{"version": "2.1.0", "$schema": "https://json.schemastore.org/sarif-2.1.0.json", "runs": [{"tool": {"driver": {"name": "Repobility", "informationUri": "https://repobility.com", "rules": [{"id": "WEB003", "name": "Public web service has no security.txt", "shortDescription": {"text": "Public web service has no security.txt"}, "fullDescription": {"text": "security.txt gives researchers and customers a safe disclosure channel. Public web apps and APIs should publish it under /.well-known/security.txt."}, "properties": {"scanner": "repobility-web-presence", "category": "quality", "severity": "medium", "confidence": 0.78, "cwe": "", "owasp": ""}}, {"id": "GHSA-4gg8-gxpx-9rph", "name": "uv: GHSA-4gg8-gxpx-9rph", "shortDescription": {"text": "uv: GHSA-4gg8-gxpx-9rph"}, "fullDescription": {"text": "uv is vulnerable to arbitrary file write through entry point names"}, "properties": {"scanner": "osv-scanner", "category": "dependency", "severity": "medium", "confidence": 0.88, "cwe": "", "owasp": ""}}, {"id": "DKR007", "name": "Docker build context has no .dockerignore", "shortDescription": {"text": "Docker build context has no .dockerignore"}, "fullDescription": {"text": "Without .dockerignore, build context can include source history, local env files, dependencies, and generated artifacts."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.9, "cwe": "", "owasp": ""}}, {"id": "DKR001", "name": "Docker final stage has no non-root USER", "shortDescription": {"text": "Docker final stage has no non-root USER"}, "fullDescription": {"text": "Docker images run as root unless the image or Dockerfile switches to a non-root user."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "medium", "confidence": 0.82, "cwe": "", "owasp": ""}}, {"id": "SEC014", "name": "[SEC014] SSL Verification Disabled: SSL certificate verification is disabled, allowing man-in-the-middle attacks.", "shortDescription": {"text": "[SEC014] SSL Verification Disabled: SSL certificate verification is disabled, allowing man-in-the-middle attacks."}, "fullDescription": {"text": "Enable SSL verification. Use verify=True (default) for requests. Pin certificates if needed."}, "properties": {"scanner": "repobility-threat-engine", "category": "crypto", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC127", "name": "[SEC127] AI agent stub \u2014 TODO: implement / pass placeholder body: Function body left as TODO/pass/raise NotImplementedEr", "shortDescription": {"text": "[SEC127] AI agent stub \u2014 TODO: implement / pass placeholder body: Function body left as TODO/pass/raise NotImplementedError after an AI scaffolding pass. The route appears to exist (and may even pass shallow CI), but invoking it crashes or "}, "fullDescription": {"text": "Either implement the body, or fail closed at module-load time so the deploy can't ship a half-built route. A CI gate that fails build on `raise NotImplementedError` in non-abstract code catches this cleanly."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC015", "name": "[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable.", "shortDescription": {"text": "[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable."}, "fullDescription": {"text": "Use secrets module (Python) or crypto.getRandomValues() (JS) for security-sensitive randomness."}, "properties": {"scanner": "repobility-threat-engine", "category": "crypto", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC003", "name": "[SEC003] Hardcoded Secret: Hardcoded secret key found in source code.", "shortDescription": {"text": "[SEC003] Hardcoded Secret: Hardcoded secret key found in source code."}, "fullDescription": {"text": "Never commit secrets. Use .env files with .gitignore."}, "properties": {"scanner": "repobility-threat-engine", "category": "credential_exposure", "severity": "medium", "confidence": 0.3, "cwe": "", "owasp": ""}}, {"id": "SEC041", "name": "[SEC041] Tabnabbing \u2014 target=\"_blank\" without rel=\"noopener noreferrer\": <a target=\"_blank\"> without rel=\"noopener noref", "shortDescription": {"text": "[SEC041] Tabnabbing \u2014 target=\"_blank\" without rel=\"noopener noreferrer\": <a target=\"_blank\"> without rel=\"noopener noreferrer\" leaks window.opener to the opened page. The opened page can then run window.opener.location = 'phishing-site' and"}, "fullDescription": {"text": "Add rel=\"noopener noreferrer\" to every <a target=\"_blank\">:\n  <a href=\"...\" target=\"_blank\" rel=\"noopener noreferrer\">link</a>\nFor dynamically generated links from JS, set rel on the element before appending. Even safe-looking subdomains should harden \u2014 costs nothing."}, "properties": {"scanner": "repobility-threat-engine", "category": "security", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC045", "name": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a latera", "shortDescription": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use obj"}, "fullDescription": {"text": "For literal data structures: use ast.literal_eval(text) \u2014 only parses literals, raises on code.\nFor formula evaluation: use asteval or simpleeval (purpose-built sandboxes with allow-lists).\nFor Odoo: use odoo.tools.safe_eval(expr, locals_dict, mode='exec').\nIf you genuinely need to execute admin-stored code: require explicit super-admin permission AND log every execution with a stack trace."}, "properties": {"scanner": "repobility-threat-engine", "category": "injection", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "ERR001", "name": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG ", "shortDescription": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "fullDescription": {"text": "Log the error: `except Exception: logger.debug('cleanup failed', exc_info=True)`. Or handle specific exception types."}, "properties": {"scanner": "repobility-threat-engine", "category": "error_handling", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "COMP001", "name": "[COMP001] High cognitive complexity: Function `sort_ies` has cognitive complexity 18 (SonarSource scale). Cognitive comp", "shortDescription": {"text": "[COMP001] High cognitive complexity: Function `sort_ies` has cognitive complexity 18 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all "}, "fullDescription": {"text": "Extract nested branches into named helper functions; flatten early-return / guard clauses; replace long if/elif chains with dispatch dicts or polymorphism. SonarQube's threshold for 'should refactor' is 15 \u2014 yours is 18."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "medium", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "MINED111", "name": "Bare except continues silently", "shortDescription": {"text": "Bare except continues silently"}, "fullDescription": {"text": "Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED109", "name": "Mutable default argument in `_call_api` (dict)", "shortDescription": {"text": "Mutable default argument in `_call_api` (dict)"}, "fullDescription": {"text": "`def _call_api(... = []/{}/set())` \u2014 Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in one call mutates it for every future call too."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "WEB005", "name": "robots.txt does not advertise a sitemap", "shortDescription": {"text": "robots.txt does not advertise a sitemap"}, "fullDescription": {"text": "Sitemap directives in robots.txt help crawlers and AI agents find the canonical public URL inventory quickly."}, "properties": {"scanner": "repobility-web-presence", "category": "quality", "severity": "low", "confidence": 0.74, "cwe": "", "owasp": ""}}, {"id": "DKC010", "name": "Compose service lacks no-new-privileges hardening", "shortDescription": {"text": "Compose service lacks no-new-privileges hardening"}, "fullDescription": {"text": "no-new-privileges prevents processes from gaining additional privileges through setuid binaries or file capabilities."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "low", "confidence": 0.62, "cwe": "", "owasp": ""}}, {"id": "DKC006", "name": "Compose service does not declare a runtime user", "shortDescription": {"text": "Compose service does not declare a runtime user"}, "fullDescription": {"text": "If the image does not define USER internally, this service may run as root."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "low", "confidence": 0.56, "cwe": "", "owasp": ""}}, {"id": "SEC118", "name": "[SEC118] UUIDv1 / UUIDv3 used for security-sensitive identifier: UUIDv1 encodes the MAC address and timestamp, making it", "shortDescription": {"text": "[SEC118] UUIDv1 / UUIDv3 used for security-sensitive identifier: UUIDv1 encodes the MAC address and timestamp, making it predictable. Used as a session token or password-reset key, it's enumerable."}, "fullDescription": {"text": "Use `uuid.uuid4()` (random) or `secrets.token_urlsafe()` for tokens. In Go, use `uuid.NewRandom()` (google/uuid)."}, "properties": {"scanner": "repobility-threat-engine", "category": "crypto", "severity": "low", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC132", "name": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the la", "shortDescription": {"text": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the language has cleaner interpolation (Python f-strings since 3.6, JS template literals since ES6). Not a vulnerability on it"}, "fullDescription": {"text": "Python: `f\"prefix {var} suffix\"`. JS/TS: `` `prefix ${var} suffix` ``. Add a lint rule (pyupgrade UP032, eslint prefer-template) so future PRs catch this automatically."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "low", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "DKR002", "name": "Dockerfile base image is selected through a build variable", "shortDescription": {"text": "Dockerfile base image is selected through a build variable"}, "fullDescription": {"text": "Variable-selected base images can be safe, but Repobility cannot verify that the resolved image is pinned."}, "properties": {"scanner": "repobility-docker", "category": "docker", "severity": "info", "confidence": 0.48, "cwe": "", "owasp": ""}}, {"id": "MINED062", "name": "[MINED062] Python Dataclass No Fields: @dataclass over an empty class \u2014 unfinished model.", "shortDescription": {"text": "[MINED062] Python Dataclass No Fields: @dataclass over an empty class \u2014 unfinished model."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED057", "name": "[MINED057] Todo Bomb: Code path with a TODO/FIXME/HACK comment that gates correctness \u2014 left for later but never resolve", "shortDescription": {"text": "[MINED057] Todo Bomb: Code path with a TODO/FIXME/HACK comment that gates correctness \u2014 left for later but never resolved."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED053", "name": "[MINED053] Placeholder Default Username: foo@bar.com / john.doe@example.com / admin/admin / changeme \u2014 typical AI placeh", "shortDescription": {"text": "[MINED053] Placeholder Default Username: foo@bar.com / john.doe@example.com / admin/admin / changeme \u2014 typical AI placeholder credentials."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-1392,CWE-798 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC002", "name": "[SEC002] Hardcoded API Key (and 4 more): Same pattern found in 4 additional files. Review if needed.", "shortDescription": {"text": "[SEC002] Hardcoded API Key (and 4 more): Same pattern found in 4 additional files. Review if needed."}, "fullDescription": {"text": "Use environment variables. Add the pattern to .gitignore."}, "properties": {"scanner": "repobility-threat-engine", "category": "credential_exposure", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC043", "name": "[SEC043] Secret stored in Odoo ir.config_parameter \u2014 broadly readable (and 6 more): Same pattern found in 6 additional f", "shortDescription": {"text": "[SEC043] Secret stored in Odoo ir.config_parameter \u2014 broadly readable (and 6 more): Same pattern found in 6 additional files. Review if needed."}, "fullDescription": {"text": "Move to environment variables (loaded at server start, not in DB):\n  api_key = os.environ.get('STRIPE_API_KEY')\nOr use Odoo's dedicated 'res.config.settings' with restricted ACL:\n  - Set groups='base.group_system' on the field\n  - Use sudo() reads only from server-trusted code paths\nOr a secrets-manager (HashiCorp Vault, AWS Secrets Manager) with a thin Odoo client that fetches at runtime."