f19c33962c8972ad9b63e014d40046ec92cf4128", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/MachO/AtomInfo.hpp", "duplicate_line": 18, "correlation_key": "fp|1d4b95dc7aedcbc20b89f541f19c33962c8972ad9b63e014d40046ec92cf4128"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/FunctionVariantFixups.hpp"}, "region": {"startLine": 18}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60932, "scanner": "repobility-ai-code-hygiene", "fingerprint": "ca68745b19ecc12b6131e45b80938fc1a1ef574312096eebc96d968d0e16a9a8", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/MachO/AtomInfo.hpp", "duplicate_line": 19, "correlation_key": "fp|ca68745b19ecc12b6131e45b80938fc1a1ef574312096eebc96d968d0e16a9a8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/DyldExportsTrie.hpp"}, "region": {"startLine": 27}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60931, "scanner": "repobility-ai-code-hygiene", "fingerprint": "4df553c8e028c52fa9b64d6c3fb18299047a599f1daf7d05fede68082e7c03f3", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/MachO/AtomInfo.hpp", "duplicate_line": 19, "correlation_key": "fp|4df553c8e028c52fa9b64d6c3fb18299047a599f1daf7d05fede68082e7c03f3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/DyldChainedFixups.hpp"}, "region": {"startLine": 64}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60930, "scanner": "repobility-ai-code-hygiene", "fingerprint": "e3cb016d31ca619ac47f61f6bfaa3ac85d094a9434741fe49d0d19a2ef79da0f", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/MachO/AtomInfo.hpp", "duplicate_line": 18, "correlation_key": "fp|e3cb016d31ca619ac47f61f6bfaa3ac85d094a9434741fe49d0d19a2ef79da0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/DataInCode.hpp"}, "region": {"startLine": 22}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60929, "scanner": "repobility-ai-code-hygiene", "fingerprint": "bb66d1b1b8a338d511cdf14edd7f877e60099b628a51b15e0f1ffd5cae7bbd41", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/MachO/AtomInfo.hpp", "duplicate_line": 18, "correlation_key": "fp|bb66d1b1b8a338d511cdf14edd7f877e60099b628a51b15e0f1ffd5cae7bbd41"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/CodeSignatureDir.hpp"}, "region": {"startLine": 20}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60928, "scanner": "repobility-ai-code-hygiene", "fingerprint": "62041c4c0244dc71b02fb949529f619fb8223d4e9e8a4a2ec4118326aef79bd7", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/MachO/AtomInfo.hpp", "duplicate_line": 18, "correlation_key": "fp|62041c4c0244dc71b02fb949529f619fb8223d4e9e8a4a2ec4118326aef79bd7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/MachO/CodeSignature.hpp"}, "region": {"startLine": 20}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60927, "scanner": "repobility-ai-code-hygiene", "fingerprint": "0c0f138fa01b00c854395a5b39c37b87282b4c74a07d0d765d0260f4c25f0935", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DyldSharedCache/Dylib.hpp", "duplicate_line": 20, "correlation_key": "fp|0c0f138fa01b00c854395a5b39c37b87282b4c74a07d0d765d0260f4c25f0935"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/DyldSharedCache/SubCache.hpp"}, "region": {"startLine": 19}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60926, "scanner": "repobility-ai-code-hygiene", "fingerprint": "59ff8b26ec7c06573ca2974576830059622f5e75b06969077355b92c4584286a", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DyldSharedCache/Dylib.hpp", "duplicate_line": 20, "correlation_key": "fp|59ff8b26ec7c06573ca2974576830059622f5e75b06969077355b92c4584286a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/DyldSharedCache/MappingInfo.hpp"}, "region": {"startLine": 17}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60925, "scanner": "repobility-ai-code-hygiene", "fingerprint": "39b33e138c12796e8bfb9a2a1c1eee145d30b23cac7466a760d5ef4d7a25a05e", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DWARF/CompilationUnit.hpp", "duplicate_line": 29, "correlation_key": "fp|39b33e138c12796e8bfb9a2a1c1eee145d30b23cac7466a760d5ef4d7a25a05e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/DWARF/Variable.hpp"}, "region": {"startLine": 30}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60924, "scanner": "repobility-ai-code-hygiene", "fingerprint": "c9c76b6081eebaf9e8110f887636029f7b84fdb7c8d7cd9693f8291dc97cb98c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DWARF/CompilationUnit.hpp", "duplicate_line": 29, "correlation_key": "fp|c9c76b6081eebaf9e8110f887636029f7b84fdb7c8d7cd9693f8291dc97cb98c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/DWARF/Type.hpp"}, "region": {"startLine": 30}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60923, "scanner": "repobility-ai-code-hygiene", "fingerprint": "f15ee86e3fd0d122bbee3d1cf2406cdebe69a911c7d9c7850b7902413d02223c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/DWARF/CompilationUnit.hpp", "duplicate_line": 29, "correlation_key": "fp|f15ee86e3fd0d122bbee3d1cf2406cdebe69a911c7d9c7850b7902413d02223c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/DWARF/Function.hpp"}, "region": {"startLine": 31}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60922, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a23b22a2c369176b01d7faf1789207dc9150540f0f33da44b46ed83756bff84c", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/COFF/Binary.hpp", "duplicate_line": 40, "correlation_key": "fp|a23b22a2c369176b01d7faf1789207dc9150540f0f33da44b46ed83756bff84c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/COFF/Section.hpp"}, "region": {"startLine": 62}}}]}, {"ruleId": "AIC003", "level": "note", "message": {"text": "Duplicated implementation block across source files"}, "properties": {"repobilityId": 60921, "scanner": "repobility-ai-code-hygiene", "fingerprint": "17dc6678151330b6664388a74d79ee8c5e1f1ccf509eab448e8f2dd63152d59e", "category": "quality", "severity": "low", "confidence": 0.86, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "A normalized source-code window appears in two different non-test files.", "evidence": {"lines": 12, "rule_id": "AIC003", "scanner": "repobility-ai-code-hygiene", "references": ["https://jscpd.dev/"], "duplicate_file": "deps/LIEF/include/LIEF/Abstract/Binary.hpp", "duplicate_line": 131, "correlation_key": "fp|17dc6678151330b6664388a74d79ee8c5e1f1ccf509eab448e8f2dd63152d59e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/COFF/Binary.hpp"}, "region": {"startLine": 82}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 60911, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1e10353985ea28afbd4c0577843344342653d842079586a4a48e6e3e13c2cc63", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "fix", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|1e10353985ea28afbd4c0577843344342653d842079586a4a48e6e3e13c2cc63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/xml_fix.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 60910, "scanner": "repobility-ai-code-hygiene", "fingerprint": "58177e4e30eb57e41058f0d8360cbc25f271d0a9c1bc50e79f229bf62712e6a9", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "copy", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|58177e4e30eb57e41058f0d8360cbc25f271d0a9c1bc50e79f229bf62712e6a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/simple_copy.py"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 60909, "scanner": "repobility-ai-code-hygiene", "fingerprint": "168812a3f8f9d6d65f765f00223763b6294d18e4af40d16baa6fb2e3440383be", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "update", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|168812a3f8f9d6d65f765f00223763b6294d18e4af40d16baa6fb2e3440383be"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-vfs-ctime-update.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 60908, "scanner": "repobility-ai-code-hygiene", "fingerprint": "44a6086b8298db1e70fd8d68003b9510b2211719c0dc1f6651ef2bea4870d2cc", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "final", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|44a6086b8298db1e70fd8d68003b9510b2211719c0dc1f6651ef2bea4870d2cc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-stream-write-final.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 60907, "scanner": "repobility-ai-code-hygiene", "fingerprint": "1b4d160076c8360c55d7c75115d8abf70073f76e32822b3c8dc35d6ab2674851", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "final", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|1b4d160076c8360c55d7c75115d8abf70073f76e32822b3c8dc35d6ab2674851"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-stream-transform-final.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 60906, "scanner": "repobility-ai-code-hygiene", "fingerprint": "48cf1af20977865b15ce2f8ace1120c302ad4c8df2e78a3565d65d82c78092da", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "copy", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|48cf1af20977865b15ce2f8ace1120c302ad4c8df2e78a3565d65d82c78092da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-dgram-send-multi-buffer-copy.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 60905, "scanner": "repobility-ai-code-hygiene", "fingerprint": "5cf6a0df03883bd0d6e19e08a7d9cf7017bf2e416f4e53a4896becd384c609ca", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "copy", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|5cf6a0df03883bd0d6e19e08a7d9cf7017bf2e416f4e53a4896becd384c609ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-dgram-connect-send-multi-buffer-copy.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 60904, "scanner": "repobility-ai-code-hygiene", "fingerprint": "a6e92d71254cf124153d882853b81c00883639ea82cd67d556534a91e276a014", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "copy", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|a6e92d71254cf124153d882853b81c00883639ea82cd67d556534a91e276a014"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/parallel/test-buffer-copy.js"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 60903, "scanner": "repobility-ai-code-hygiene", "fingerprint": "42683df968dbca03d2c748686430f231960e4d0d54cd6c247c2831e603eb572b", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "old", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|42683df968dbca03d2c748686430f231960e4d0d54cd6c247c2831e603eb572b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/openssl/openssl/crypto/evp/e_old.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 60902, "scanner": "repobility-ai-code-hygiene", "fingerprint": "9e1e0e8a094669baf5fc05c1ea21b467e778175f38964831e25bbe3edd4f5b2f", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "new", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|9e1e0e8a094669baf5fc05c1ea21b467e778175f38964831e25bbe3edd4f5b2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/openssl/openssl/crypto/asn1/tasn_new.c"}, "region": {"startLine": 1}}}]}, {"ruleId": "AIC002", "level": "note", "message": {"text": "Source file name looks like an AI patch artifact"}, "properties": {"repobilityId": 60900, "scanner": "repobility-ai-code-hygiene", "fingerprint": "ca611e33a5a354cb0c37528906eeb47c517fd33f27e3341a7095df75a44c9e1b", "category": "quality", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Source filename contains a temporary or patch-style suffix.", "evidence": {"suffix": "alt", "rule_id": "AIC002", "scanner": "repobility-ai-code-hygiene", "references": ["https://arxiv.org/abs/2601.15195"], "correlation_key": "fp|ca611e33a5a354cb0c37528906eeb47c517fd33f27e3341a7095df75a44c9e1b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/third-party/mbedtls/library/ecp_internal_alt.h"}, "region": {"startLine": 1}}}]}, {"ruleId": "SEC132", "level": "note", "message": {"text": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the language has cleaner interpolation (Python f-strings since 3.6, JS template literals since ES6). Not a vulnerability on its own, but a style signature of cross-language AI rewrites \u2014 the model wrote idiomatic Java/C# and then translated mechanically. When this style appears in only *some* files of a repo, it's a strong indicator of an AI-driven rewrite that needs a human review p"}, "properties": {"repobilityId": 60830, "scanner": "repobility-threat-engine", "fingerprint": "0eb613cbcc491a706efcb3eaea3405cb6e4534abcbc464a30e00fbf0eb3e6f05", "category": "quality", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "\" host_os=\" + host_os + \" OS=android\"", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC132", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|0eb613cbcc491a706efcb3eaea3405cb6e4534abcbc464a30e00fbf0eb3e6f05"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "android_configure.py"}, "region": {"startLine": 72}}}]}, {"ruleId": "MINED057", "level": "none", "message": {"text": "[MINED057] Todo Bomb: Code path with a TODO/FIXME/HACK comment that gates correctness \u2014 left for later but never resolved."