}, "properties": {"scanner": "repobility-threat-engine", "category": "secret", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED047", "name": "[MINED047] Emoji In Source (and 5 more): Same pattern found in 5 additional files. Review if needed.", "shortDescription": {"text": "[MINED047] Emoji In Source (and 5 more): Same pattern found in 5 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC061", "name": "[SEC061] JWT in source (and 1 more): Same pattern found in 1 additional files. Review if needed.", "shortDescription": {"text": "[SEC061] JWT in source (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "fullDescription": {"text": "If the JWT is live, invalidate by rotating the signing key. Move tokens out of source."}, "properties": {"scanner": "repobility-threat-engine", "category": "secret", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC103", "name": "[SEC103] LDAP injection \u2014 non-constant search filter (and 35 more): Same pattern found in 35 additional files. Review if", "shortDescription": {"text": "[SEC103] LDAP injection \u2014 non-constant search filter (and 35 more): Same pattern found in 35 additional files. Review if needed."}, "fullDescription": {"text": "Escape with javax.naming.ldap.Rdn.escapeValue or equivalent. For python-ldap, use ldap.filter.escape_filter_chars. Better: use parameterized search APIs (Spring LdapTemplate filter encoders)."}, "properties": {"scanner": "repobility-threat-engine", "category": "injection", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC013", "name": "[SEC013] Path Traversal \u2014 User Input in File Path (and 1 more): Same pattern found in 1 additional files. Review if need", "shortDescription": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "fullDescription": {"text": "Use os.path.realpath() and verify the path starts with your expected base directory. Use secure_filename() for uploads."}, "properties": {"scanner": "repobility-threat-engine", "category": "path_traversal", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED004", "name": "[MINED004] Weak Crypto (and 690 more): Same pattern found in 690 additional files. Review if needed.", "shortDescription": {"text": "[MINED004] Weak Crypto (and 690 more): Same pattern found in 690 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-327 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED072", "name": "[MINED072] Python Pass Only Class (and 2 more): Same pattern found in 2 additional files. Review if needed.", "shortDescription": {"text": "[MINED072] Python Pass Only Class (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-1188 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED043", "name": "[MINED043] Http Not Https (and 359 more): Same pattern found in 359 additional files. Review if needed.", "shortDescription": {"text": "[MINED043] Http Not Https (and 359 more): Same pattern found in 359 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-319 / A02:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED049", "name": "[MINED049] Print Pii: Logging password/token/email/ssn directly to stdout.", "shortDescription": {"text": "[MINED049] Print Pii: Logging password/token/email/ssn directly to stdout."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-532 / A09:2021 for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED050", "name": "[MINED050] Stub Only Function (and 19 more): Same pattern found in 19 additional files. Review if needed.", "shortDescription": {"text": "[MINED050] Stub Only Function (and 19 more): Same pattern found in 19 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-1188 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED001", "name": "[MINED001] Bare Except Pass (and 3 more): Same pattern found in 3 additional files. Review if needed.", "shortDescription": {"text": "[MINED001] Bare Except Pass (and 3 more): Same pattern found in 3 additional files. Review if needed."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-755 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC128", "name": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 66 more): Same pattern found in 66 add", "shortDescription": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 66 more): Same pattern found in 66 additional files. Review if needed."}, "fullDescription": {"text": "Add `await` before each async call, or chain with `.then`. If you intentionally want fire-and-forget, prefix with `void` (TS) or assign to `_` (Python with `asyncio.create_task`) to make the intent explicit and survive lint."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "MINED077", "name": "[MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles.", "shortDescription": {"text": "[MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-772 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "info", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC029", "name": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 346 more): Same pattern found in 346 ad", "shortDescription": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 346 more): Same pattern found in 346 additional files. Review if needed."}, "fullDescription": {"text": "Validate the URL against an allowlist BEFORE fetching:\n  ALLOWED = {'images.example.com', 'cdn.example.com'}\n  host = urlparse(url).hostname\n  if host not in ALLOWED: abort(400)\nOr use a server-side proxy (Imgproxy / serve-files-only-from-S3) that isolates outbound network access from the request handler.\nBlock private CIDRs explicitly: 10/8, 172.16/12, 192.168/16, 169.254/16."}, "properties": {"scanner": "repobility-threat-engine", "category": "ssrf", "severity": "info", "confidence": 0.2, "cwe": "", "owasp": ""}}, {"id": "SEC020", "name": "[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequen", "shortDescription": {"text": "[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for troubleshooting."}, "fullDescription": {"text": "Log only redacted, hashed, or last-four-style metadata. Rotate any secret that may have reached logs."}, "properties": {"scanner": "repobility-threat-engine", "category": "credential_exposure", "severity": "info", "confidence": 0.15, "cwe": "", "owasp": ""}}, {"id": "MINED099", "name": "[MINED099] Hardcoded Secret: API key, AWS access key, GitHub token, Slack token, OpenAI key, or private key embedded dir", "shortDescription": {"text": "[MINED099] Hardcoded Secret: API key, AWS access key, GitHub token, Slack token, OpenAI key, or private key embedded directly in source. AI assistants frequently leak demo credentials."}, "fullDescription": {"text": "Move the secret to an environment variable or secret manager. Rotate the exposed credential immediately \u2014 assume it is compromised."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC085", "name": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. ", "shortDescription": {"text": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0)."}, "fullDescription": {"text": "Use execFile / spawn with separate args array; never pass shell strings."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED006", "name": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working.", "shortDescription": {"text": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working."}, "fullDescription": {"text": "Review and fix per the pattern semantics. See CWE-705 /  for context."}, "properties": {"scanner": "repobility-threat-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED112", "name": "FastAPI PATCH sys.platform has no auth", "shortDescription": {"text": "FastAPI PATCH sys.platform has no auth"}, "fullDescription": {"text": "Handler `test_sanitize_path` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in the function body."}, "properties": {"scanner": "repobility-route-auth", "category": "quality", "severity": "high", "confidence": 0.8, "cwe": "", "owasp": ""}}, {"id": "MINED106", "name": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChaptersAfterLastCut", "shortDescription": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChaptersAfterLastCut"}, "fullDescription": {"text": "Test function `test_remove_marked_arrange_sponsors_ChaptersAfterLastCut` runs code but contains no assert / expect / should call \u2014 it passes regardless of behaviour. Adds line coverage without verifying anything."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED108", "name": "`self._commits` used but never assigned in __init__", "shortDescription": {"text": "`self._commits` used but never assigned in __init__"}, "fullDescription": {"text": "Method `apply_overrides` of class `CommitRange` reads `self._commits`, but no assignment to it exists in __init__ (and no class-level fallback). This raises AttributeError the first time the method runs against an instance."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "high", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "generic-api-key", "name": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations.", "shortDescription": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "fullDescription": {"text": "Gitleaks detected a committed secret or credential pattern."}, "properties": {"scanner": "gitleaks", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "gcp-api-key", "name": "Uncovered a GCP API key, which could lead to unauthorized access to Google Cloud services and data breaches.", "shortDescription": {"text": "Uncovered a GCP API key, which could lead to unauthorized access to Google Cloud services and data breaches."}, "fullDescription": {"text": "Gitleaks detected a committed secret or credential pattern."}, "properties": {"scanner": "gitleaks", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "jwt", "name": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data.", "shortDescription": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "fullDescription": {"text": "Gitleaks detected a committed secret or credential pattern."}, "properties": {"scanner": "gitleaks", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "aws-access-token", "name": "Identified a pattern that may indicate AWS credentials, risking unauthorized cloud resource access and data breaches on ", "shortDescription": {"text": "Identified a pattern that may indicate AWS credentials, risking unauthorized cloud resource access and data breaches on AWS platforms."}, "fullDescription": {"text": "Gitleaks detected a committed secret or credential pattern."}, "properties": {"scanner": "gitleaks", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "algolia-api-key", "name": "Identified an Algolia API Key, which could result in unauthorized search operations and data exposure on Algolia-managed", "shortDescription": {"text": "Identified an Algolia API Key, which could result in unauthorized search operations and data exposure on Algolia-managed platforms."}, "fullDescription": {"text": "Gitleaks detected a committed secret or credential pattern."}, "properties": {"scanner": "gitleaks", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "private-key", "name": "Identified a Private Key, which may compromise cryptographic security and sensitive data encryption.", "shortDescription": {"text": "Identified a Private Key, which may compromise cryptographic security and sensitive data encryption."}, "fullDescription": {"text": "Gitleaks detected a committed secret or credential pattern."}, "properties": {"scanner": "gitleaks", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "cwe": "", "owasp": ""}}, {"id": "SEC010", "name": "[SEC010] Cloud Provider Token: Cloud provider or SaaS API token found in source code.", "shortDescription": {"text": "[SEC010] Cloud Provider Token: Cloud provider or SaaS API token found in source code."}, "fullDescription": {"text": "Remove immediately and rotate the token. Use environment variables."}, "properties": {"scanner": "repobility-threat-engine", "category": "credential_exposure", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC039", "name": "[SEC039] Plaintext-equivalent password hash \u2014 unsalted single-pass digest: Single-pass digest of a password is cryptogra", "shortDescription": {"text": "[SEC039] Plaintext-equivalent password hash \u2014 unsalted single-pass digest: Single-pass digest of a password is cryptographically strong as a hash, but is rainbow-table-attackable when used for passwords: there's no salt and no key-stretchin"}, "fullDescription": {"text": "Use a purpose-built password hash:\n  - Python: passlib.hash.argon2.hash(password)\n  - Python: bcrypt.hashpw(password.encode(), bcrypt.gensalt())\n  - Python: hashlib.pbkdf2_hmac('sha256', password, salt, 600000)\n  - PHP: password_hash($password, PASSWORD_ARGON2ID)\n  - Node.js: argon2.hash(password) or bcrypt.hash(password, 12)\nWhen rotating, accept both old + new for one session each, then re-hash on next login."