}, "properties": {"repobilityId": 60898, "scanner": "repobility-threat-engine", "fingerprint": "215d60943d883e0073d2f1655a25cd69576d453af4277237e2654a46871a1f59", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "todo-bomb", "owasp": null, "cwe_ids": [], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348035+00:00", "triaged_in_corpus": 10, "observations_count": 255662, "ai_coder_pattern_id": 4}, "scanner": "repobility-threat-engine", "correlation_key": "fp|215d60943d883e0073d2f1655a25cd69576d453af4277237e2654a46871a1f59"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/icu-small/source/common/udatamem.cpp"}, "region": {"startLine": 67}}}]}, {"ruleId": "MINED047", "level": "none", "message": {"text": "[MINED047] Emoji In Source: Emoji \u2705 \u274c \ud83d\ude80 in code/comments \u2014 common AI output unless explicitly requested."}, "properties": {"repobilityId": 60897, "scanner": "repobility-threat-engine", "fingerprint": "41dc3602746e94e3b3af4dfbe6d378e6338c1a875062f0cfee25ea56fe28e287", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "emoji-in-source", "owasp": null, "cwe_ids": [], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348010+00:00", "triaged_in_corpus": 9, "observations_count": 1468364, "ai_coder_pattern_id": 29}, "scanner": "repobility-threat-engine", "correlation_key": "fp|41dc3602746e94e3b3af4dfbe6d378e6338c1a875062f0cfee25ea56fe28e287"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/icu-small/source/common/static_unicode_sets.h"}, "region": {"startLine": 133}}}]}, {"ruleId": "MINED047", "level": "none", "message": {"text": "[MINED047] Emoji In Source: Emoji \u2705 \u274c \ud83d\ude80 in code/comments \u2014 common AI output unless explicitly requested."}, "properties": {"repobilityId": 60896, "scanner": "repobility-threat-engine", "fingerprint": "747457f1e3161e085bd3aeb631594a9b98b0e7895fa520635b3e3a9a48788903", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "emoji-in-source", "owasp": null, "cwe_ids": [], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348010+00:00", "triaged_in_corpus": 9, "observations_count": 1468364, "ai_coder_pattern_id": 29}, "scanner": "repobility-threat-engine", "correlation_key": "fp|747457f1e3161e085bd3aeb631594a9b98b0e7895fa520635b3e3a9a48788903"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/icu-small/source/common/static_unicode_sets.cpp"}, "region": {"startLine": 108}}}]}, {"ruleId": "MINED068", "level": "none", "message": {"text": "[MINED068] Rust Unsafe Block: unsafe { ... } block. Compiler safety guarantees disabled inside."}, "properties": {"repobilityId": 60895, "scanner": "repobility-threat-engine", "fingerprint": "863bd1697b5b14d06eb70df73d4a6c48e90bfcaf789dd29de1649ab8b6201bb0", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-unsafe-block", "owasp": null, "cwe_ids": ["CWE-119"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348060+00:00", "triaged_in_corpus": 12, "observations_count": 42383, "ai_coder_pattern_id": 116}, "scanner": "repobility-threat-engine", "correlation_key": "fp|863bd1697b5b14d06eb70df73d4a6c48e90bfcaf789dd29de1649ab8b6201bb0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/crates/patches/resb/src/binary/helpers.rs"}, "region": {"startLine": 18}}}]}, {"ruleId": "MINED066", "level": "none", "message": {"text": "[MINED066] Rust Panic Macro: panic!() unwinds the stack. Use Result for recoverable errors."}, "properties": {"repobilityId": 60894, "scanner": "repobility-threat-engine", "fingerprint": "ee927e067c3d9eefe5c186b339062921a21b34f98e2ea62c7c7f8c0508121dc7", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-panic-macro", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348055+00:00", "triaged_in_corpus": 12, "observations_count": 48611, "ai_coder_pattern_id": 113}, "scanner": "repobility-threat-engine", "correlation_key": "fp|ee927e067c3d9eefe5c186b339062921a21b34f98e2ea62c7c7f8c0508121dc7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/crates/patches/resb/examples/genrb.rs"}, "region": {"startLine": 12}}}]}, {"ruleId": "MINED059", "level": "none", "message": {"text": "[MINED059] Rust Expect In Prod: .expect(...) panics same as unwrap with a custom message."}, "properties": {"repobilityId": 60893, "scanner": "repobility-threat-engine", "fingerprint": "4de06bddbcd7d8f06d72fc2e1c548a75b2fd0f58b4de5f2d10e34e4846e4522a", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "rust-expect-in-prod", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["rust"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348039+00:00", "triaged_in_corpus": 12, "observations_count": 175379, "ai_coder_pattern_id": 112}, "scanner": "repobility-threat-engine", "correlation_key": "fp|4de06bddbcd7d8f06d72fc2e1c548a75b2fd0f58b4de5f2d10e34e4846e4522a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/crates/patches/resb/examples/genrb.rs"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED069", "level": "none", "message": {"text": "[MINED069] Debug True Prod: Django/Flask DEBUG=True or app.debug=True in non-test files."}, "properties": {"repobilityId": 60891, "scanner": "repobility-threat-engine", "fingerprint": "7e8434d5c13f184349b17e39270033d90c160279f206db7c1df5d5904896eeae", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "debug-true-prod", "owasp": "A05:2021", "cwe_ids": ["CWE-489"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348063+00:00", "triaged_in_corpus": 12, "observations_count": 37393, "ai_coder_pattern_id": 17}, "scanner": "repobility-threat-engine", "correlation_key": "fp|7e8434d5c13f184349b17e39270033d90c160279f206db7c1df5d5904896eeae"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/PE/Builder.hpp"}, "region": {"startLine": 83}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete (and 161 more): Same pattern found in 161 additional files. Review if needed."}, "properties": {"repobilityId": 60889, "scanner": "repobility-threat-engine", "fingerprint": "1a55a9f7bd2c6e81ae0c3e0770c3c6daef911254ca7106c3549118f099ec45b5", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 161 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|1a55a9f7bd2c6e81ae0c3e0770c3c6daef911254ca7106c3549118f099ec45b5", "aggregated_count": 161}}}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 60888, "scanner": "repobility-threat-engine", "fingerprint": "69049d10449cdba7609b61d664b15bb52ed27fe86152d4ea13adea915d52307c", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|69049d10449cdba7609b61d664b15bb52ed27fe86152d4ea13adea915d52307c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/COFF/BigObjHeader.hpp"}, "region": {"startLine": 50}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 60887, "scanner": "repobility-threat-engine", "fingerprint": "bd77bb4df6748067d6b9000c51b75219fc5b7b6b2702eb41d399b090f1ee1a03", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|bd77bb4df6748067d6b9000c51b75219fc5b7b6b2702eb41d399b090f1ee1a03"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/COFF/AuxiliarySymbol.hpp"}, "region": {"startLine": 53}}}]}, {"ruleId": "MINED042", "level": "none", "message": {"text": "[MINED042] Cpp New Without Delete: C++ raw new without RAII / unique_ptr \u2014 memory leak risk."}, "properties": {"repobilityId": 60886, "scanner": "repobility-threat-engine", "fingerprint": "c12bb5c37e03301fb897b2dbe190870c50098dabb27685567814d2430b509142", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "cpp-new-without-delete", "owasp": null, "cwe_ids": ["CWE-401"], "languages": ["cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347996+00:00", "triaged_in_corpus": 12, "observations_count": 4658256, "ai_coder_pattern_id": 134}, "scanner": "repobility-threat-engine", "correlation_key": "fp|c12bb5c37e03301fb897b2dbe190870c50098dabb27685567814d2430b509142"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/BinaryStream/SpanStream.hpp"}, "region": {"startLine": 65}}}]}, {"ruleId": "SEC118", "level": "none", "message": {"text": "[SEC118] UUIDv1 / UUIDv3 used for security-sensitive identifier (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "properties": {"repobilityId": 60885, "scanner": "repobility-threat-engine", "fingerprint": "b33b9fa30193bee8937fded79de0a89e3cbc0227353c6d1fa8988e662e74e331", "category": "crypto", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 2 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 2 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC118", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|b33b9fa30193bee8937fded79de0a89e3cbc0227353c6d1fa8988e662e74e331"}}}, {"ruleId": "SEC118", "level": "none", "message": {"text": "[SEC118] UUIDv1 / UUIDv3 used for security-sensitive identifier: UUIDv1 encodes the MAC address and timestamp, making it predictable. Used as a session token or password-reset key, it's enumerable."}, "properties": {"repobilityId": 60884, "scanner": "repobility-threat-engine", "fingerprint": "c3f58643c5ad0c61272925e38aa7aa0510b9245756ae731c4d6ad23879a46902", "category": "crypto", "severity": "info", "confidence": 0.1, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Safe pattern 'randomUUID' detected on same line", "evidence": {"match": "crypto.randomUUID", "reason": "Safe pattern 'randomUUID' detected on same line", "rule_id": "SEC118", "scanner": "repobility-threat-engine", "confidence": 0.1, "correlation_key": "code|crypto|token|50|sec118"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/sqlite/sqlite-prepare-select-all.js"}, "region": {"startLine": 50}}}]}, {"ruleId": "SEC118", "level": "none", "message": {"text": "[SEC118] UUIDv1 / UUIDv3 used for security-sensitive identifier: UUIDv1 encodes the MAC address and timestamp, making it predictable. Used as a session token or password-reset key, it's enumerable."}, "properties": {"repobilityId": 60883, "scanner": "repobility-threat-engine", "fingerprint": "686c07dfa7911d985a0224393c245590035c44024c61f9d65e8c5867f85fe16d", "category": "crypto", "severity": "info", "confidence": 0.1, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Safe pattern 'randomUUID' detected on same line", "evidence": {"match": "crypto.randomUUID", "reason": "Safe pattern 'randomUUID' detected on same line", "rule_id": "SEC118", "scanner": "repobility-threat-engine", "confidence": 0.1, "correlation_key": "code|crypto|token|34|sec118"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/sqlite/sqlite-prepare-select-all-options.js"}, "region": {"startLine": 34}}}]}, {"ruleId": "SEC118", "level": "none", "message": {"text": "[SEC118] UUIDv1 / UUIDv3 used for security-sensitive identifier: UUIDv1 encodes the MAC address and timestamp, making it predictable. Used as a session token or password-reset key, it's enumerable."}, "properties": {"repobilityId": 60882, "scanner": "repobility-threat-engine", "fingerprint": "e1b944b8198de051d46add11a52a0f5daa5104f8e3f1ae29b04545e74663d971", "category": "crypto", "severity": "info", "confidence": 0.1, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Safe pattern 'randomUUID' detected on same line", "evidence": {"match": "crypto.randomUUID", "reason": "Safe pattern 'randomUUID' detected on same line", "rule_id": "SEC118", "scanner": "repobility-threat-engine", "confidence": 0.1, "correlation_key": "code|crypto|token|37|sec118"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/sqlite/sqlite-prepare-insert.js"}, "region": {"startLine": 37}}}]}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 60879, "scanner": "repobility-threat-engine", "fingerprint": "edfb9473af24ead066d1a8f40f65363674591519cd97c882d5429dba5e4ae6e3", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|edfb9473af24ead066d1a8f40f65363674591519cd97c882d5429dba5e4ae6e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/brotli/c/enc/static_dict_lut.c"}, "region": {"startLine": 200}}}]}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 60878, "scanner": "repobility-threat-engine", "fingerprint": "52b5b651a6b21a66256085fa3ae69b5f8a6d7341edce1a5b3e11c2520311490d", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|52b5b651a6b21a66256085fa3ae69b5f8a6d7341edce1a5b3e11c2520311490d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/napi/ref/addon.c"}, "region": {"startLine": 70}}}]}, {"ruleId": "MINED075", "level": "none", "message": {"text": "[MINED075] C Malloc No Check: malloc/calloc/realloc return value used without checking for NULL."}, "properties": {"repobilityId": 60877, "scanner": "repobility-threat-engine", "fingerprint": "a854f6990b614f808dcdde38a0e4b036d28a2979092ffea8a026aa1e3ce494ce", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-malloc-no-check", "owasp": null, "cwe_ids": ["CWE-690"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348076+00:00", "triaged_in_corpus": 12, "observations_count": 11735, "ai_coder_pattern_id": 131}, "scanner": "repobility-threat-engine", "correlation_key": "fp|a854f6990b614f808dcdde38a0e4b036d28a2979092ffea8a026aa1e3ce494ce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/napi/define_properties/binding.c"}, "region": {"startLine": 49}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https (and 4 more): Same pattern found in 4 additional files. Review if needed."}, "properties": {"repobilityId": 60876, "scanner": "repobility-threat-engine", "fingerprint": "133d0321df668823d68fda7a262cc53d13053f2174d79a753e1fabffb7f20eec", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 4 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|133d0321df668823d68fda7a262cc53d13053f2174d79a753e1fabffb7f20eec", "aggregated_count": 4}}}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 60875, "scanner": "repobility-threat-engine", "fingerprint": "0d9c7c44e00625330c674c15e074c8e761f18954dbf7d446307f9d9003e5a78f", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|0d9c7c44e00625330c674c15e074c8e761f18954dbf7d446307f9d9003e5a78f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/url/url-resolve.js"}, "region": {"startLine": 11}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 60874, "scanner": "repobility-threat-engine", "fingerprint": "c56cba03a919d95befbc9876593299c53be8b3ff7e5b26c403dbdcc292af9029", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|c56cba03a919d95befbc9876593299c53be8b3ff7e5b26c403dbdcc292af9029"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/url/url-parse.js"}, "region": {"startLine": 6}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 60873, "scanner": "repobility-threat-engine", "fingerprint": "f16848d75ecf77fedbf741e4610a072f4d0eabb379e811e9f9fdbd1525c12de6", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|f16848d75ecf77fedbf741e4610a072f4d0eabb379e811e9f9fdbd1525c12de6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/http/create-clientrequest.js"}, "region": {"startLine": 9}}}]}, {"ruleId": "MINED004", "level": "none", "message": {"text": "[MINED004] Weak Crypto (and 10 more): Same pattern found in 10 additional files. Review if needed."}, "properties": {"repobilityId": 60869, "scanner": "repobility-threat-engine", "fingerprint": "afa131209e1d9fa3c080e8ee4aef5ca0e829be1db823943c3335c3b6627e6ae4", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 10 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|afa131209e1d9fa3c080e8ee4aef5ca0e829be1db823943c3335c3b6627e6ae4", "aggregated_count": 10}}}, {"ruleId": "MINED046", "level": "none", "message": {"text": "[MINED046] Dart Print: print() in Flutter goes to console. Use debugPrint / logger."}, "properties": {"repobilityId": 60865, "scanner": "repobility-threat-engine", "fingerprint": "6fe97b508582f941639a65bdca9e9be3f5af3f755db93bb954ee529e32516a54", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "dart-print", "owasp": null, "cwe_ids": ["CWE-532"], "languages": ["dart"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348008+00:00", "triaged_in_corpus": 10, "observations_count": 1515005, "ai_coder_pattern_id": 168}, "scanner": "repobility-threat-engine", "correlation_key": "fp|6fe97b508582f941639a65bdca9e9be3f5af3f755db93bb954ee529e32516a54"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/scatter.R"}, "region": {"startLine": 69}}}]}, {"ruleId": "MINED046", "level": "none", "message": {"text": "[MINED046] Dart Print: print() in Flutter goes to console. Use debugPrint / logger."}, "properties": {"repobilityId": 60864, "scanner": "repobility-threat-engine", "fingerprint": "469f0dca9be1c259cfb2dc512b7fb216ae0b62250f831e0ff4e8b79176f5523c", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "dart-print", "owasp": null, "cwe_ids": ["CWE-532"], "languages": ["dart"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348008+00:00", "triaged_in_corpus": 10, "observations_count": 1515005, "ai_coder_pattern_id": 168}, "scanner": "repobility-threat-engine", "correlation_key": "fp|469f0dca9be1c259cfb2dc512b7fb216ae0b62250f831e0ff4e8b79176f5523c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/compare.R"}, "region": {"startLine": 107}}}]}, {"ruleId": "MINED014", "level": "none", "message": {"text": "[MINED014] Disabled Tls Verify (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "properties": {"repobilityId": 60857, "scanner": "repobility-threat-engine", "fingerprint": "49bb2605943146fdabea0a002556fe39edd57deb5938f314310afb803faa9ef9", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 2 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "disabled-tls-verify", "owasp": "A02:2021", "cwe_ids": ["CWE-295"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347930+00:00", "triaged_in_corpus": 15, "observations_count": 86916, "ai_coder_pattern_id": 16}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|49bb2605943146fdabea0a002556fe39edd57deb5938f314310afb803faa9ef9", "aggregated_count": 2}}}, {"ruleId": "SEC128", "level": "none", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 13 more): Same pattern found in 13 additional files. Review if needed."}, "properties": {"repobilityId": 60853, "scanner": "repobility-threat-engine", "fingerprint": "fe63a0c3db36cbf73bb9f04d5837f9f34863a99ac7da05df7321980a56d87019", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 13 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 13 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|fe63a0c3db36cbf73bb9f04d5837f9f34863a99ac7da05df7321980a56d87019"}}}, {"ruleId": "SEC084", "level": "none", "message": {"text": "[SEC084] JS: require() with non-literal (and 7 more): Same pattern found in 7 additional files. Review if needed."}, "properties": {"repobilityId": 60849, "scanner": "repobility-threat-engine", "fingerprint": "e5bc9bf5f42d9f2194ea7d1c2041149f1dd167602643d8715ae0a1e0f31c2c9d", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 7 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 7 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC084", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|e5bc9bf5f42d9f2194ea7d1c2041149f1dd167602643d8715ae0a1e0f31c2c9d"}}}, {"ruleId": "SEC029", "level": "none", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 9 more): Same pattern found in 9 additional files. Review if needed."}, "properties": {"repobilityId": 60845, "scanner": "repobility-threat-engine", "fingerprint": "a0769f34321ccb4a2408866410ff258332c2e3d0c176eda236c0efe5490d0026", "category": "ssrf", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 9 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 9 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|a0769f34321ccb4a2408866410ff258332c2e3d0c176eda236c0efe5490d0026"}}}, {"ruleId": "SEC045", "level": "none", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data (and 10 more): Same pattern found in 10 additional files. Review if needed."}, "properties": {"repobilityId": 60839, "scanner": "repobility-threat-engine", "fingerprint": "4888a7f2d95e1334850750ba0611e2c2a23c368ce50109969c246a2c925d3677", "category": "injection", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 10 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 10 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|4888a7f2d95e1334850750ba0611e2c2a23c368ce50109969c246a2c925d3677"}}}, {"ruleId": "MINED044", "level": "none", "message": {"text": "[MINED044] Js Console Log Prod (and 25 more): Same pattern found in 25 additional files. Review if needed."}, "properties": {"repobilityId": 60835, "scanner": "repobility-threat-engine", "fingerprint": "daa0de24a85003a80ca19bc0d7d7f74db62e08c69beb03de8fea6281b99e0948", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 25 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "js-console-log-prod", "owasp": null, "cwe_ids": ["CWE-532"], "languages": ["javascript", "typescript", "tsx", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348003+00:00", "triaged_in_corpus": 10, "observations_count": 1940833, "ai_coder_pattern_id": 102}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|daa0de24a85003a80ca19bc0d7d7f74db62e08c69beb03de8fea6281b99e0948", "aggregated_count": 25}}}, {"ruleId": "MINED044", "level": "none", "message": {"text": "[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed."}, "properties": {"repobilityId": 60834, "scanner": "repobility-threat-engine", "fingerprint": "633fde48a97853015a45c0fb93e4c93b6e5fe98d3b7f909439cd919c1fc0c416", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "js-console-log-prod", "owasp": null, "cwe_ids": ["CWE-532"], "languages": ["javascript", "typescript", "tsx", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348003+00:00", "triaged_in_corpus": 10, "observations_count": 1940833, "ai_coder_pattern_id": 102}, "scanner": "repobility-threat-engine", "correlation_key": "fp|633fde48a97853015a45c0fb93e4c93b6e5fe98d3b7f909439cd919c1fc0c416"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/buffers/buffer-transcode.js"}, "region": {"startLine": 10}}}]}, {"ruleId": "MINED044", "level": "none", "message": {"text": "[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed."}, "properties": {"repobilityId": 60833, "scanner": "repobility-threat-engine", "fingerprint": "163f2405485217713ab07592f2a169462defd5c254ec976b59e5e295ab286c3c", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "js-console-log-prod", "owasp": null, "cwe_ids": ["CWE-532"], "languages": ["javascript", "typescript", "tsx", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348003+00:00", "triaged_in_corpus": 10, "observations_count": 1940833, "ai_coder_pattern_id": 102}, "scanner": "repobility-threat-engine", "correlation_key": "fp|163f2405485217713ab07592f2a169462defd5c254ec976b59e5e295ab286c3c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/_test-double-benchmarker.js"}, "region": {"startLine": 31}}}]}, {"ruleId": "MINED044", "level": "none", "message": {"text": "[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed."}, "properties": {"repobilityId": 60832, "scanner": "repobility-threat-engine", "fingerprint": "01e7773a0b916349b13a40e3df985c9ec53fa837d072ef677faac1e63813d01f", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "js-console-log-prod", "owasp": null, "cwe_ids": ["CWE-532"], "languages": ["javascript", "typescript", "tsx", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348003+00:00", "triaged_in_corpus": 10, "observations_count": 1940833, "ai_coder_pattern_id": 102}, "scanner": "repobility-threat-engine", "correlation_key": "fp|01e7773a0b916349b13a40e3df985c9ec53fa837d072ef677faac1e63813d01f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/_cli.js"}, "region": {"startLine": 84}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `gcr.io/oss-fuzz-base/base-builder:v1` not pinned by digest: `FROM gcr.io/oss-fuzz-base/base-builder:v1` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 61082, "scanner": "repobility-supply-chain", "fingerprint": "06a8b06690823fa3d7f07a200ce4bcfeae771c7d7a86804a09decaa9d46f2e2f", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|06a8b06690823fa3d7f07a200ce4bcfeae771c7d7a86804a09decaa9d46f2e2f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/ngtcp2/ngtcp2/third-party/urlparse/.clusterfuzzlite/Dockerfile"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED118", "level": "error", "message": {"text": "[MINED118] Dockerfile FROM `ubuntu:22.04` not pinned by digest: `FROM ubuntu:22.04` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is potentially different. Production images should pin to `image@sha256:...` for reproducibility + supply-chain integrity."