}, "properties": {"scanner": "repobility-threat-engine", "category": "crypto", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "SEC049", "name": "[SEC049] GCP API key: Google Cloud API key (AIza prefix). Ported from gitleaks gcp-api-key (MIT).", "shortDescription": {"text": "[SEC049] GCP API key: Google Cloud API key (AIza prefix). Ported from gitleaks gcp-api-key (MIT)."}, "fullDescription": {"text": "Restrict the key in Cloud Console (HTTP referrers / IP whitelist) and rotate. Move to Secret Manager."}, "properties": {"scanner": "repobility-threat-engine", "category": "secret", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "MINED107", "name": "Missing import: `warnings` used but not imported", "shortDescription": {"text": "Missing import: `warnings` used but not imported"}, "fullDescription": {"text": "The file uses `warnings.something(...)` but never imports `warnings`. This raises NameError at runtime the first time the line executes."}, "properties": {"scanner": "repobility-ast-engine", "category": "quality", "severity": "critical", "confidence": 1.0, "cwe": "", "owasp": ""}}]}}, "automationDetails": {"id": "repobility/696"}, "properties": {"repository": "yt-dlp/yt-dlp", "repoUrl": "https://github.com/yt-dlp/yt-dlp", "branch": "master"}, "results": [{"ruleId": "WEB003", "level": "warning", "message": {"text": "Public web service has no security.txt"}, "properties": {"repobilityId": 55088, "scanner": "repobility-web-presence", "fingerprint": "5cd26606c5a53c9f403ff7a92a6917c19cf440a23ce03e2b90e8c493312ef8cd", "category": "quality", "severity": "medium", "confidence": 0.78, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Repository looks like a public web app/API but no security.txt file or route was discovered.", "evidence": {"rule_id": "WEB003", "scanner": "repobility-web-presence", "references": ["https://www.rfc-editor.org/rfc/rfc9116", "https://github.com/Lissy93/web-check"], "correlation_key": "fp|5cd26606c5a53c9f403ff7a92a6917c19cf440a23ce03e2b90e8c493312ef8cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".well-known/security.txt"}, "region": {"startLine": 1}}}]}, {"ruleId": "GHSA-4gg8-gxpx-9rph", "level": "warning", "message": {"text": "uv: GHSA-4gg8-gxpx-9rph"}, "properties": {"repobilityId": 55087, "scanner": "osv-scanner", "fingerprint": "bfd76b76e5f674e0cc27a7686e8d775b0a2cc30e70b34ab3a8332ac29ef2816b", "category": "dependency", "severity": "medium", "confidence": 0.88, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "", "package": "uv", "rule_id": "GHSA-4gg8-gxpx-9rph", "scanner": "osv-scanner", "correlation_key": "vuln|uv|GHSA-4GG8-GXPX-9RPH|uv.lock"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "uv.lock"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKR007", "level": "warning", "message": {"text": "Docker build context has no .dockerignore"}, "properties": {"repobilityId": 54980, "scanner": "repobility-docker", "fingerprint": "c98378cf8c37e4866e89d6ca06a24b7e8c44654aa34e6e4bf1367c4a4c0c5b44", "category": "docker", "severity": "medium", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Dockerfile exists but repository root has no .dockerignore.", "evidence": {"rule_id": "DKR007", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/"], "correlation_key": "fp|c98378cf8c37e4866e89d6ca06a24b7e8c44654aa34e6e4bf1367c4a4c0c5b44"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".dockerignore"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKR001", "level": "warning", "message": {"text": "Docker final stage has no non-root USER"}, "properties": {"repobilityId": 54979, "scanner": "repobility-docker", "fingerprint": "5491507f3125e85d4cf185c9db1609143de12283202405a31f1fab82061a5fec", "category": "docker", "severity": "medium", "confidence": 0.82, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "No USER directive was found in the final runtime stage.", "evidence": {"rule_id": "DKR001", "scanner": "repobility-docker", "final_base": "$VERIFYIMAGE", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html", "https://github.com/hadolint/hadolint"], "correlation_key": "fp|5491507f3125e85d4cf185c9db1609143de12283202405a31f1fab82061a5fec"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/linux/Dockerfile"}, "region": {"startLine": 12}}}]}, {"ruleId": "SEC014", "level": "warning", "message": {"text": "[SEC014] SSL Verification Disabled: SSL certificate verification is disabled, allowing man-in-the-middle attacks."}, "properties": {"repobilityId": 54975, "scanner": "repobility-threat-engine", "fingerprint": "7efa3d1391ae5a06ded3a20011e85367ef5abd90f378f678663b3681366c9b28", "category": "crypto", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "CERT_NONE", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC014", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|crypto|token|110|sec014"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/networking/_helper.py"}, "region": {"startLine": 110}}}]}, {"ruleId": "SEC127", "level": "warning", "message": {"text": "[SEC127] AI agent stub \u2014 TODO: implement / pass placeholder body: Function body left as TODO/pass/raise NotImplementedError after an AI scaffolding pass. The route appears to exist (and may even pass shallow CI), but invoking it crashes or silently no-ops. AI agents consistently emit these when their context window runs out mid-implementation. Production callers hitting these stubs is a classic AI-generated-incident."}, "properties": {"repobilityId": 54970, "scanner": "repobility-threat-engine", "fingerprint": "56b59281c44cedbc7856bdf6905aec6b4c580966abd6ea495883f363a09c4917", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "def recv(self):\n        raise NotImplementedError", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC127", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|56b59281c44cedbc7856bdf6905aec6b4c580966abd6ea495883f363a09c4917"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/networking/websocket.py"}, "region": {"startLine": 18}}}]}, {"ruleId": "SEC127", "level": "warning", "message": {"text": "[SEC127] AI agent stub \u2014 TODO: implement / pass placeholder body: Function body left as TODO/pass/raise NotImplementedError after an AI scaffolding pass. The route appears to exist (and may even pass shallow CI), but invoking it crashes or silently no-ops. AI agents consistently emit these when their context window runs out mid-implementation. Production callers hitting these stubs is a classic AI-generated-incident."}, "properties": {"repobilityId": 54969, "scanner": "repobility-threat-engine", "fingerprint": "4cf2b1b80520eaae3f8fa2c5732cb3960a0ccd7ea7ea2c73f1bba9f0493d856c", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "def _create_instance(**kwargs):\n        raise NotImplementedError", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC127", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|4cf2b1b80520eaae3f8fa2c5732cb3960a0ccd7ea7ea2c73f1bba9f0493d856c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/networking/_helper.py"}, "region": {"startLine": 163}}}]}, {"ruleId": "SEC127", "level": "warning", "message": {"text": "[SEC127] AI agent stub \u2014 TODO: implement / pass placeholder body: Function body left as TODO/pass/raise NotImplementedError after an AI scaffolding pass. The route appears to exist (and may even pass shallow CI), but invoking it crashes or silently no-ops. AI agents consistently emit these when their context window runs out mid-implementation. Production callers hitting these stubs is a classic AI-generated-incident."}, "properties": {"repobilityId": 54968, "scanner": "repobility-threat-engine", "fingerprint": "9312b65eaa6846c556e3f858a2ad2de02a39f477dcd494e6c313862414853039", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "def _correct_path(self, url, item_id):\n        raise NotImplementedError", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC127", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|9312b65eaa6846c556e3f858a2ad2de02a39f477dcd494e6c313862414853039"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/motherless.py"}, "region": {"startLine": 169}}}]}, {"ruleId": "SEC015", "level": "warning", "message": {"text": "[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable."}, "properties": {"repobilityId": 54960, "scanner": "repobility-threat-engine", "fingerprint": "58cb86c62e975597547579ff0e8c9b24509b5b3e1057713307d246ebd8079fa1", "category": "crypto", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Security-sensitive keyword found nearby \u2014 weak PRNG is risky here", "evidence": {"match": "session = str(random.randint", "reason": "Security-sensitive keyword found nearby \u2014 weak PRNG is risky here", "rule_id": "SEC015", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|crypto|token|108|sec015"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/eighttracks.py"}, "region": {"startLine": 108}}}]}, {"ruleId": "SEC003", "level": "warning", "message": {"text": "[SEC003] Hardcoded Secret: Hardcoded secret key found in source code."}, "properties": {"repobilityId": 54959, "scanner": "repobility-threat-engine", "fingerprint": "8063a4d24ecf5e0fa995a9a36d47be2a0b4568ba7a70bac50679a395c856cac0", "category": "credential_exposure", "severity": "medium", "confidence": 0.3, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Low entropy value (3.2 bits) \u2014 may be placeholder or common string", "evidence": {"match": "SECRET_KEY = 'f53d31a4377e4ef31fa0'", "reason": "Low entropy value (3.2 bits) \u2014 may be placeholder or common string", "rule_id": "SEC003", "scanner": "repobility-threat-engine", "confidence": 0.3, "correlation_key": "secret|token|2|secret_key hex"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/dangalplay.py"}, "region": {"startLine": 24}}}]}, {"ruleId": "SEC041", "level": "warning", "message": {"text": "[SEC041] Tabnabbing \u2014 target=\"_blank\" without rel=\"noopener noreferrer\": <a target=\"_blank\"> without rel=\"noopener noreferrer\" leaks window.opener to the opened page. The opened page can then run window.opener.location = 'phishing-site' and the parent tab quietly navigates to attacker-controlled content (reverse tabnabbing). OWASP-classic; modern browsers default rel='noopener' for new windows but explicit attribute is still required for compatibility."}, "properties": {"repobilityId": 54940, "scanner": "repobility-threat-engine", "fingerprint": "6b96be773d3965519c03a3afb421c70f8a3aa425776ee3da15b217257719b3c1", "category": "security", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "<a target=\"_blank\" href=\"([^\"]+)\">", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC041", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|security|token|29|sec041"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/academicearth.py"}, "region": {"startLine": 29}}}]}, {"ruleId": "SEC045", "level": "warning", "message": {"text": "[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data \u2014 even admin-stored data \u2014 is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ cleared) are escapable: attackers use object introspection (().__class__.__mro__[-1].__subclasses__()) to reach os.system. CWE-95 (eval injection)."}, "properties": {"repobilityId": 54918, "scanner": "repobility-threat-engine", "fingerprint": "1859b916c5cae9cd723d24de4d3990c3f0a5b554e8bd4236ccdd746d2f1a05e7", "category": "injection", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "exec(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC045", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|devscripts/utils.py|30|sec045"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/utils.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "ERR001", "level": "warning", "message": {"text": "[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level."