}, "properties": {"repobilityId": 61081, "scanner": "repobility-supply-chain", "fingerprint": "6a3fed41fc87d6ffb22498a22244c63ddf3d9daa6bbcbfee439b37716923a708", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "docker-from-unpinned", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["dockerfile"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|6a3fed41fc87d6ffb22498a22244c63ddf3d9daa6bbcbfee439b37716923a708"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/openssl/config/Dockerfile"}, "region": {"startLine": 1}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_disconnect: Test function `test_disconnect` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61069, "scanner": "repobility-ast-engine", "fingerprint": "fe5efc59a1c3c737a8f0175575c3427bb1627dee57009b94ce75af9a60c716d9", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|fe5efc59a1c3c737a8f0175575c3427bb1627dee57009b94ce75af9a60c716d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/test/debugging/wasm/gdb-server/connect.py"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_initial_breakpoint: Test function `test_initial_breakpoint` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61068, "scanner": "repobility-ast-engine", "fingerprint": "8e5764e3f91f5c92853ef8fcf6a47726b7b06d99db0bbbfde82f1a64fff32309", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8e5764e3f91f5c92853ef8fcf6a47726b7b06d99db0bbbfde82f1a64fff32309"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/test/debugging/wasm/gdb-server/breakpoints.py"}, "region": {"startLine": 14}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_dirs: Test function `test_dirs` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61067, "scanner": "repobility-ast-engine", "fingerprint": "70a1e3264f8cc99394e1437b9993c1701aaa41bdcd007fe8f7da8569671ddb28", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|70a1e3264f8cc99394e1437b9993c1701aaa41bdcd007fe8f7da8569671ddb28"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/test/mozilla/testcfg.py"}, "region": {"startLine": 69}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_dirs: Test function `test_dirs` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61066, "scanner": "repobility-ast-engine", "fingerprint": "fda64825d77c89671929231f9c50f80d8bfea68b2058b166de69bdcee57a1945", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|fda64825d77c89671929231f9c50f80d8bfea68b2058b166de69bdcee57a1945"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/test/fuzzilli/testcfg.py"}, "region": {"startLine": 19}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_dirs: Test function `test_dirs` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61065, "scanner": "repobility-ast-engine", "fingerprint": "6f146851c4f1741e6f10ab45513a1099b62e3d5481d264613f985c4122c8924f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|6f146851c4f1741e6f10ab45513a1099b62e3d5481d264613f985c4122c8924f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/test/fuzzer/testcfg.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_dirs: Test function `test_dirs` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61064, "scanner": "repobility-ast-engine", "fingerprint": "8225ad5e394d9f251def0eecf335cec63d2842f0d013d3176b1d4874e275652a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8225ad5e394d9f251def0eecf335cec63d2842f0d013d3176b1d4874e275652a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/test/test262/testcfg.py"}, "region": {"startLine": 124}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_any: Test function `test_any` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61051, "scanner": "repobility-ast-engine", "fingerprint": "cbdd644415514ebccbb0637ff32384bb5d1afe6425951776b06a1d0bcf40d363", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|cbdd644415514ebccbb0637ff32384bb5d1afe6425951776b06a1d0bcf40d363"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/lexer.py"}, "region": {"startLine": 260}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_in: Test function `test_in` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61046, "scanner": "repobility-ast-engine", "fingerprint": "bfb426aa898b32cb59e85650b39aa3807cae03ae434180a289a1338575d8975f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|bfb426aa898b32cb59e85650b39aa3807cae03ae434180a289a1338575d8975f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 134}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_escaped: Test function `test_escaped` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61045, "scanner": "repobility-ast-engine", "fingerprint": "5d45954fc7bbdc8904912a4bf8a4a94623cfd33c72a6ac8a550bfc1479476840", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5d45954fc7bbdc8904912a4bf8a4a94623cfd33c72a6ac8a550bfc1479476840"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 129}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_iterable: Test function `test_iterable` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61044, "scanner": "repobility-ast-engine", "fingerprint": "5a9cc594bf2b948c638fc36045f9572606eb17cdf27b281151d7d610543c41f6", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5a9cc594bf2b948c638fc36045f9572606eb17cdf27b281151d7d610543c41f6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 120}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_sameas: Test function `test_sameas` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61043, "scanner": "repobility-ast-engine", "fingerprint": "e47e82561f1ac9029af871286c5a344626d4814acc71c03ef836b237b0c139c6", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e47e82561f1ac9029af871286c5a344626d4814acc71c03ef836b237b0c139c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 107}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_sequence: Test function `test_sequence` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61042, "scanner": "repobility-ast-engine", "fingerprint": "222845cb55535485bcd8d55c1a1734c11bec7dec5b4a227dce2a4c7e4c0f00d5", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|222845cb55535485bcd8d55c1a1734c11bec7dec5b4a227dce2a4c7e4c0f00d5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 95}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_number: Test function `test_number` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61041, "scanner": "repobility-ast-engine", "fingerprint": "9fd44544de5e142536615273670094484078b2d238dd8e1d445a51c1786ed762", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9fd44544de5e142536615273670094484078b2d238dd8e1d445a51c1786ed762"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 90}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_mapping: Test function `test_mapping` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61040, "scanner": "repobility-ast-engine", "fingerprint": "07dfdcc5a18a3ade5bdb122b19c5716c24f2c9c5749dc213355bb7feb73b7e06", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|07dfdcc5a18a3ade5bdb122b19c5716c24f2c9c5749dc213355bb7feb73b7e06"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 82}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_string: Test function `test_string` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61039, "scanner": "repobility-ast-engine", "fingerprint": "0fd588e1e3595638d6a176f6846196baccbccadc3714cacc6f9f69f1026475c5", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|0fd588e1e3595638d6a176f6846196baccbccadc3714cacc6f9f69f1026475c5"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 77}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_upper: Test function `test_upper` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61038, "scanner": "repobility-ast-engine", "fingerprint": "a4e8c26d667e8b2deac28c02f721b891bd590f71ffcd94ed3b004fb96840cf8d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a4e8c26d667e8b2deac28c02f721b891bd590f71ffcd94ed3b004fb96840cf8d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 72}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_lower: Test function `test_lower` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61037, "scanner": "repobility-ast-engine", "fingerprint": "608ae02be04fd08256051ed48c965b7a0e1ed3841f7c09083b75dda5c3cca20b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|608ae02be04fd08256051ed48c965b7a0e1ed3841f7c09083b75dda5c3cca20b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 67}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_none: Test function `test_none` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61036, "scanner": "repobility-ast-engine", "fingerprint": "dabb497f42c869ce7a5514262821fb5a3a6a240e2f7169f11d8922f4f349ca3d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|dabb497f42c869ce7a5514262821fb5a3a6a240e2f7169f11d8922f4f349ca3d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 62}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_undefined: Test function `test_undefined` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61035, "scanner": "repobility-ast-engine", "fingerprint": "55532a69ef90bf5766becf144de9bf6655cc63cb638ba6d9c122e5f0e74da8db", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|55532a69ef90bf5766becf144de9bf6655cc63cb638ba6d9c122e5f0e74da8db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 57}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_defined: Test function `test_defined` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61034, "scanner": "repobility-ast-engine", "fingerprint": "c60381c7a2267995f3f148204a368bb2e75e4d04fc9ff73fb8dec623cdc78e76", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|c60381c7a2267995f3f148204a368bb2e75e4d04fc9ff73fb8dec623cdc78e76"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 40}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_divisibleby: Test function `test_divisibleby` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61033, "scanner": "repobility-ast-engine", "fingerprint": "0b66fbb688778ca07b6c17bcbaf974803d4c43e3cce96f235373260f6f090a11", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|0b66fbb688778ca07b6c17bcbaf974803d4c43e3cce96f235373260f6f090a11"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 35}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_even: Test function `test_even` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61032, "scanner": "repobility-ast-engine", "fingerprint": "4c68334cf66a022ba9a6de172a2820aa72653c8d5a0af817b21d2a307d5d1808", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4c68334cf66a022ba9a6de172a2820aa72653c8d5a0af817b21d2a307d5d1808"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_odd: Test function `test_odd` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61031, "scanner": "repobility-ast-engine", "fingerprint": "935cfb99dee22997ef493f1dcc1d03e38d2d5325ab12411ab9d066d229c3a8a7", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|935cfb99dee22997ef493f1dcc1d03e38d2d5325ab12411ab9d066d229c3a8a7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/tests.py"}, "region": {"startLine": 25}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_param: Test function `test_param` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61013, "scanner": "repobility-ast-engine", "fingerprint": "75b759d480aaa2f553f1216b4bcdcb016c8915b4b4edcd6bde1c541862805b82", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|75b759d480aaa2f553f1216b4bcdcb016c8915b4b4edcd6bde1c541862805b82"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/common_test.py"}, "region": {"startLine": 80}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "[MINED106] Phantom test coverage: test_platform_default: Test function `test_platform_default` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"repobilityId": 61012, "scanner": "repobility-ast-engine", "fingerprint": "4d86d46408ce1f8f0910a8c2b96ae777094941c996e040a4287eec0d67b09354", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4d86d46408ce1f8f0910a8c2b96ae777094941c996e040a4287eec0d67b09354"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/common_test.py"}, "region": {"startLine": 70}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.SeenOpenBrace` used but never assigned in __init__: Method `Update` of class `NestingState` reads `self.SeenOpenBrace`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60994, "scanner": "repobility-ast-engine", "fingerprint": "f71f2c1faf3afb00b39b9689c44331f2def7b0cd4d58b5357acf3d30bc45d95d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f71f2c1faf3afb00b39b9689c44331f2def7b0cd4d58b5357acf3d30bc45d95d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 3672}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self._UpdateConstructor` used but never assigned in __init__: Method `Update` of class `NestingState` reads `self._UpdateConstructor`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60993, "scanner": "repobility-ast-engine", "fingerprint": "495aff213024b8d2ca45e3dabcfa78c6ea69cdf02b52a5b328df7e033ceb02cf", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|495aff213024b8d2ca45e3dabcfa78c6ea69cdf02b52a5b328df7e033ceb02cf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 3643}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.InTemplateArgumentList` used but never