}, "properties": {"repobilityId": 54917, "scanner": "repobility-threat-engine", "fingerprint": "6fccdf0e6b5e475672e50a81e45baa92963d7bce1e03c665ad1b1159fcf0f352", "category": "error_handling", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "except Exception:\n            pass", "reason": "Pattern matched with no mitigating context found", "rule_id": "ERR001", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|6fccdf0e6b5e475672e50a81e45baa92963d7bce1e03c665ad1b1159fcf0f352"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/tomlparse.py"}, "region": {"startLine": 129}}}]}, {"ruleId": "COMP001", "level": "warning", "message": {"text": "[COMP001] High cognitive complexity: Function `sort_ies` has cognitive complexity 18 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: break=2, for=2, if=3, nested_bonus=10, while=1."}, "properties": {"repobilityId": 54902, "scanner": "repobility-threat-engine", "fingerprint": "c84c4f43332ced78bdab738a6591fdf2593eaec717d8456d931ca4c354b24532", "category": "quality", "severity": "medium", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 18 (severity threshold for medium: 15+).", "evidence": {"scanner": "repobility-threat-engine", "function": "sort_ies", "breakdown": {"if": 3, "for": 2, "break": 2, "while": 1, "nested_bonus": 10}, "complexity": 18, "correlation_key": "fp|c84c4f43332ced78bdab738a6591fdf2593eaec717d8456d931ca4c354b24532"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_lazy_extractors.py"}, "region": {"startLine": 81}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54887, "scanner": "repobility-ast-engine", "fingerprint": "5afe74826215fc4778a9bf13ef722e1e5188f82ea0dcb5ae713d76920298f36b", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5afe74826215fc4778a9bf13ef722e1e5188f82ea0dcb5ae713d76920298f36b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/networking/__init__.py"}, "region": {"startLine": 37}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54886, "scanner": "repobility-ast-engine", "fingerprint": "c891b4b825935a2d303bebdf2dae9d501c50116b9b4197e8e05921eb608bdb8d", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|c891b4b825935a2d303bebdf2dae9d501c50116b9b4197e8e05921eb608bdb8d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/networking/__init__.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54885, "scanner": "repobility-ast-engine", "fingerprint": "00714a7dcc2ff5f32189da43a25c4735cd0534a8ead175ecd9bbcd548c31edcc", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|00714a7dcc2ff5f32189da43a25c4735cd0534a8ead175ecd9bbcd548c31edcc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/networking/__init__.py"}, "region": {"startLine": 23}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54884, "scanner": "repobility-ast-engine", "fingerprint": "e2184e8e22841dec43377dbfa8627dddfd16465d642355fc520e382b53014afb", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e2184e8e22841dec43377dbfa8627dddfd16465d642355fc520e382b53014afb"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/networking/_requests.py"}, "region": {"startLine": 244}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54883, "scanner": "repobility-ast-engine", "fingerprint": "632ee26db338e279fe5b3393d568267eca1b03cbba51a01498c774dc44768a65", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|632ee26db338e279fe5b3393d568267eca1b03cbba51a01498c774dc44768a65"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/fc2.py"}, "region": {"startLine": 27}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54882, "scanner": "repobility-ast-engine", "fingerprint": "f41a6da557a7ec729d273fb96de05ee261396499dfd58da5ddf354ad8e0291fc", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f41a6da557a7ec729d273fb96de05ee261396499dfd58da5ddf354ad8e0291fc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/niconico.py"}, "region": {"startLine": 79}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54881, "scanner": "repobility-ast-engine", "fingerprint": "d760a3baf4c72b0cff924c22e673aa8eebb7acf0d9f9c35ecad3c6ea36e84e55", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d760a3baf4c72b0cff924c22e673aa8eebb7acf0d9f9c35ecad3c6ea36e84e55"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/fragment.py"}, "region": {"startLine": 90}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54879, "scanner": "repobility-ast-engine", "fingerprint": "4e68747e37d2be38e75d7a723a5066a52b79502623f3fa1807d0457c68fff8ff", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4e68747e37d2be38e75d7a723a5066a52b79502623f3fa1807d0457c68fff8ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/postprocessor/common.py"}, "region": {"startLine": 155}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54878, "scanner": "repobility-ast-engine", "fingerprint": "937ad033170a0d1f88aa9942ec166e383bb1a81b82c28b40418ef9cdc06f764a", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|937ad033170a0d1f88aa9942ec166e383bb1a81b82c28b40418ef9cdc06f764a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/postprocessor/embedthumbnail.py"}, "region": {"startLine": 139}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54877, "scanner": "repobility-ast-engine", "fingerprint": "e01d9a0e0f6f027051ae6229a1ae05ec3da78c24cbc2554b57a8242dcce8deac", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e01d9a0e0f6f027051ae6229a1ae05ec3da78c24cbc2554b57a8242dcce8deac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/utils/_utils.py"}, "region": {"startLine": 4802}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54876, "scanner": "repobility-ast-engine", "fingerprint": "e295621ff8bad6d0e7c94bd4322c7b68fbda0ada34b2976c38709b9f5723ea16", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e295621ff8bad6d0e7c94bd4322c7b68fbda0ada34b2976c38709b9f5723ea16"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/utils/_utils.py"}, "region": {"startLine": 185}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54874, "scanner": "repobility-ast-engine", "fingerprint": "442f1b07b553d1b44b0e7ee98e49029136905006bf4d6659586a7ba5ede09944", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|442f1b07b553d1b44b0e7ee98e49029136905006bf4d6659586a7ba5ede09944"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/dependencies/__init__.py"}, "region": {"startLine": 40}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54870, "scanner": "repobility-ast-engine", "fingerprint": "dfaa15422980bdc8ded26c592080c8e32e5b342e102f4f252a8ab56026c6104b", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|dfaa15422980bdc8ded26c592080c8e32e5b342e102f4f252a8ab56026c6104b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/common.py"}, "region": {"startLine": 3912}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_call_api` (dict)"}, "properties": {"repobilityId": 54868, "scanner": "repobility-ast-engine", "fingerprint": "8afe19ad1c936b7de1c35baf03d9891a72645e6adcb47d92f2e5b14b3d6a01fd", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8afe19ad1c936b7de1c35baf03d9891a72645e6adcb47d92f2e5b14b3d6a01fd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/kick.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_call_api` (dict)"}, "properties": {"repobilityId": 54867, "scanner": "repobility-ast-engine", "fingerprint": "e2c142d56396cba57137bf830dc03344e37ab6415c2db6d87212865e31e358e2", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e2c142d56396cba57137bf830dc03344e37ab6415c2db6d87212865e31e358e2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/pr0gramm.py"}, "region": {"startLine": 123}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_call_bamgrid_api` (dict)"}, "properties": {"repobilityId": 54866, "scanner": "repobility-ast-engine", "fingerprint": "b43a16117a01d9acf7e71aa19510e87fbde846d47441607a12e0ca12587a6475", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b43a16117a01d9acf7e71aa19510e87fbde846d47441607a12e0ca12587a6475"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/espn.py"}, "region": {"startLine": 334}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_entries` (list)"}, "properties": {"repobilityId": 54865, "scanner": "repobility-ast-engine", "fingerprint": "6721debd3af2356c389d8ba268e53b5e87d598afb6e6f43a1b51ffc29fc66d71", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|6721debd3af2356c389d8ba268e53b5e87d598afb6e6f43a1b51ffc29fc66d71"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/gamejolt.py"}, "region": {"startLine": 301}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_series_entries` (dict)"}, "properties": {"repobilityId": 54864, "scanner": "repobility-ast-engine", "fingerprint": "d04e45b0a342f982fdf00c0282c9634295e8254d66b2f0a575b2fc1d4cd4fbf8", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d04e45b0a342f982fdf00c0282c9634295e8254d66b2f0a575b2fc1d4cd4fbf8"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/rcti.py"}, "region": {"startLine": 294}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_entries` (dict)"}, "properties": {"repobilityId": 54863, "scanner": "repobility-ast-engine", "fingerprint": "f68f83e02f7191bcee2d6d97b3f5d9380e6db956087b99321b794f5981fecf9b", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f68f83e02f7191bcee2d6d97b3f5d9380e6db956087b99321b794f5981fecf9b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/rcti.py"}, "region": {"startLine": 260}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_call_api` (dict)"}, "properties": {"repobilityId": 54862, "scanner": "repobility-ast-engine", "fingerprint": "a576aaff1217a38f26145537286ae1352ad4676b3878fcbc38e66c876a6c2183", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a576aaff1217a38f26145537286ae1352ad4676b3878fcbc38e66c876a6c2183"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/nexx.py"}, "region": {"startLine": 147}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_call_api` (dict)"}, "properties": {"repobilityId": 54860, "scanner": "repobility-ast-engine", "fingerprint": "14de4b5c95d8722e8d42d77095a671df9df5721ba1f9eb2553be4de1fdb2ab32", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|14de4b5c95d8722e8d42d77095a671df9df5721ba1f9eb2553be4de1fdb2ab32"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/netverse.py"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54859, "scanner": "repobility-ast-engine", "fingerprint": "9012f540dfe0169c804916f61c087e2b5e9696eb07231b423c0d680029307327", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9012f540dfe0169c804916f61c087e2b5e9696eb07231b423c0d680029307327"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/wwe.py"}, "region": {"startLine": 132}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_extract_embeds` (dict)"}, "properties": {"repobilityId": 54857, "scanner": "repobility-ast-engine", "fingerprint": "741d20b5d32594ff1cef7f5afb8de6e77885b24c478316920f22d9bddffdef37", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|741d20b5d32594ff1cef7f5afb8de6e77885b24c478316920f22d9bddffdef37"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/generic.py"}, "region": {"startLine": 986}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_extract_cvp_info` (dict)"}, "properties": {"repobilityId": 54855, "scanner": "repobility-ast-engine", "fingerprint": "662e9066833406e494d0e60da3657e3fd485191e60fbbac52ce7f9a84f59b303", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|662e9066833406e494d0e60da3657e3fd485191e60fbbac52ce7f9a84f59b303"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/turner.py"}, "region": {"startLine": 50}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_call_api` (dict)"}, "properties": {"repobilityId": 54854, "scanner": "repobility-ast-engine", "fingerprint": "962f00a368bb8bce2cbda0017c2619db29fc6ff9bc441ed549606a02d31302ee", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|962f00a368bb8bce2cbda0017c2619db29fc6ff9bc441ed549606a02d31302ee"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/radiokapital.py"}, "region": {"startLine": 9}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_extract_adaptive_formats` (dict)"}, "properties": {"repobilityId": 54851, "scanner": "repobility-ast-engine", "fingerprint": "948ac537ad9a5894773061e5837ff0ec527d1c2ea0fc4acd4310699bdc999189", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|948ac537ad9a5894773061e5837ff0ec527d1c2ea0fc4acd4310699bdc999189"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/brainpop.py"}, "region": {"startLine": 49}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_assemble_formats` (dict)"}, "properties": {"repobilityId": 