assigned in __init__: Method `Update` of class `NestingState` reads `self.InTemplateArgumentList`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60992, "scanner": "repobility-ast-engine", "fingerprint": "c2b701f6baf9f0e871f185b22f71f50cff114d659b366a9a1ecc886b83d0432a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|c2b701f6baf9f0e871f185b22f71f50cff114d659b366a9a1ecc886b83d0432a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 3596}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self._UpdateNamesapce` used but never assigned in __init__: Method `Update` of class `NestingState` reads `self._UpdateNamesapce`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60991, "scanner": "repobility-ast-engine", "fingerprint": "44d35857fe2fd5c5e0fa9ff13b181e79b9a10f867ef5d38b64707f4163dd9d14", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|44d35857fe2fd5c5e0fa9ff13b181e79b9a10f867ef5d38b64707f4163dd9d14"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 3571}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self._UpdateConstructor` used but never assigned in __init__: Method `Update` of class `NestingState` reads `self._UpdateConstructor`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60990, "scanner": "repobility-ast-engine", "fingerprint": "71445a407810bf5fcf756e416ac69634d1b0e7cdeca0933422b8586b0405e5b9", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|71445a407810bf5fcf756e416ac69634d1b0e7cdeca0933422b8586b0405e5b9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 3645}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.SeenOpenBrace` used but never assigned in __init__: Method `Update` of class `NestingState` reads `self.SeenOpenBrace`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60989, "scanner": "repobility-ast-engine", "fingerprint": "549f89e568826dc9e6311b11d59e3266a79572ae4b5a482daafd01b3e22aa9e4", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|549f89e568826dc9e6311b11d59e3266a79572ae4b5a482daafd01b3e22aa9e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 3606}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self._CountOpenParentheses` used but never assigned in __init__: Method `Update` of class `NestingState` reads `self._CountOpenParentheses`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60988, "scanner": "repobility-ast-engine", "fingerprint": "d1839ec92a85607fae4804422c5a6c7f230d6eafd43df1b0ad195191177f2354", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d1839ec92a85607fae4804422c5a6c7f230d6eafd43df1b0ad195191177f2354"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 3566}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.UpdatePreprocessor` used but never assigned in __init__: Method `Update` of class `NestingState` reads `self.UpdatePreprocessor`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60987, "scanner": "repobility-ast-engine", "fingerprint": "93d6ca7a7ba4550ebf8c86b8be5a3a5a104843b3e4109d3425f8aa1d7a663917", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|93d6ca7a7ba4550ebf8c86b8be5a3a5a104843b3e4109d3425f8aa1d7a663917"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 3564}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.starting_linenum` used but never assigned in __init__: Method `CheckEnd` of class `_NamespaceInfo` reads `self.starting_linenum`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60986, "scanner": "repobility-ast-engine", "fingerprint": "ecf09ac2d654422a2ab255d46890d4cd56514cca0fb7c1b07c9d7e03a0ae6f40", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ecf09ac2d654422a2ab255d46890d4cd56514cca0fb7c1b07c9d7e03a0ae6f40"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 3191}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.starting_linenum` used but never assigned in __init__: Method `CheckEnd` of class `_ClassInfo` reads `self.starting_linenum`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60985, "scanner": "repobility-ast-engine", "fingerprint": "66a8789bb08789c142c1f8cf3d43e6bae6f7f2e397add5686c69417437e7e382", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|66a8789bb08789c142c1f8cf3d43e6bae6f7f2e397add5686c69417437e7e382"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 3121}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.Extension` used but never assigned in __init__: Method `IsSource` of class `FileInfo` reads `self.Extension`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60984, "scanner": "repobility-ast-engine", "fingerprint": "30e2195def2b7fa4423339fee3bcc171204b2951cbfbc18ad04096d100fed289", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|30e2195def2b7fa4423339fee3bcc171204b2951cbfbc18ad04096d100fed289"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1854}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.Split` used but never assigned in __init__: Method `NoExtension` of class `FileInfo` reads `self.Split`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60983, "scanner": "repobility-ast-engine", "fingerprint": "1035ec51e36d06630382fde8b0cf5f4e54d12e09f2a32f7a349d4fcb7324d2bc", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|1035ec51e36d06630382fde8b0cf5f4e54d12e09f2a32f7a349d4fcb7324d2bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1850}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.Split` used but never assigned in __init__: Method `Extension` of class `FileInfo` reads `self.Split`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60982, "scanner": "repobility-ast-engine", "fingerprint": "3c1d00a9a72eb7b3ed703e2462fd4cfb5a7f0e819977b30a9c21ff2f5bae6895", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3c1d00a9a72eb7b3ed703e2462fd4cfb5a7f0e819977b30a9c21ff2f5bae6895"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1846}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.Split` used but never assigned in __init__: Method `BaseName` of class `FileInfo` reads `self.Split`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60981, "scanner": "repobility-ast-engine", "fingerprint": "5917477ed70af2557983f54880e966a4ff82bb0b5518382832209f3131afefdf", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5917477ed70af2557983f54880e966a4ff82bb0b5518382832209f3131afefdf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1842}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.RepositoryName` used but never assigned in __init__: Method `Split` of class `FileInfo` reads `self.RepositoryName`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60980, "scanner": "repobility-ast-engine", "fingerprint": "884ddd3e0b1e6e0cc620c2c269d2c8fefc705aea70dcb1bafce904c9f10fab26", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|884ddd3e0b1e6e0cc620c2c269d2c8fefc705aea70dcb1bafce904c9f10fab26"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1836}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.FullName` used but never assigned in __init__: Method `RepositoryName` of class `FileInfo` reads `self.FullName`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60979, "scanner": "repobility-ast-engine", "fingerprint": "2595fbe9de703b11ad0bf84e02fb10478e3808947b7c40b6fe2ac13f6233fc8e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2595fbe9de703b11ad0bf84e02fb10478e3808947b7c40b6fe2ac13f6233fc8e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1771}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.PrintInfo` used but never assigned in __init__: Method `PrintErrorCounts` of class `_CppLintState` reads `self.PrintInfo`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60978, "scanner": "repobility-ast-engine", "fingerprint": "ca9e15f98b1c172ed0b9cffb33caa8e1bdfc127881cf5dfba6ac4bfd4fab4e0f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ca9e15f98b1c172ed0b9cffb33caa8e1bdfc127881cf5dfba6ac4bfd4fab4e0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1539}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.PrintInfo` used but never assigned in __init__: Method `PrintErrorCounts` of class `_CppLintState` reads `self.PrintInfo`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60977, "scanner": "repobility-ast-engine", "fingerprint": "8910d011c4d753299a84181b3e8b595da604f1a661aa1ec7bed8b56510abcd89", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8910d011c4d753299a84181b3e8b595da604f1a661aa1ec7bed8b56510abcd89"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1537}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.AddFilters` used but never assigned in __init__: Method `SetFilters` of class `_CppLintState` reads `self.AddFilters`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60976, "scanner": "repobility-ast-engine", "fingerprint": "22b2f15b84b3394180756eca38e262c831f22a9375acff5f5da0ed8aa3b9ef2d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|22b2f15b84b3394180756eca38e262c831f22a9375acff5f5da0ed8aa3b9ef2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1493}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.LineRange` used but never assigned in __init__: Method `StartBlockSuppression` of class `ErrorSuppressions` reads `self.LineRange`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60975, "scanner": "repobility-ast-engine", "fingerprint": "65c83298e4193bc7c33e35069048d367fae50a62ce913e834fd8474c581d9f24", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|65c83298e4193bc7c33e35069048d367fae50a62ce913e834fd8474c581d9f24"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1043}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self._AddSuppression` used but never assigned in __init__: Method `StartBlockSuppression` of class `ErrorSuppressions` reads `self._AddSuppression`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60974, "scanner": "repobility-ast-engine", "fingerprint": "004a49c64f9685d7613c4e26441d78090fca36cdd923e2bd2da932426167e654", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|004a49c64f9685d7613c4e26441d78090fca36cdd923e2bd2da932426167e654"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1044}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.LineRange` used but never assigned in __init__: Method `AddLineSuppression` of class `ErrorSuppressions` reads `self.LineRange`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60973, "scanner": "repobility-ast-engine", "fingerprint": "f8d14b851de4add26db88633b175a12bbbaf6356b24400d1157e5f85a75bdec4", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f8d14b851de4add26db88633b175a12bbbaf6356b24400d1157e5f85a75bdec4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1038}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self._AddSuppression` used but never assigned in __init__: Method `AddLineSuppression` of class `ErrorSuppressions` reads `self._AddSuppression`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60972, "scanner": "repobility-ast-engine", "fingerprint": "2c7ed187b9242ae434dc8dc7f229209377f73ffb634231c0a5f25eca57b78373", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2c7ed187b9242ae434dc8dc7f229209377f73ffb634231c0a5f25eca57b78373"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1038}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self.LineRange` used but never assigned in __init__: Method `AddGlobalSuppression` of class `ErrorSuppressions` reads `self.LineRange`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60971, "scanner": "repobility-ast-engine", "fingerprint": "8de7fd210184a9992aaa8ca78e854a3f580f014b595e0a9ed144b5a6b878326c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8de7fd210184a9992aaa8ca78e854a3f580f014b595e0a9ed144b5a6b878326c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1034}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "[MINED108] `self._AddSuppression` used but never assigned in __init__: Method `AddGlobalSuppression` of class `ErrorSuppressions` reads `self._AddSuppression`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"repobilityId": 60970, "scanner": "repobility-ast-engine", "fingerprint": "6312fb7f5bd7d90897296d2b2fad99f3790d00533996a3bf11ed4496a9824753", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|6312fb7f5bd7d90897296d2b2fad99f3790d00533996a3bf11ed4496a9824753"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/cpplint.py"}, "region": {"startLine": 1034}}}]}, {"ruleId": "DKR014", "level": "error", "message": {"text": "Dockerfile copies the entire context without .dockerignore"}, "properties": {"repobilityId": 60956, "scanner": "repobility-docker", "fingerprint": "862f97490eeb925a6ca6b955199f08e34d771d684dad8aac36539c0461b8df4f", "category": "docker", "severity": "high", "confidence": 0.92, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Broad context copy and missing .dockerignore were found together.", "evidence": {"rule_id": "DKR014", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|862f97490eeb925a6ca6b955199f08e34d771d684dad8aac36539c0461b8df4f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/ngtcp2/ngtcp2/third-party/urlparse/.clusterfuzzlite/Dockerfile"}, "region": {"startLine": 3}}}]}, {"ruleId": "MINED017", "level": "error", "message": {"text": "[MINED017] C System Call: system() invokes shell. command injection if any arg is dynamic."}, "properties": {"repobilityId": 60892, "scanner": "repobility-threat-engine", "fingerprint": "df681a8f1683f140a5a80f81942ccdbce7d3a1230dfc9131316c7aacd93b22ba", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-system-call", "owasp": null, "cwe_ids": ["CWE-78"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347937+00:00", "triaged_in_corpus": 15, "observations_count": 77748, "ai_coder_pattern_id": 132}, "scanner": "repobility-threat-engine", "correlation_key": "fp|df681a8f1683f140a5a80f81942ccdbce7d3a1230dfc9131316c7aacd93b22ba"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/LIEF/include/LIEF/PE/CodePage.hpp"}, "region": {"startLine": 125}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 60868, "scanner": "repobility-threat-engine", "fingerprint": "584d8dd1f1b401adf3e020f513efccb38ab7a9151015b8c684c873886b6de677", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|584d8dd1f1b401adf3e020f513efccb38ab7a9151015b8c684c873886b6de677"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/crypto/hash-stream-throughput.js"}, "region": {"startLine": 9}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 60867, "scanner": "repobility-threat-engine", "fingerprint": "9863f9c23f5195ecb227da6c16f866d2ad93c4580f3e87c46e767af2c7d7c5ab", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|9863f9c23f5195ecb227da6c16f866d2ad93c4580f3e87c46e767af2c7d7c5ab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/crypto/hash-stream-creation.js"}, "region": {"startLine": 9}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 60866, "scanner": "repobility-threat-engine", "fingerprint": "4c40b19d22903aa5eddbce264ef7ca484af8939559a01c2dcfc46351a14df42b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|4c40b19d22903aa5eddbce264ef7ca484af8939559a01c2dcfc46351a14df42b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/crypto/create-hash.js"}, "region": {"startLine": 18}}}]}, {"ruleId": "SEC040", "level": "error", "message": {"text": "[SEC040] innerHTML XSS \u2014 template literal with server-supplied data: Setting .innerHTML with a template literal that interpolates server-supplied or user-supplied data is the canonical stored/reflected XSS vector. The browser parses the HTML and executes any <script> or event-handler attributes in the data. CWE-79. Especially dangerous when the data comes from a CV parser, profile field, or any user-input pipeline."}, "properties": {"repobilityId": 60859, "scanner": "repobility-threat-engine", "fingerprint": "4f542a4a5a1a0476462f049233bc62c1398e0880e58887f6af3069d72f730753", "category": "xss", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "map(() => `some header value ${i}", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC040", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|4f542a4a5a1a0476462f049233bc62c1398e0880e58887f6af3069d72f730753"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/http/headers.js"}, "region": {"startLine": 34}}}]}, {"ruleId": "SEC040", "level": "error", "message": {"text": "[SEC040] innerHTML XSS \u2014 template literal with server-supplied data: Setting .innerHTML with a template literal that interpolates server-supplied or user-supplied data is the canonical stored/reflected XSS vector. The browser parses the HTML and executes any <script> or event-handler attributes in the data. CWE-79. Especially dangerous when the data comes from a CV parser, profile field, or any user-input pipeline."}, "properties": {"repobilityId": 60858, "scanner": "repobility-threat-engine", "fingerprint": "9101194331bef86f477c843ff399838a65911bb4fb0f125e1b81aab439a946f4", "category": "xss", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "map((_, i) => `str_${i}", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC040", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|9101194331bef86f477c843ff399838a65911bb4fb0f125e1b81aab439a946f4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/assert/deepequal-set.js"}, "region": {"startLine": 57}}}]}, {"ruleId": "MINED014", "level": "error", "message": {"text": "[MINED014] Disabled Tls Verify: verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in Go."}, "properties": {"repobilityId": 60856, "scanner": "repobility-threat-engine", "fingerprint": "ea9a61a8218150cf84721b8bfd419fc89408dfaf41c8822a1af55cf0cdb6a5a2", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "disabled-tls-verify", "owasp": "A02:2021", "cwe_ids": ["CWE-295"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347930+00:00", "triaged_in_corpus": 15, "observations_count": 86916, "ai_coder_pattern_id": 16}, "scanner": "repobility-threat-engine", "correlation_key": "fp|ea9a61a8218150cf84721b8bfd419fc89408dfaf41c8822a1af55cf0cdb6a5a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/tls/throughput-c2s.js"}, "region": {"startLine": 43}}}]}, {"ruleId": "MINED014", "level": "error", "message": {"text": "[MINED014] Disabled Tls Verify: verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in Go."}, "properties": {"repobilityId": 60855, "scanner": "repobility-threat-engine", "fingerprint": "071233113ec23ea8811c4faa444b88dec6a76b02c7d697aa0bfe0767a53c6c9f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "disabled-tls-verify", "owasp": "A02:2021", "cwe_ids": ["CWE-295"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347930+00:00", "triaged_in_corpus": 15, "observations_count": 86916, "ai_coder_pattern_id": 16}, "scanner": "repobility-threat-engine", "correlation_key": "fp|071233113ec23ea8811c4faa444b88dec6a76b02c7d697aa0bfe0767a53c6c9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/tls/secure-pair.js"}, "region": {"startLine": 41}}}]}, {"ruleId": "MINED014", "level": "error", "message": {"text": "[MINED014] Disabled Tls Verify: verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in Go."}, "properties": {"repobilityId": 60854, "scanner": "repobility-threat-engine", "fingerprint": "6f08a3bc1d50d5c406d035be62dd32c158e1af6bd8b948e20ebfadbf216df01d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "disabled-tls-verify", "owasp": "A02:2021", "cwe_ids": ["CWE-295"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347930+00:00", "triaged_in_corpus": 15, "observations_count": 86916, "ai_coder_pattern_id": 16}, "scanner": "repobility-threat-engine", "correlation_key": "fp|6f08a3bc1d50d5c406d035be62dd32c158e1af6bd8b948e20ebfadbf216df01d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/_test-double-benchmarker.js"}, "region": {"startLine": 10}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 60852, "scanner": "repobility-threat-engine", "fingerprint": "6a3a168bac510a760f009617a6236739884c56e8c452953a93997d5dd92b539a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "bob.update(enc);", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|6a3a168bac510a760f009617a6236739884c56e8c452953a93997d5dd92b539a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/crypto/aes-gcm-throughput.js"}, "region": {"startLine": 34}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 60851, "scanner": "repobility-threat-engine", "fingerprint": "7a58bfa70c0cac05e3bd65f9a596fb6c1cb149a47b4d678ba72637ee0b6adbab", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "transactions.delete(asyncId);", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|7a58bfa70c0cac05e3bd65f9a596fb6c1cb149a47b4d678ba72637ee0b6adbab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/async_hooks/async-resource-vs-destroy.js"}, "region": {"startLine": 92}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 60850, "scanner": "repobility-threat-engine", "fingerprint": "90f627292fd09d681a4cd624bc9d61767ee3fb021a4227eef36ff09722ec850e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "client.destroy();", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|90f627292fd09d681a4cd624bc9d61767ee3fb021a4227eef36ff09722ec850e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/_test-double-benchmarker.js"}, "region": {"startLine": 33}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 60844, "scanner": "repobility-threat-engine", "fingerprint": "306e15f3ecf890e3c3c4f0303dbab8d2cdc65fa67ea27ddb49b3b3851e13f813", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "URL(c", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|306e15f3ecf890e3c3c4f0303dbab8d2cdc65fa67ea27ddb49b3b3851e13f813"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/esm/esm-legacyMainResolve.js"}, "region": {"startLine": 40}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 60843, "scanner": "repobility-threat-engine", "fingerprint": "3cfdf59b68c29201424e43b35683e446e69d26c56d4da92d697f6a358237504d", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "URL(b", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|3cfdf59b68c29201424e43b35683e446e69d26c56d4da92d697f6a358237504d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/blob/resolveObjectURL.js"}, "region": {"startLine": 14}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 60842, "scanner": "repobility-threat-engine", "fingerprint": "f1f5c7bcd464544eca90a6b3d357a5c57bbf74107325ab79617c9551ae53913c", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "http.get(u", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|f1f5c7bcd464544eca90a6b3d357a5c57bbf74107325ab79617c9551ae53913c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/_test-double-benchmarker.js"}, "region": {"startLine": 43}}}]}, {"ruleId": "SEC085", "level": "error", "message": {"text": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0)."}, "properties": {"repobilityId": 60841, "scanner": "repobility-threat-engine", "fingerprint": "dc51946615e1bef5257c639ef8f9e7dbc89c94058abfca5035867432039cad91", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "exec(cmd", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC085", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|dc51946615e1bef5257c639ef8f9e7dbc89c94058abfca5035867432039cad91"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/child_process/child-process-exec-stdout.js"}, "region": {"startLine": 20}}}]}, {"ruleId": "SEC085", "level": "error", "message": {"text": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0)."}, "properties": {"repobilityId": 60840, "scanner": "repobility-threat-engine", "fingerprint": "a80cce3b7288195ec43d918fb6db29bf0d3ce2d5e38286700d3823cead741830", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "exec(output", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC085", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|a80cce3b7288195ec43d918fb6db29bf0d3ce2d5e38286700d3823cead741830"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/_http-benchmarkers.js"}, "region": {"startLine": 186}}}]}, {"ruleId": "MINED036", "level": "error", "message": {"text": "[MINED036] Python Os System Call: os.system() invokes shell with no escaping."}, "properties": {"repobilityId": 60831, "scanner": "repobility-threat-engine", "fingerprint": "780db82352989e8b28b0c29d22af743b802662ac3ac0037cc548e7f4e64fbd3a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-os-system-call", "owasp": null, "cwe_ids": ["CWE-78"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347982+00:00", "triaged_in_corpus": 15, "observations_count": 2221, "ai_coder_pattern_id": 117}, "scanner": "repobility-threat-engine", "correlation_key": "fp|780db82352989e8b28b0c29d22af743b802662ac3ac0037cc548e7f4e64fbd3a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "android_configure.py"}, "region": {"startLine": 10}}}]}, {"ruleId": "SEC005", "level": "error", "message": {"text": "[SEC005] Command Injection Risk: Unsafe shell execution or eval of user input."