54850, "scanner": "repobility-ast-engine", "fingerprint": "b42d2d3639c1a67a0fe56d677a1fb3ab1a1e46d09c476f2b7cd9708e6c9e179d", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b42d2d3639c1a67a0fe56d677a1fb3ab1a1e46d09c476f2b7cd9708e6c9e179d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/brainpop.py"}, "region": {"startLine": 36}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_call_api` (dict)"}, "properties": {"repobilityId": 54849, "scanner": "repobility-ast-engine", "fingerprint": "9becaffbf61bbb80cf7df95f163afabb12ed195264358b4235a216d61195515c", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9becaffbf61bbb80cf7df95f163afabb12ed195264358b4235a216d61195515c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/dangalplay.py"}, "region": {"startLine": 60}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54848, "scanner": "repobility-ast-engine", "fingerprint": "84737837cf7f8edf0b5f0d252911f4da6705d8bd5dc52c1094abdbe2e7c30994", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|84737837cf7f8edf0b5f0d252911f4da6705d8bd5dc52c1094abdbe2e7c30994"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_http_proxy.py"}, "region": {"startLine": 46}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_sort_formats` (list)"}, "properties": {"repobilityId": 54847, "scanner": "repobility-ast-engine", "fingerprint": "4cb287f2f2af19ad3b523e8a799f0338e245bf98f53df00ab94f0e8f5668c4e3", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4cb287f2f2af19ad3b523e8a799f0338e245bf98f53df00ab94f0e8f5668c4e3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_InfoExtractor.py"}, "region": {"startLine": 56}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `test` (dict)"}, "properties": {"repobilityId": 54846, "scanner": "repobility-ast-engine", "fingerprint": "5d44f3f21311744afe82c28a981fd81a8f83a3af77e5a082c20b7253c579b65f", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5d44f3f21311744afe82c28a981fd81a8f83a3af77e5a082c20b7253c579b65f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_utils.py"}, "region": {"startLine": 2227}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `get_info` (dict)"}, "properties": {"repobilityId": 54843, "scanner": "repobility-ast-engine", "fingerprint": "ee2613e335a75c47521b71826a8045be212c45bbcbf325848e65e2e82a7ea604", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ee2613e335a75c47521b71826a8045be212c45bbcbf325848e65e2e82a7ea604"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_YoutubeDL.py"}, "region": {"startLine": 549}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `read_file` (list)"}, "properties": {"repobilityId": 54842, "scanner": "repobility-ast-engine", "fingerprint": "f2beca4463ff3ceac1859c59e2bfc91a7813f6c356c5ee1d1827a9b25b40b352", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f2beca4463ff3ceac1859c59e2bfc91a7813f6c356c5ee1d1827a9b25b40b352"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_config.py"}, "region": {"startLine": 169}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `read_file` (list)"}, "properties": {"repobilityId": 54841, "scanner": "repobility-ast-engine", "fingerprint": "441b7d611ae97ddb4bfa8031284463d0501512ac0d452738c075586f4d5862c6", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|441b7d611ae97ddb4bfa8031284463d0501512ac0d452738c075586f4d5862c6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_config.py"}, "region": {"startLine": 145}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `read_file` (list)"}, "properties": {"repobilityId": 54840, "scanner": "repobility-ast-engine", "fingerprint": "838dafee556684087d5c3ecda4afa8540dfcc01a66661ecf2429ea85c4737d53", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|838dafee556684087d5c3ecda4afa8540dfcc01a66661ecf2429ea85c4737d53"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_config.py"}, "region": {"startLine": 120}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_set_from_options_callback` (dict)"}, "properties": {"repobilityId": 54815, "scanner": "repobility-ast-engine", "fingerprint": "591c070b9cfe88267bfdefe3f673bc0048f150adf0699154a4cf6d2613d19d92", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|591c070b9cfe88267bfdefe3f673bc0048f150adf0699154a4cf6d2613d19d92"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/options.py"}, "region": {"startLine": 256}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54814, "scanner": "repobility-ast-engine", "fingerprint": "6dcb288dc7c6294d49719b57f359d7e4c459204bcdf62cf82a3e40695abe5d16", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|6dcb288dc7c6294d49719b57f359d7e4c459204bcdf62cf82a3e40695abe5d16"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/YoutubeDL.py"}, "region": {"startLine": 3629}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54813, "scanner": "repobility-ast-engine", "fingerprint": "e197d62f254ed536815ed7dca39abc15112afc06d6f37414227ea7f348a08407", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e197d62f254ed536815ed7dca39abc15112afc06d6f37414227ea7f348a08407"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/YoutubeDL.py"}, "region": {"startLine": 1717}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54812, "scanner": "repobility-ast-engine", "fingerprint": "53798301be12539d3256978dcdffea73d57d38be8f772fa2c01ad46dee0a51e0", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|53798301be12539d3256978dcdffea73d57d38be8f772fa2c01ad46dee0a51e0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/YoutubeDL.py"}, "region": {"startLine": 667}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_delete_downloaded_files` (dict)"}, "properties": {"repobilityId": 54811, "scanner": "repobility-ast-engine", "fingerprint": "058b42362511e2b485d5546e56d154463fbc74b51bfff0d81cd0202239183d08", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|058b42362511e2b485d5546e56d154463fbc74b51bfff0d81cd0202239183d08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/YoutubeDL.py"}, "region": {"startLine": 3739}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `_wait_for_video` (dict)"}, "properties": {"repobilityId": 54810, "scanner": "repobility-ast-engine", "fingerprint": "d842f6359e6b64fcd9c57234dd36b79064a62e83f8489bcafd8f79a1de13c2e4", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d842f6359e6b64fcd9c57234dd36b79064a62e83f8489bcafd8f79a1de13c2e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/YoutubeDL.py"}, "region": {"startLine": 1725}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54809, "scanner": "repobility-ast-engine", "fingerprint": "e16bfbab997774f48d674eaeed38ab3a27bc759ff9f2c23501e000a7c94011a9", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e16bfbab997774f48d674eaeed38ab3a27bc759ff9f2c23501e000a7c94011a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/cache.py"}, "region": {"startLine": 44}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54808, "scanner": "repobility-ast-engine", "fingerprint": "c5249ec6afb3c12400b4a4b3e1faef643c73568c1962345c524e9920d86d04e6", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|c5249ec6afb3c12400b4a4b3e1faef643c73568c1962345c524e9920d86d04e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/cookies.py"}, "region": {"startLine": 74}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54807, "scanner": "repobility-ast-engine", "fingerprint": "b44257347eaf0bc8aedab9bed77bb33a9f40917b717633f35663ca12514bf783", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b44257347eaf0bc8aedab9bed77bb33a9f40917b717633f35663ca12514bf783"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/jsinterp.py"}, "region": {"startLine": 521}}}]}, {"ruleId": "MINED109", "level": "warning", "message": {"text": "Mutable default argument in `resf` (dict)"}, "properties": {"repobilityId": 54806, "scanner": "repobility-ast-engine", "fingerprint": "c6e590e4108b515173d8afb80e384e54c9fbe4e1bc4cc804890532e8ff19cce1", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "mutable-default-arg", "owasp": null, "cwe_ids": ["CWE-1023"], "languages": ["python"], "observations_count": 64867}, "scanner": "repobility-ast-engine", "correlation_key": "fp|c6e590e4108b515173d8afb80e384e54c9fbe4e1bc4cc804890532e8ff19cce1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/jsinterp.py"}, "region": {"startLine": 964}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54805, "scanner": "repobility-ast-engine", "fingerprint": "e52dc044601acd3eecc7d1b8079677d802ef1e724739389dcd5e9d598cdacf48", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e52dc044601acd3eecc7d1b8079677d802ef1e724739389dcd5e9d598cdacf48"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/__init__.py"}, "region": {"startLine": 992}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54803, "scanner": "repobility-ast-engine", "fingerprint": "fed1e35a9a84a22309099b551f1086f66c6d5b0f3ab7ce9e6afdc7a637e4e30c", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|fed1e35a9a84a22309099b551f1086f66c6d5b0f3ab7ce9e6afdc7a637e4e30c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/plugins.py"}, "region": {"startLine": 208}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54802, "scanner": "repobility-ast-engine", "fingerprint": "f6ad2d7fa759a09271129f6f3cfe29ee476378593c47ee41c7330a6c4264eff7", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f6ad2d7fa759a09271129f6f3cfe29ee476378593c47ee41c7330a6c4264eff7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/plugins.py"}, "region": {"startLine": 76}}}]}, {"ruleId": "MINED111", "level": "warning", "message": {"text": "Bare except continues silently"}, "properties": {"repobilityId": 54801, "scanner": "repobility-ast-engine", "fingerprint": "c657b9dcbc12ee6e9f7ed4713f6e5984d450408a2e92232db2c5ea6618eb4cda", "category": "quality", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "bare-except-without-pass", "owasp": null, "cwe_ids": [], "languages": ["python"], "observations_count": 21610}, "scanner": "repobility-ast-engine", "correlation_key": "fp|c657b9dcbc12ee6e9f7ed4713f6e5984d450408a2e92232db2c5ea6618eb4cda"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/check-porn.py"}, "region": {"startLine": 32}}}]}, {"ruleId": "WEB005", "level": "note", "message": {"text": "robots.txt does not advertise a sitemap"}, "properties": {"repobilityId": 55089, "scanner": "repobility-web-presence", "fingerprint": "3081c029dd40a850a205941a65c49104d50d01746dd0d9f643123441ed143a96", "category": "quality", "severity": "low", "confidence": 0.74, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "Discovered robots file or route lacks a Sitemap directive.", "evidence": {"rule_id": "WEB005", "scanner": "repobility-web-presence", "references": ["https://www.rfc-editor.org/rfc/rfc9309", "https://www.sitemaps.org/protocol.html"], "correlation_key": "fp|3081c029dd40a850a205941a65c49104d50d01746dd0d9f643123441ed143a96"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "README.md"}, "region": {"startLine": 1}}}]}, {"ruleId": "DKC010", "level": "note", "message": {"text": "Compose service lacks no-new-privileges hardening"}, "properties": {"repobilityId": 55000, "scanner": "repobility-docker", "fingerprint": "7efe7f2d848589cef90bb36d0c42d1ab809192a8ca73ec677db01b887c0c7ab4", "category": "docker", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "App-like service has no security_opt no-new-privileges setting.", "evidence": {"rule_id": "DKC010", "scanner": "repobility-docker", "service": "musllinux_aarch64_verify", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|7efe7f2d848589cef90bb36d0c42d1ab809192a8ca73ec677db01b887c0c7ab4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 166}}}]}, {"ruleId": "DKC006", "level": "note", "message": {"text": "Compose service does not declare a runtime user"}, "properties": {"repobilityId": 54999, "scanner": "repobility-docker", "fingerprint": "1259971734cd66f14b5a8aa7014978e08d120a47c13e90f261b5d5d8b6b9ebbf", "category": "docker", "severity": "low", "confidence": 0.56, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Service has no user setting and Repobility could not prove the image runs non-root.", "evidence": {"rule_id": "DKC006", "scanner": "repobility-docker", "service": "musllinux_aarch64_verify", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|1259971734cd66f14b5a8aa7014978e08d120a47c13e90f261b5d5d8b6b9ebbf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 166}}}]}, {"ruleId": "DKC010", "level": "note", "message": {"text": "Compose service lacks no-new-privileges hardening"}, "properties": {"repobilityId": 54998, "scanner": "repobility-docker", "fingerprint": "0cc2218f88776886be396878011a5583aefbfc463ddd454e8bd850942e768001", "category": "docker", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "App-like service has no security_opt no-new-privileges setting.", "evidence": {"rule_id": "DKC010", "scanner": "repobility-docker", "service": "musllinux_aarch64", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|0cc2218f88776886be396878011a5583aefbfc463ddd454e8bd850942e768001"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 146}}}]}, {"ruleId": "DKC006", "level": "note", "message": {"text": "Compose service does not declare a runtime user"}, "properties": {"repobilityId": 54997, "scanner": "repobility-docker", "fingerprint": "69be4a9d26e04cc829b3b9077aa4b0ff522f411c99a909baf2a96734b3bd5b30", "category": "docker", "severity": "low", "confidence": 0.56, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Service has no user setting and Repobility could not prove the image runs non-root.", "evidence": {"rule_id": "DKC006", "scanner": "repobility-docker", "service": "musllinux_aarch64", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|69be4a9d26e04cc829b3b9077aa4b0ff522f411c99a909baf2a96734b3bd5b30"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 146}}}]}, {"ruleId": "DKC010", "level": "note", "message": {"text": "Compose service lacks no-new-privileges hardening"}, "properties": {"repobilityId": 54996, "scanner": "repobility-docker", "fingerprint": "5d57af9262a62061b04220118287375c16412ae19e7aa84a9ca06f487411e7ed", "category": "docker", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "App-like service has no security_opt no-new-privileges setting.", "evidence": {"rule_id": "DKC010", "scanner": "repobility-docker", "service": "musllinux_x86_64_verify", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|5d57af9262a62061b04220118287375c16412ae19e7aa84a9ca06f487411e7ed"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 130}}}]}, {"ruleId": "DKC006", "level": "note", "message": {"text": "Compose service does not declare a runtime user"}, "properties": {"repobilityId": 54995, "scanner": "repobility-docker", "fingerprint": "6399cad0bb58da6d6c0e437b57ad38c98df91c1d62b2c1a603a71d012caa9d3a", "category": "docker", "severity": "low", "confidence": 0.56, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Service has no user setting and Repobility could not prove the image runs non-root.", "evidence": {"rule_id": "DKC006", "scanner": "repobility-docker", "service": "musllinux_x86_64_verify", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|6399cad0bb58da6d6c0e437b57ad38c98df91c1d62b2c1a603a71d012caa9d3a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 130}}}]}, {"ruleId": "DKC010", "level": "note", "message": {"text": "Compose service lacks no-new-privileges hardening"}, "properties": {"repobilityId": 54994, "scanner": "repobility-docker", "fingerprint": "ed8323a17a7c92868ff6142d77748677c69803576e2d22a7d9fab4f328dbb08d", "category": "docker", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "App-like service has no security_opt no-new-privileges setting.", "evidence": {"rule_id": "DKC010", "scanner": "repobility-docker", "service": "musllinux_x86_64", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|ed8323a17a7c92868ff6142d77748677c69803576e2d22a7d9fab4f328dbb08d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 110}}}]}, {"ruleId": "DKC006", "level": "note", "message": {"text": "Compose service does not declare a runtime user"}, "properties": {"repobilityId": 54993, "scanner": "repobility-docker", "fingerprint": "0da9a8626962a3d2c2b1bfa233397eda2827a997b9dd78700c11ace6d842d863", "category": "docker", "severity": "low", "confidence": 0.56, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Service has no user setting and Repobility could not prove the image runs non-root.", "evidence": {"rule_id": "DKC006", "scanner": "repobility-docker", "service": "musllinux_x86_64", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|0da9a8626962a3d2c2b1bfa233397eda2827a997b9dd78700c11ace6d842d863"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 110}}}]}, {"ruleId": "DKC010", "level": "note", "message": {"text": "Compose service lacks no-new-privileges hardening"}, "properties": {"repobilityId": 54992, "scanner": "repobility-docker", "fingerprint": "b10dd20f825855bb2990bd1d6829ca0be3dd8d96c6f501c44dda4563dccba026", "category": "docker", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "App-like service has no security_opt no-new-privileges setting.", "evidence": {"rule_id": "DKC010", "scanner": "repobility-docker", "service": "linux_armv7l_verify", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|b10dd20f825855bb2990bd1d6829ca0be3dd8d96c6f501c44dda4563dccba026"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 94}}}]}, {"ruleId": "DKC006", "level": "note", "message": {"text": "Compose service does not declare a runtime user"}, "properties": {"repobilityId": 54991, "scanner": "repobility-docker", "fingerprint": "00270e80c9e16aedae14c127050e777fd0d48b180031225ce1eafbc1a3b0310b", "category": "docker", "severity": "low", "confidence": 0.56, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Service has no user setting and Repobility could not prove the image runs non-root.", "evidence": {"rule_id": "DKC006", "scanner": "repobility-docker", "service": "linux_armv7l_verify", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|00270e80c9e16aedae14c127050e777fd0d48b180031225ce1eafbc1a3b0310b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 94}}}]}, {"ruleId": "DKC010", "level": "note", "message": {"text": "Compose service lacks no-new-privileges hardening"}, "properties": {"repobilityId": 54990, "scanner": "repobility-docker", "fingerprint": "9f84ca71ee1a5947d895f9517417113f4f484d1a4a68ee3cfbab3fb5bd12187f", "category": "docker", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "App-like service has no security_opt no-new-privileges setting.", "evidence": {"rule_id": "DKC010", "scanner": "repobility-docker", "service": "linux_armv7l", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|9f84ca71ee1a5947d895f9517417113f4f484d1a4a68ee3cfbab3fb5bd12187f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 74}}}]}, {"ruleId": "DKC006", "level": "note", "message": {"text": "Compose service does not declare a runtime user"}, "properties": {"repobilityId": 54989, "scanner": "repobility-docker", "fingerprint": "804c08122966e0f3d6edd272523ad895b47c34860a0d1d8eadeea3bf22c4ca95", "category": "docker", "severity": "low", "confidence": 0.56, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Service has no user setting and Repobility could not prove the image runs non-root.", "evidence": {"rule_id": "DKC006", "scanner": "repobility-docker", "service": "linux_armv7l", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|804c08122966e0f3d6edd272523ad895b47c34860a0d1d8eadeea3bf22c4ca95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 74}}}]}, {"ruleId": "DKC010", "level": "note", "message": {"text": "Compose service lacks no-new-privileges hardening"}, "properties": {"repobilityId": 54988, "scanner": "repobility-docker", "fingerprint": "438d25de7053606dac0e0fc11ff9cc1d0f9a0dad9d97630be07a3620808e9cd3", "category": "docker", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "App-like service has no security_opt no-new-privileges setting.", "evidence": {"rule_id": "DKC010", "scanner": "repobility-docker", "service": "linux_aarch64_verify", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|438d25de7053606dac0e0fc11ff9cc1d0f9a0dad9d97630be07a3620808e9cd3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 58}}}]}, {"ruleId": "DKC006", "level": "note", "message": {"text": "Compose service does not declare a runtime user"}, "properties": {"repobilityId": 54987, "scanner": "repobility-docker", "fingerprint": "42ae4d15e9b706ca3e5bb3e2f4358652297237dce192c17ea96ba1e3ec4110f7", "category": "docker", "severity": "low", "confidence": 0.56, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Service has no user setting and Repobility could not prove the image runs non-root.", "evidence": {"rule_id": "DKC006", "scanner": "repobility-docker", "service": "linux_aarch64_verify", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|42ae4d15e9b706ca3e5bb3e2f4358652297237dce192c17ea96ba1e3ec4110f7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 58}}}]}, {"ruleId": "DKC010", "level": "note", "message": {"text": "Compose service lacks no-new-privileges hardening"}, "properties": {"repobilityId": 54986, "scanner": "repobility-docker", "fingerprint": "d091110edb6421081941b98e001722e2dfb49ad2c6ab55dd42b2d8191fdcdd2a", "category": "docker", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "App-like service has no security_opt no-new-privileges setting.", "evidence": {"rule_id": "DKC010", "scanner": "repobility-docker", "service": "linux_aarch64", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|d091110edb6421081941b98e001722e2dfb49ad2c6ab55dd42b2d8191fdcdd2a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 38}}}]}, {"ruleId": "DKC006", "level": "note", "message": {"text": "Compose service does not declare a runtime user"}, "properties": {"repobilityId": 54985, "scanner": "repobility-docker", "fingerprint": "09c6bd68d088498d3f337dc96a666456e1d3419d6a69715a945f3ef30db1a4ca", "category": "docker", "severity": "low", "confidence": 0.56, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Service has no user setting and Repobility could not prove the image runs non-root.", "evidence": {"rule_id": "DKC006", "scanner": "repobility-docker", "service": "linux_aarch64", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|09c6bd68d088498d3f337dc96a666456e1d3419d6a69715a945f3ef30db1a4ca"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 38}}}]}, {"ruleId": "DKC010", "level": "note", "message": {"text": "Compose service lacks no-new-privileges hardening"}, "properties": {"repobilityId": 54984, "scanner": "repobility-docker", "fingerprint": "1be0944d9817112fd84d6a78dea9ad92d9387536c61d0660da463a66f5264977", "category": "docker", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "App-like service has no security_opt no-new-privileges setting.", "evidence": {"rule_id": "DKC010", "scanner": "repobility-docker", "service": "linux_x86_64_verify", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|1be0944d9817112fd84d6a78dea9ad92d9387536c61d0660da463a66f5264977"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKC006", "level": "note", "message": {"text": "Compose service does not declare a runtime user"}, "properties": {"repobilityId": 54983, "scanner": "repobility-docker", "fingerprint": "9df0c46fd2670211e7fd271ef0fa9de663bac690d749c413ed79fe8065bbc4d6", "category": "docker", "severity": "low", "confidence": 0.56, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Service has no user setting and Repobility could not prove the image runs non-root.", "evidence": {"rule_id": "DKC006", "scanner": "repobility-docker", "service": "linux_x86_64_verify", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|9df0c46fd2670211e7fd271ef0fa9de663bac690d749c413ed79fe8065bbc4d6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 22}}}]}, {"ruleId": "DKC010", "level": "note", "message": {"text": "Compose service lacks no-new-privileges hardening"}, "properties": {"repobilityId": 54982, "scanner": "repobility-docker", "fingerprint": "b551ab324abe8d35f4c891c6ad2bd8d8d0c9d3b82002de5eb3002d2af7ae94e6", "category": "docker", "severity": "low", "confidence": 0.62, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "App-like service has no security_opt no-new-privileges setting.", "evidence": {"rule_id": "DKC010", "scanner": "repobility-docker", "service": "linux_x86_64", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|b551ab324abe8d35f4c891c6ad2bd8d8d0c9d3b82002de5eb3002d2af7ae94e6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 2}}}]}, {"ruleId": "DKC006", "level": "note", "message": {"text": "Compose service does not declare a runtime user"}, "properties": {"repobilityId": 54981, "scanner": "repobility-docker", "fingerprint": "7e28dcc4c80a05dc32b4176a6ade105b321c55fd3a2d9c076a770daaa18c6b87", "category": "docker", "severity": "low", "confidence": 0.56, "triageState": "open", "verdict": "needs_review", "isResolved": false, "reason": "Service has no user setting and Repobility could not prove the image runs non-root.", "evidence": {"rule_id": "DKC006", "scanner": "repobility-docker", "service": "linux_x86_64", "references": ["https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html"], "correlation_key": "fp|7e28dcc4c80a05dc32b4176a6ade105b321c55fd3a2d9c076a770daaa18c6b87"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/compose.yml"}, "region": {"startLine": 2}}}]}, {"ruleId": "SEC118", "level": "note", "message": {"text": "[SEC118] UUIDv1 / UUIDv3 used for security-sensitive identifier: UUIDv1 encodes the MAC address and timestamp, making it predictable. Used as a session token or password-reset key, it's enumerable."