}, "properties": {"repobilityId": 60829, "scanner": "repobility-threat-engine", "fingerprint": "9bb5c20b08afb15a057d357875ca2d203334e10816df01bd2d0bcb95087f41a3", "category": "injection", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Command source appears controllable (config/plugin/argv/user input)", "evidence": {"match": "os.system(\"./configure --dest-cpu=\" + DEST_CPU +", "reason": "Command source appears controllable (config/plugin/argv/user input)", "rule_id": "SEC005", "scanner": "repobility-threat-engine", "confidence": 0.8, "correlation_key": "code|injection|android_configure.py|77|sec005"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "android_configure.py"}, "region": {"startLine": 77}}}]}, {"ruleId": "MINED116", "level": "error", "message": {"text": "[MINED116] Workflow uses `secrets.GH_USER_TOKEN` on a `pull_request` trigger: This workflow triggers on `pull_request`, which checks out the FORK's code. Referencing `${ secrets.GH_USER_TOKEN }` lets a PR from any fork exfiltrate the secret (modify a script, log the value, etc.). Use `pull_request_target` ONLY with strict checkout discipline (no fork code in the trusted context)."}, "properties": {"repobilityId": 61087, "scanner": "repobility-supply-chain", "fingerprint": "34144a12f942ea001b6a5f0a040bdaa6944ab5b7ac0a4b16381de9f3fc594170", "category": "dependency", "severity": "critical", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-pull-request-secrets", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|34144a12f942ea001b6a5f0a040bdaa6944ab5b7ac0a4b16381de9f3fc594170"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/linters.yml"}, "region": {"startLine": 282}}}]}, {"ruleId": "MINED116", "level": "error", "message": {"text": "[MINED116] Workflow uses `secrets.CACHIX_AUTH_TOKEN` on a `pull_request` trigger: This workflow triggers on `pull_request`, which checks out the FORK's code. Referencing `${ secrets.CACHIX_AUTH_TOKEN }` lets a PR from any fork exfiltrate the secret (modify a script, log the value, etc.). Use `pull_request_target` ONLY with strict checkout discipline (no fork code in the trusted context)."}, "properties": {"repobilityId": 61086, "scanner": "repobility-supply-chain", "fingerprint": "7fa593b6b9d7d415106a05f9369b899b2207c5d383f19ef47255d0bab310f910", "category": "dependency", "severity": "critical", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-pull-request-secrets", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|7fa593b6b9d7d415106a05f9369b899b2207c5d383f19ef47255d0bab310f910"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/test-shared.yml"}, "region": {"startLine": 269}}}]}, {"ruleId": "MINED116", "level": "error", "message": {"text": "[MINED116] Workflow uses `secrets.CACHIX_AUTH_TOKEN` on a `pull_request` trigger: This workflow triggers on `pull_request`, which checks out the FORK's code. Referencing `${ secrets.CACHIX_AUTH_TOKEN }` lets a PR from any fork exfiltrate the secret (modify a script, log the value, etc.). Use `pull_request_target` ONLY with strict checkout discipline (no fork code in the trusted context)."}, "properties": {"repobilityId": 61085, "scanner": "repobility-supply-chain", "fingerprint": "87de331fdf7264a7a44f64a0feeeb2fbdcf85c55f92d20e716c5fd05e59aca6d", "category": "dependency", "severity": "critical", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-pull-request-secrets", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|87de331fdf7264a7a44f64a0feeeb2fbdcf85c55f92d20e716c5fd05e59aca6d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/test-shared.yml"}, "region": {"startLine": 210}}}]}, {"ruleId": "MINED116", "level": "error", "message": {"text": "[MINED116] Workflow uses `secrets.CACHIX_AUTH_TOKEN` on a `pull_request` trigger: This workflow triggers on `pull_request`, which checks out the FORK's code. Referencing `${ secrets.CACHIX_AUTH_TOKEN }` lets a PR from any fork exfiltrate the secret (modify a script, log the value, etc.). Use `pull_request_target` ONLY with strict checkout discipline (no fork code in the trusted context)."}, "properties": {"repobilityId": 61084, "scanner": "repobility-supply-chain", "fingerprint": "59b2aaf111bd5e9e2d8433f0a8d6ae3c973a0c9eb5ac15422525f886dd980771", "category": "dependency", "severity": "critical", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-pull-request-secrets", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|59b2aaf111bd5e9e2d8433f0a8d6ae3c973a0c9eb5ac15422525f886dd980771"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/test-shared.yml"}, "region": {"startLine": 177}}}]}, {"ruleId": "MINED116", "level": "error", "message": {"text": "[MINED116] Workflow uses `secrets.CACHIX_AUTH_TOKEN` on a `pull_request` trigger: This workflow triggers on `pull_request`, which checks out the FORK's code. Referencing `${ secrets.CACHIX_AUTH_TOKEN }` lets a PR from any fork exfiltrate the secret (modify a script, log the value, etc.). Use `pull_request_target` ONLY with strict checkout discipline (no fork code in the trusted context)."}, "properties": {"repobilityId": 61083, "scanner": "repobility-supply-chain", "fingerprint": "c6334ccb7a9e397501abb247a51e85d9e4534c96da340ec512de249b6f028539", "category": "dependency", "severity": "critical", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-pull-request-secrets", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|c6334ccb7a9e397501abb247a51e85d9e4534c96da340ec512de249b6f028539"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/test-shared.yml"}, "region": {"startLine": 164}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `re` used but not imported: The file uses `re.something(...)` but never imports `re`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61078, "scanner": "repobility-ast-engine", "fingerprint": "bc8a383b67b811c9d9cb287d32ce12a17c26bf13f52ea691526b8425abfb9fec", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|bc8a383b67b811c9d9cb287d32ce12a17c26bf13f52ea691526b8425abfb9fec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/release/test_scripts.py"}, "region": {"startLine": 371}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `re` used but not imported: The file uses `re.something(...)` but never imports `re`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61077, "scanner": "repobility-ast-engine", "fingerprint": "7faa95ebac0bfa7c35c368e960c7e020081caebc7ed478d46ed55ac1bd28cb30", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|7faa95ebac0bfa7c35c368e960c7e020081caebc7ed478d46ed55ac1bd28cb30"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/release/merge_to_branch.py"}, "region": {"startLine": 135}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` but never imports `os`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61076, "scanner": "repobility-ast-engine", "fingerprint": "376cc003466dd473e0dbb7cb6c3e907261ca34dc9988ebdbbab09ad4ee9c4c52", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|376cc003466dd473e0dbb7cb6c3e907261ca34dc9988ebdbbab09ad4ee9c4c52"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/release/merge_to_branch.py"}, "region": {"startLine": 42}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `re` used but not imported: The file uses `re.something(...)` but never imports `re`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61075, "scanner": "repobility-ast-engine", "fingerprint": "b1d251b825cd190aedd896f97c8cb75b0271a45e6ba0f636c0656250e4f4686d", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b1d251b825cd190aedd896f97c8cb75b0271a45e6ba0f636c0656250e4f4686d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/release/create_release.py"}, "region": {"startLine": 121}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `re` used but not imported: The file uses `re.something(...)` but never imports `re`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61074, "scanner": "repobility-ast-engine", "fingerprint": "be382a837bc22eea233cc26107abb187e8c2f9b9069774d312313f11a76eff39", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|be382a837bc22eea233cc26107abb187e8c2f9b9069774d312313f11a76eff39"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/release/roll_merge.py"}, "region": {"startLine": 124}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `os` used but not imported: The file uses `os.something(...)` but never imports `os`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61073, "scanner": "repobility-ast-engine", "fingerprint": "ef75741673541c4ae72d533d09299ead3cb2d91a315cf96b666d0b849982e649", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ef75741673541c4ae72d533d09299ead3cb2d91a315cf96b666d0b849982e649"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/release/roll_merge.py"}, "region": {"startLine": 41}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `platform` used but not imported: The file uses `platform.something(...)` but never imports `platform`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61061, "scanner": "repobility-ast-engine", "fingerprint": "d9bc4171845011f08aa67074f56b5cf7d32dd5f623937f0aedfc03d38cc4b83d", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d9bc4171845011f08aa67074f56b5cf7d32dd5f623937f0aedfc03d38cc4b83d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/run_perf.py"}, "region": {"startLine": 1334}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `warnings` used but not imported: The file uses `warnings.something(...)` but never imports `warnings`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61059, "scanner": "repobility-ast-engine", "fingerprint": "9fa264f3c3e7e4079bfa0c81f45544e40326837df7cc58d6fb27e5fe6a02f6fb", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9fa264f3c3e7e4079bfa0c81f45544e40326837df7cc58d6fb27e5fe6a02f6fb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/run-clang-tidy.py"}, "region": {"startLine": 163}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61058, "scanner": "repobility-ast-engine", "fingerprint": "f407093d21244266155df67f8ac81a5f26861c0ab2b4f65c084654e314ee6d2d", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f407093d21244266155df67f8ac81a5f26861c0ab2b4f65c084654e314ee6d2d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/run-clang-tidy.py"}, "region": {"startLine": 216}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61057, "scanner": "repobility-ast-engine", "fingerprint": "d9054b82f8686833c5a605b2489e11bdd02cd743c80c4eefa36dc3492fe4401f", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d9054b82f8686833c5a605b2489e11bdd02cd743c80c4eefa36dc3492fe4401f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/grokdump.py"}, "region": {"startLine": 1089}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `array` used but not imported: The file uses `array.something(...)` but never imports `array`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61056, "scanner": "repobility-ast-engine", "fingerprint": "d855b38a4a11ee191bf79755de1616ba6dd3d5516bfa1890bcba9f518627a5ce", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d855b38a4a11ee191bf79755de1616ba6dd3d5516bfa1890bcba9f518627a5ce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/v8/tools/grokdump.py"}, "region": {"startLine": 1612}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `platform` used but not imported: The file uses `platform.something(...)` but never imports `platform`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61055, "scanner": "repobility-ast-engine", "fingerprint": "1e8f7066b7018a8513815696c7158282eea53d3d9ed3f511d4eb4e80576c0172", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|1e8f7066b7018a8513815696c7158282eea53d3d9ed3f511d4eb4e80576c0172"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/libffi/generate-darwin-source-and-headers.py"}, "region": {"startLine": 176}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `queue` used but not imported: The file uses `queue.something(...)` but never imports `queue`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61052, "scanner": "repobility-ast-engine", "fingerprint": "a55cd41a8a5091ba109d6b5f93d813149e6d515166a2a9db52a7ad535fd70c62", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a55cd41a8a5091ba109d6b5f93d813149e6d515166a2a9db52a7ad535fd70c62"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "deps/inspector_protocol/code_generator.py"}, "region": {"startLine": 476}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61050, "scanner": "repobility-ast-engine", "fingerprint": "a13e90b710ebace16ea3f9c3173a10d8819355dc35ab40b6b5d23e180aeda71f", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a13e90b710ebace16ea3f9c3173a10d8819355dc35ab40b6b5d23e180aeda71f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/ext.py"}, "region": {"startLine": 323}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `traceback` used but not imported: The file uses `traceback.something(...)