}, "properties": {"repobilityId": 54972, "scanner": "repobility-threat-engine", "fingerprint": "bda3f82b9bca3679758d87e0a387e7e79715adbe91bc5e6badf71f9a11bf2d42", "category": "crypto", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "uuid.uuid1(", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC118", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|crypto|yt_dlp/extractor/plutotv.py|31|sec118"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/plutotv.py"}, "region": {"startLine": 31}}}]}, {"ruleId": "SEC132", "level": "note", "message": {"text": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the language has cleaner interpolation (Python f-strings since 3.6, JS template literals since ES6). Not a vulnerability on its own, but a style signature of cross-language AI rewrites \u2014 the model wrote idiomatic Java/C# and then translated mechanically. When this style appears in only *some* files of a repo, it's a strong indicator of an AI-driven rewrite that needs a human review p"}, "properties": {"repobilityId": 54965, "scanner": "repobility-threat-engine", "fingerprint": "a57432c7cd78466b9e1c0acd22925f2865ae2e66ae2f207f23ac78b75dbfc3fd", "category": "quality", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "'http://openclassroom.stanford.edu/MainFolder/courses/' + course + '/videos/'", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC132", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|a57432c7cd78466b9e1c0acd22925f2865ae2e66ae2f207f23ac78b75dbfc3fd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/stanfordoc.py"}, "region": {"startLine": 37}}}]}, {"ruleId": "SEC132", "level": "note", "message": {"text": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the language has cleaner interpolation (Python f-strings since 3.6, JS template literals since ES6). Not a vulnerability on its own, but a style signature of cross-language AI rewrites \u2014 the model wrote idiomatic Java/C# and then translated mechanically. When this style appears in only *some* files of a repo, it's a strong indicator of an AI-driven rewrite that needs a human review p"}, "properties": {"repobilityId": 54964, "scanner": "repobility-threat-engine", "fingerprint": "cf3b4e1d926879675b1700c3a04b3f9056839a7616aa0c0f1e88e3efacc48fda", "category": "quality", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "'lecture/' + nt + '.json'", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC132", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|cf3b4e1d926879675b1700c3a04b3f9056839a7616aa0c0f1e88e3efacc48fda"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/lecturio.py"}, "region": {"startLine": 103}}}]}, {"ruleId": "SEC132", "level": "note", "message": {"text": "[SEC132] String concat where the language has interpolation (AI style drift): String built by concatenation where the language has cleaner interpolation (Python f-strings since 3.6, JS template literals since ES6). Not a vulnerability on its own, but a style signature of cross-language AI rewrites \u2014 the model wrote idiomatic Java/C# and then translated mechanically. When this style appears in only *some* files of a repo, it's a strong indicator of an AI-driven rewrite that needs a human review p"}, "properties": {"repobilityId": 54963, "scanner": "repobility-threat-engine", "fingerprint": "a9fa5adc0658e2f4cdb8b51865386494e4c9320fcccff821e5fb9c8c794a9414", "category": "quality", "severity": "low", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "'It looks like ' + webpage_url + ' requires a login. Try specifying a username and password and try", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC132", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|a9fa5adc0658e2f4cdb8b51865386494e4c9320fcccff821e5fb9c8c794a9414"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/gdcvault.py"}, "region": {"startLine": 125}}}]}, {"ruleId": "COMP001", "level": "note", "message": {"text": "[COMP001] High cognitive complexity: Function `_convert_code_blocks` has cognitive complexity 10 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: elif=1, else=2, for=1, if=2, nested_bonus=4."}, "properties": {"repobilityId": 54903, "scanner": "repobility-threat-engine", "fingerprint": "6a802cdf34f59bf5aa1c1b80bfad5ed1e0015f31461f57f27ce8e120c4ec8fb3", "category": "quality", "severity": "low", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 10 (severity threshold for low: 8+).", "evidence": {"scanner": "repobility-threat-engine", "function": "_convert_code_blocks", "breakdown": {"if": 2, "for": 1, "elif": 1, "else": 2, "nested_bonus": 4}, "complexity": 10, "correlation_key": "fp|6a802cdf34f59bf5aa1c1b80bfad5ed1e0015f31461f57f27ce8e120c4ec8fb3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/prepare_manpage.py"}, "region": {"startLine": 46}}}]}, {"ruleId": "COMP001", "level": "note", "message": {"text": "[COMP001] High cognitive complexity: Function `build_completion` has cognitive complexity 9 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand \u2014 nested branches, boolean chains, and recursion all weigh in. Breakdown: for=2, if=2, nested_bonus=5."}, "properties": {"repobilityId": 54901, "scanner": "repobility-threat-engine", "fingerprint": "380ba5571bace9933deebd2e92a377d47e763d44d827b634d1e803ffb8742418", "category": "quality", "severity": "low", "confidence": 0.95, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "AST-derived cognitive complexity score = 9 (severity threshold for low: 8+).", "evidence": {"scanner": "repobility-threat-engine", "function": "build_completion", "breakdown": {"if": 2, "for": 2, "nested_bonus": 5}, "complexity": 9, "correlation_key": "fp|380ba5571bace9933deebd2e92a377d47e763d44d827b634d1e803ffb8742418"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/fish-completion.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "DKR002", "level": "none", "message": {"text": "Dockerfile base image is selected through a build variable"}, "properties": {"repobilityId": 54978, "scanner": "repobility-docker", "fingerprint": "6c9be1fac4e2ef8913253ead3598b15178a3093fbc5e88cf348fb462d97789a9", "category": "docker", "severity": "info", "confidence": 0.48, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Base image contains a variable; manual review is needed to avoid false positives.", "evidence": {"image": "$VERIFYIMAGE", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/"], "correlation_key": "fp|6c9be1fac4e2ef8913253ead3598b15178a3093fbc5e88cf348fb462d97789a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/linux/Dockerfile"}, "region": {"startLine": 12}}}]}, {"ruleId": "DKR002", "level": "none", "message": {"text": "Dockerfile base image is selected through a build variable"}, "properties": {"repobilityId": 54977, "scanner": "repobility-docker", "fingerprint": "53123e38156ca55d2d21521e67f2937bdba04418618f672e35036548e04d3a36", "category": "docker", "severity": "info", "confidence": 0.48, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Base image contains a variable; manual review is needed to avoid false positives.", "evidence": {"image": "$BUILDIMAGE", "rule_id": "DKR002", "scanner": "repobility-docker", "references": ["https://docs.docker.com/develop/develop-images/dockerfile_best-practices/", "https://docs.docker.com/scout/policy/"], "correlation_key": "fp|53123e38156ca55d2d21521e67f2937bdba04418618f672e35036548e04d3a36"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/linux/Dockerfile"}, "region": {"startLine": 5}}}]}, {"ruleId": "MINED062", "level": "none", "message": {"text": "[MINED062] Python Dataclass No Fields: @dataclass over an empty class \u2014 unfinished model."}, "properties": {"repobilityId": 54976, "scanner": "repobility-threat-engine", "fingerprint": "2dd3dfe3a37e9f3f0addf652c8cfcbcabd0fc6be9f8cb7e5dacc2534e3ebe690", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-dataclass-no-fields", "owasp": null, "cwe_ids": [], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348046+00:00", "triaged_in_corpus": 10, "observations_count": 92448, "ai_coder_pattern_id": 144}, "scanner": "repobility-threat-engine", "correlation_key": "fp|2dd3dfe3a37e9f3f0addf652c8cfcbcabd0fc6be9f8cb7e5dacc2534e3ebe690"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/networking/impersonate.py"}, "region": {"startLine": 15}}}]}, {"ruleId": "SEC127", "level": "none", "message": {"text": "[SEC127] AI agent stub \u2014 TODO: implement / pass placeholder body (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 54971, "scanner": "repobility-threat-engine", "fingerprint": "53ebc417b7afe07ee4200bf88b1474b3b12222032b82952c482f7ed06a6acecf", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC127", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|53ebc417b7afe07ee4200bf88b1474b3b12222032b82952c482f7ed06a6acecf"}}}, {"ruleId": "MINED057", "level": "none", "message": {"text": "[MINED057] Todo Bomb: Code path with a TODO/FIXME/HACK comment that gates correctness \u2014 left for later but never resolved."}, "properties": {"repobilityId": 54967, "scanner": "repobility-threat-engine", "fingerprint": "7a8893ed59bb48dbcea2150ce2229926f47d3c220e9bcb2ff937343d586694e1", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "todo-bomb", "owasp": null, "cwe_ids": [], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348035+00:00", "triaged_in_corpus": 10, "observations_count": 255662, "ai_coder_pattern_id": 4}, "scanner": "repobility-threat-engine", "correlation_key": "fp|7a8893ed59bb48dbcea2150ce2229926f47d3c220e9bcb2ff937343d586694e1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/lecture2go.py"}, "region": {"startLine": 47}}}]}, {"ruleId": "MINED053", "level": "none", "message": {"text": "[MINED053] Placeholder Default Username: foo@bar.com / john.doe@example.com / admin/admin / changeme \u2014 typical AI placeholder credentials."}, "properties": {"repobilityId": 54962, "scanner": "repobility-threat-engine", "fingerprint": "4ff2c3ea54c37d4453db73d699ef8b212782c16186b117d540d3e28e15aa4ee0", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "placeholder-default-username", "owasp": null, "cwe_ids": ["CWE-1392", "CWE-798"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348025+00:00", "triaged_in_corpus": 10, "observations_count": 456953, "ai_coder_pattern_id": 44}, "scanner": "repobility-threat-engine", "correlation_key": "fp|4ff2c3ea54c37d4453db73d699ef8b212782c16186b117d540d3e28e15aa4ee0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/thisoldhouse.py"}, "region": {"startLine": 84}}}]}, {"ruleId": "MINED053", "level": "none", "message": {"text": "[MINED053] Placeholder Default Username: foo@bar.com / john.doe@example.com / admin/admin / changeme \u2014 typical AI placeholder credentials."}, "properties": {"repobilityId": 54961, "scanner": "repobility-threat-engine", "fingerprint": "813a04271eca05e19619ce05d66469bb579d5f6aa679cfd7d1347bbaf739bc23", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "placeholder-default-username", "owasp": null, "cwe_ids": ["CWE-1392", "CWE-798"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348025+00:00", "triaged_in_corpus": 10, "observations_count": 456953, "ai_coder_pattern_id": 44}, "scanner": "repobility-threat-engine", "correlation_key": "fp|813a04271eca05e19619ce05d66469bb579d5f6aa679cfd7d1347bbaf739bc23"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/freetv.py"}, "region": {"startLine": 11}}}]}, {"ruleId": "SEC002", "level": "none", "message": {"text": "[SEC002] Hardcoded API Key (and 4 more): Same pattern found in 4 additional files. Review if needed."