` but never imports `traceback`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61024, "scanner": "repobility-ast-engine", "fingerprint": "afd7e62f4133d85c72d9d172f88579086d68041cc6a1ef3ff7a79157a50541ee", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|afd7e62f4133d85c72d9d172f88579086d68041cc6a1ef3ff7a79157a50541ee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/environment.py"}, "region": {"startLine": 779}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `ast` used but not imported: The file uses `ast.something(...)` but never imports `ast`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61023, "scanner": "repobility-ast-engine", "fingerprint": "89e1cfde64e11ff8eedd3d24fc34129a0a4d6568dd7fd8eca0ca5696dd2cd07a", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|89e1cfde64e11ff8eedd3d24fc34129a0a4d6568dd7fd8eca0ca5696dd2cd07a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/inspector_protocol/jinja2/meta.py"}, "region": {"startLine": 55}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `copy` used but not imported: The file uses `copy.something(...)` but never imports `copy`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61019, "scanner": "repobility-ast-engine", "fingerprint": "52b316d42f86d34a02a892e5237fa04084abdfdfb85a96e2be4640d7b13d23a9", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|52b316d42f86d34a02a892e5237fa04084abdfdfb85a96e2be4640d7b13d23a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/generator/cmake.py"}, "region": {"startLine": 505}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61017, "scanner": "repobility-ast-engine", "fingerprint": "0973165c5438364019f6b5e0f6fad5bf3245da1ac4f751726c66b65c8e191d47", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|0973165c5438364019f6b5e0f6fad5bf3245da1ac4f751726c66b65c8e191d47"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/generator/make.py"}, "region": {"startLine": 739}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `stat` used but not imported: The file uses `stat.something(...)` but never imports `stat`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61015, "scanner": "repobility-ast-engine", "fingerprint": "971f8964630db6e94f49621e64e076a778f729d64b37ac26fc9ba0e1094c857a", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|971f8964630db6e94f49621e64e076a778f729d64b37ac26fc9ba0e1094c857a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/generator/ninja.py"}, "region": {"startLine": 2101}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61008, "scanner": "repobility-ast-engine", "fingerprint": "f3b3ae9ae2db270fbb4a708659d23851b09334c9a602af0dd545d4fa3653340e", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f3b3ae9ae2db270fbb4a708659d23851b09334c9a602af0dd545d4fa3653340e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/ninja_syntax.py"}, "region": {"startLine": 174}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61007, "scanner": "repobility-ast-engine", "fingerprint": "0f5f47e53de61a2fbce61b76d68a809c126ef6444dbec5e1aca49c1ee1fc17f2", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|0f5f47e53de61a2fbce61b76d68a809c126ef6444dbec5e1aca49c1ee1fc17f2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/msvs_emulation.py"}, "region": {"startLine": 1096}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61005, "scanner": "repobility-ast-engine", "fingerprint": "5ca85be34c593c9b827bb278a3c6b90fd68bc5bfdd95e26e2e3c1349ca56cbab", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5ca85be34c593c9b827bb278a3c6b90fd68bc5bfdd95e26e2e3c1349ca56cbab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/input.py"}, "region": {"startLine": 708}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 61003, "scanner": "repobility-ast-engine", "fingerprint": "f846b1ad638652501d048e90c9d6ec75dafadaacf60ce77b807c08ee4fafd459", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f846b1ad638652501d048e90c9d6ec75dafadaacf60ce77b807c08ee4fafd459"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/xcode_emulation.py"}, "region": {"startLine": 1840}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 60999, "scanner": "repobility-ast-engine", "fingerprint": "14d2fa1a6b77d478554fb2b7acd6c4858f749a07fb889149e9cbee750c98321f", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|14d2fa1a6b77d478554fb2b7acd6c4858f749a07fb889149e9cbee750c98321f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/gyp/__init__.py"}, "region": {"startLine": 32}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes."}, "properties": {"repobilityId": 60998, "scanner": "repobility-ast-engine", "fingerprint": "ff5344c29b31c1854234a9295a03df14087ef58fc4d56730932a8f4779a02325", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ff5344c29b31c1854234a9295a03df14087ef58fc4d56730932a8f4779a02325"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "tools/gyp/pylib/packaging/tags.py"}, "region": {"startLine": 124}}}]}, {"ruleId": "MINED024", "level": "error", "message": {"text": "[MINED024] Js Eval Usage: eval() executes arbitrary code. Code injection risk."}, "properties": {"repobilityId": 60872, "scanner": "repobility-threat-engine", "fingerprint": "372f4f3aceae3f78e6f2d3b63878123c0f5250b1136943d2bede940e6a2320d0", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "js-eval-usage", "owasp": null, "cwe_ids": ["CWE-95"], "languages": ["javascript", "typescript", "tsx", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347954+00:00", "triaged_in_corpus": 20, "observations_count": 35589, "ai_coder_pattern_id": 103}, "scanner": "repobility-threat-engine", "correlation_key": "fp|372f4f3aceae3f78e6f2d3b63878123c0f5250b1136943d2bede940e6a2320d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/source_map/source-map-cache.js"}, "region": {"startLine": 47}}}]}, {"ruleId": "MINED024", "level": "error", "message": {"text": "[MINED024] Js Eval Usage: eval() executes arbitrary code. Code injection risk."}, "properties": {"repobilityId": 60871, "scanner": "repobility-threat-engine", "fingerprint": "14c32b6a75dfb6273749858f3786870511a62131977cbe7152a4c85c61fac220", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "js-eval-usage", "owasp": null, "cwe_ids": ["CWE-95"], "languages": ["javascript", "typescript", "tsx", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347954+00:00", "triaged_in_corpus": 20, "observations_count": 35589, "ai_coder_pattern_id": 103}, "scanner": "repobility-threat-engine", "correlation_key": "fp|14c32b6a75dfb6273749858f3786870511a62131977cbe7152a4c85c61fac220"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/es/eval.js"}, "region": {"startLine": 28}}}]}, {"ruleId": "MINED024", "level": "error", "message": {"text": "[MINED024] Js Eval Usage: eval() executes arbitrary code. Code injection risk."}, "properties": {"repobilityId": 60870, "scanner": "repobility-threat-engine", "fingerprint": "e9e8857e6a3463885eff9833ec4f744416073e2b5c29d838e0a9a979618870db", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "js-eval-usage", "owasp": null, "cwe_ids": ["CWE-95"], "languages": ["javascript", "typescript", "tsx", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347954+00:00", "triaged_in_corpus": 20, "observations_count": 35589, "ai_coder_pattern_id": 103}, "scanner": "repobility-threat-engine", "correlation_key": "fp|e9e8857e6a3463885eff9833ec4f744416073e2b5c29d838e0a9a979618870db"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/error/determine-specific-type.js"}, "region": {"startLine": 52}}}]}, {"ruleId": "MINED022", "level": "error", "message": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "properties": {"repobilityId": 60863, "scanner": "repobility-threat-engine", "fingerprint": "9efb5c3ebeaaf7459ddbfaf3bdb4da18a3748171149b87835598ce7261326000", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "correlation_key": "fp|9efb5c3ebeaaf7459ddbfaf3bdb4da18a3748171149b87835598ce7261326000"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/scatter.R"}, "region": {"startLine": 44}}}]}, {"ruleId": "MINED022", "level": "error", "message": {"text": "[MINED022] C Strcpy: strcpy/strcat dont bounds-check; use strncpy or snprintf."}, "properties": {"repobilityId": 60862, "scanner": "repobility-threat-engine", "fingerprint": "a0f4228b31166235c72f105cd5611c117cc076d66ce413777e36a60b3f47f4d6", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "c-strcpy", "owasp": null, "cwe_ids": ["CWE-120"], "languages": ["c", "cpp"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347949+00:00", "triaged_in_corpus": 20, "observations_count": 39114, "ai_coder_pattern_id": 130}, "scanner": "repobility-threat-engine", "correlation_key": "fp|a0f4228b31166235c72f105cd5611c117cc076d66ce413777e36a60b3f47f4d6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/compare.R"}, "region": {"startLine": 50}}}]}, {"ruleId": "MINED035", "level": "error", "message": {"text": "[MINED035] Js New Function: new Function(...) compiles strings to functions."}, "properties": {"repobilityId": 60861, "scanner": "repobility-threat-engine", "fingerprint": "cedf182163ec4f4d73b05d22eb42f4888c09f27d8391d2283073e1dc590706e7", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "js-new-function", "owasp": null, "cwe_ids": ["CWE-95"], "languages": ["javascript", "typescript", "tsx", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347980+00:00", "triaged_in_corpus": 20, "observations_count": 2547, "ai_coder_pattern_id": 104}, "scanner": "repobility-threat-engine", "correlation_key": "fp|cedf182163ec4f4d73b05d22eb42f4888c09f27d8391d2283073e1dc590706e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/buffers/buffer-swap.js"}, "region": {"startLine": 74}}}]}, {"ruleId": "MINED035", "level": "error", "message": {"text": "[MINED035] Js New Function: new Function(...) compiles strings to functions."}, "properties": {"repobilityId": 60860, "scanner": "repobility-threat-engine", "fingerprint": "f0c77e434b632aea5fdd17c80b54b1281f57b807d68db0df36cafeb75be98dbb", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "js-new-function", "owasp": null, "cwe_ids": ["CWE-95"], "languages": ["javascript", "typescript", "tsx", "jsx"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347980+00:00", "triaged_in_corpus": 20, "observations_count": 2547, "ai_coder_pattern_id": 104}, "scanner": "repobility-threat-engine", "correlation_key": "fp|f0c77e434b632aea5fdd17c80b54b1281f57b807d68db0df36cafeb75be98dbb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/buffers/buffer-fill.js"}, "region": {"startLine": 24}}}]}, {"ruleId": "SEC084", "level": "error", "message": {"text": "[SEC084] JS: require() with non-literal: require(<variable>) loads arbitrary modules \u2014 equivalent to eval at module scope. Ported from eslint-plugin-security detect-non-literal-require (Apache-2.0)."}, "properties": {"repobilityId": 60848, "scanner": "repobility-threat-engine", "fingerprint": "86dd65cc08e4cb954dbc233970759b8474175f7b880c2bfce2e3fcff484067a1", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "require(modPath", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC084", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|86dd65cc08e4cb954dbc233970759b8474175f7b880c2bfce2e3fcff484067a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/es/error-stack.js"}, "region": {"startLine": 19}}}]}, {"ruleId": "SEC084", "level": "error", "message": {"text": "[SEC084] JS: require() with non-literal: require(<variable>) loads arbitrary modules \u2014 equivalent to eval at module scope. Ported from eslint-plugin-security detect-non-literal-require (Apache-2.0)."}, "properties": {"repobilityId": 60847, "scanner": "repobility-threat-engine", "fingerprint": "459020db9343d9bea969d59afbc8b7f3cdbefb34c6f907ff8c93e03b2cb30f2c", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "require(v", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC084", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|459020db9343d9bea969d59afbc8b7f3cdbefb34c6f907ff8c93e03b2cb30f2c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/crypto/get-ciphers.js"}, "region": {"startLine": 11}}}]}, {"ruleId": "SEC084", "level": "error", "message": {"text": "[SEC084] JS: require() with non-literal: require(<variable>) loads arbitrary modules \u2014 equivalent to eval at module scope. Ported from eslint-plugin-security detect-non-literal-require (Apache-2.0)."}, "properties": {"repobilityId": 60846, "scanner": "repobility-threat-engine", "fingerprint": "de5d39cf3ddcbf0e8d71aa9edf8435f799e473c03de9863684ef4545b9d4d858", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "require(myModule", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC084", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|de5d39cf3ddcbf0e8d71aa9edf8435f799e473c03de9863684ef4545b9d4d858"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "benchmark/_test-double-benchmarker.js"}, "region": {"startLine": 13}}}]}]}]}