}, "properties": {"repobilityId": 54956, "scanner": "repobility-threat-engine", "fingerprint": "2b3831bad04d863d09be8843ba458a98762e713410161137c17a8e4f1401e6ff", "category": "credential_exposure", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 4 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 4 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC002", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|2b3831bad04d863d09be8843ba458a98762e713410161137c17a8e4f1401e6ff"}}}, {"ruleId": "SEC043", "level": "none", "message": {"text": "[SEC043] Secret stored in Odoo ir.config_parameter \u2014 broadly readable (and 6 more): Same pattern found in 6 additional files. Review if needed."}, "properties": {"repobilityId": 54952, "scanner": "repobility-threat-engine", "fingerprint": "80a213b1c946b8ecb40508c46aa615bc731b956a478e8115b57dd70eecc437d7", "category": "secret", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 6 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 6 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC043", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|80a213b1c946b8ecb40508c46aa615bc731b956a478e8115b57dd70eecc437d7"}}}, {"ruleId": "MINED047", "level": "none", "message": {"text": "[MINED047] Emoji In Source (and 5 more): Same pattern found in 5 additional files. Review if needed."}, "properties": {"repobilityId": 54948, "scanner": "repobility-threat-engine", "fingerprint": "c08a9d08d0469b7953a8267504a99ee66a3f8e3a0a53baba2485171e91a4c0d5", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 5 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "emoji-in-source", "owasp": null, "cwe_ids": [], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348010+00:00", "triaged_in_corpus": 9, "observations_count": 1468364, "ai_coder_pattern_id": 29}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|c08a9d08d0469b7953a8267504a99ee66a3f8e3a0a53baba2485171e91a4c0d5", "aggregated_count": 5}}}, {"ruleId": "MINED047", "level": "none", "message": {"text": "[MINED047] Emoji In Source: Emoji \u2705 \u274c \ud83d\ude80 in code/comments \u2014 common AI output unless explicitly requested."}, "properties": {"repobilityId": 54947, "scanner": "repobility-threat-engine", "fingerprint": "3be878cb3b89b09b6c463abb773158d8751a4250def1b9890c0906ba6310ff0d", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "emoji-in-source", "owasp": null, "cwe_ids": [], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348010+00:00", "triaged_in_corpus": 9, "observations_count": 1468364, "ai_coder_pattern_id": 29}, "scanner": "repobility-threat-engine", "correlation_key": "fp|3be878cb3b89b09b6c463abb773158d8751a4250def1b9890c0906ba6310ff0d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/francaisfacile.py"}, "region": {"startLine": 18}}}]}, {"ruleId": "MINED047", "level": "none", "message": {"text": "[MINED047] Emoji In Source: Emoji \u2705 \u274c \ud83d\ude80 in code/comments \u2014 common AI output unless explicitly requested."}, "properties": {"repobilityId": 54946, "scanner": "repobility-threat-engine", "fingerprint": "c41ebca111d152a412dbdb27d5dfabfb432edd1548d44413a9e6c0c0dd9e9428", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "emoji-in-source", "owasp": null, "cwe_ids": [], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348010+00:00", "triaged_in_corpus": 9, "observations_count": 1468364, "ai_coder_pattern_id": 29}, "scanner": "repobility-threat-engine", "correlation_key": "fp|c41ebca111d152a412dbdb27d5dfabfb432edd1548d44413a9e6c0c0dd9e9428"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/fptplay.py"}, "region": {"startLine": 24}}}]}, {"ruleId": "MINED047", "level": "none", "message": {"text": "[MINED047] Emoji In Source: Emoji \u2705 \u274c \ud83d\ude80 in code/comments \u2014 common AI output unless explicitly requested."}, "properties": {"repobilityId": 54945, "scanner": "repobility-threat-engine", "fingerprint": "0bb2ab92cd6021e45aea1b1c4a597ce52e75e1dced4b9afb27fd833cdd8996e4", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "emoji-in-source", "owasp": null, "cwe_ids": [], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348010+00:00", "triaged_in_corpus": 9, "observations_count": 1468364, "ai_coder_pattern_id": 29}, "scanner": "repobility-threat-engine", "correlation_key": "fp|0bb2ab92cd6021e45aea1b1c4a597ce52e75e1dced4b9afb27fd833cdd8996e4"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/canalalpha.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "SEC061", "level": "none", "message": {"text": "[SEC061] JWT in source (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 54944, "scanner": "repobility-threat-engine", "fingerprint": "83c052ff478b2e63f39fffc90774c50b03043dd37eaacee3c6d0fdcd6eddf3e1", "category": "secret", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC061", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|83c052ff478b2e63f39fffc90774c50b03043dd37eaacee3c6d0fdcd6eddf3e1"}}}, {"ruleId": "SEC103", "level": "none", "message": {"text": "[SEC103] LDAP injection \u2014 non-constant search filter (and 35 more): Same pattern found in 35 additional files. Review if needed."}, "properties": {"repobilityId": 54939, "scanner": "repobility-threat-engine", "fingerprint": "2efadcbc414f02d02dcdbe04dc547942374dcbca0aea397f68e89e399b79330d", "category": "injection", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 35 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 35 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC103", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|2efadcbc414f02d02dcdbe04dc547942374dcbca0aea397f68e89e399b79330d"}}}, {"ruleId": "SEC013", "level": "none", "message": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path (and 1 more): Same pattern found in 1 additional files. Review if needed."}, "properties": {"repobilityId": 54935, "scanner": "repobility-threat-engine", "fingerprint": "75f22750f5eefefb3a3ce8f933bc32c82dff4c8e9ca3ec94aeac313553cfbd0d", "category": "path_traversal", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 1 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC013", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|75f22750f5eefefb3a3ce8f933bc32c82dff4c8e9ca3ec94aeac313553cfbd0d"}}}, {"ruleId": "MINED004", "level": "none", "message": {"text": "[MINED004] Weak Crypto (and 690 more): Same pattern found in 690 additional files. Review if needed."}, "properties": {"repobilityId": 54931, "scanner": "repobility-threat-engine", "fingerprint": "82180c0204eb3d8ef324c6d82d71620c28a080eb358e28c1b9db6c0627f2d802", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 690 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|82180c0204eb3d8ef324c6d82d71620c28a080eb358e28c1b9db6c0627f2d802", "aggregated_count": 690}}}, {"ruleId": "MINED072", "level": "none", "message": {"text": "[MINED072] Python Pass Only Class (and 2 more): Same pattern found in 2 additional files. Review if needed."}, "properties": {"repobilityId": 54927, "scanner": "repobility-threat-engine", "fingerprint": "bb0f0645c53dd53a2881272ebddc5b10f2f8c07d678fc34cb2964aafdaa17d8a", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 2 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "python-pass-only-class", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348069+00:00", "triaged_in_corpus": 10, "observations_count": 14245, "ai_coder_pattern_id": 143}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|bb0f0645c53dd53a2881272ebddc5b10f2f8c07d678fc34cb2964aafdaa17d8a", "aggregated_count": 2}}}, {"ruleId": "MINED072", "level": "none", "message": {"text": "[MINED072] Python Pass Only Class: class Foo: pass \u2014 stub waiting to be filled in."}, "properties": {"repobilityId": 54926, "scanner": "repobility-threat-engine", "fingerprint": "9752e79f9daaba4a361f8f07a36259cb284ee873b2333ab7f8683b6a6889b295", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-pass-only-class", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348069+00:00", "triaged_in_corpus": 10, "observations_count": 14245, "ai_coder_pattern_id": 143}, "scanner": "repobility-threat-engine", "correlation_key": "fp|9752e79f9daaba4a361f8f07a36259cb284ee873b2333ab7f8683b6a6889b295"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/networking/exceptions.py"}, "region": {"startLine": 90}}}]}, {"ruleId": "MINED072", "level": "none", "message": {"text": "[MINED072] Python Pass Only Class: class Foo: pass \u2014 stub waiting to be filled in."}, "properties": {"repobilityId": 54925, "scanner": "repobility-threat-engine", "fingerprint": "d44e5c109711083bc8889d77aba8641b2a1cec48487f2fd54fb4e0d9c2d3301b", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-pass-only-class", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348069+00:00", "triaged_in_corpus": 10, "observations_count": 14245, "ai_coder_pattern_id": 143}, "scanner": "repobility-threat-engine", "correlation_key": "fp|d44e5c109711083bc8889d77aba8641b2a1cec48487f2fd54fb4e0d9c2d3301b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/minicurses.py"}, "region": {"startLine": 105}}}]}, {"ruleId": "MINED072", "level": "none", "message": {"text": "[MINED072] Python Pass Only Class: class Foo: pass \u2014 stub waiting to be filled in."}, "properties": {"repobilityId": 54924, "scanner": "repobility-threat-engine", "fingerprint": "93892ee91cbe2748f7abbf8c326fc6b675380b3509b7cabab45867021b9341c1", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-pass-only-class", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348069+00:00", "triaged_in_corpus": 10, "observations_count": 14245, "ai_coder_pattern_id": 143}, "scanner": "repobility-threat-engine", "correlation_key": "fp|93892ee91cbe2748f7abbf8c326fc6b675380b3509b7cabab45867021b9341c1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/compat/__init__.py"}, "region": {"startLine": 14}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https (and 359 more): Same pattern found in 359 additional files. Review if needed."}, "properties": {"repobilityId": 54923, "scanner": "repobility-threat-engine", "fingerprint": "09a491172e55632168dc19429d13e8506359a6f099224faf04de8aaaf99ef5d2", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 359 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|09a491172e55632168dc19429d13e8506359a6f099224faf04de8aaaf99ef5d2", "aggregated_count": 359}}}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 54922, "scanner": "repobility-threat-engine", "fingerprint": "f139874474ad72dc7786858addc4f20f4e495a96969cff98ccf2a8468352b394", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|f139874474ad72dc7786858addc4f20f4e495a96969cff98ccf2a8468352b394"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/abcnews.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 54921, "scanner": "repobility-threat-engine", "fingerprint": "b3c92ee5c2e929a167f9b53031fb6b981b8bf11912f55e262b011c033c9c88fe", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|b3c92ee5c2e929a167f9b53031fb6b981b8bf11912f55e262b011c033c9c88fe"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/ism.py"}, "region": {"startLine": 175}}}]}, {"ruleId": "MINED043", "level": "none", "message": {"text": "[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data."}, "properties": {"repobilityId": 54920, "scanner": "repobility-threat-engine", "fingerprint": "6dd96f10c0a2927ec5fb9a52ab5cfcc0551db32de30ff1d9dc77d1dbfad04688", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "http-not-https", "owasp": "A02:2021", "cwe_ids": ["CWE-319"], "precision": 0.917, "promoted_at": "2026-05-18T14:01:32.347999+00:00", "triaged_in_corpus": 12, "observations_count": 4113831, "ai_coder_pattern_id": 15}, "scanner": "repobility-threat-engine", "correlation_key": "fp|6dd96f10c0a2927ec5fb9a52ab5cfcc0551db32de30ff1d9dc77d1dbfad04688"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/utils.py"}, "region": {"startLine": 85}}}]}, {"ruleId": "MINED049", "level": "none", "message": {"text": "[MINED049] Print Pii: Logging password/token/email/ssn directly to stdout."}, "properties": {"repobilityId": 54916, "scanner": "repobility-threat-engine", "fingerprint": "27d3c39bbc0df4eb6921940d89c85b231afec240cb44c263a0a888abfaf3fd4f", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "print-pii", "owasp": "A09:2021", "cwe_ids": ["CWE-532"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348015+00:00", "triaged_in_corpus": 12, "observations_count": 676566, "ai_coder_pattern_id": 26}, "scanner": "repobility-threat-engine", "correlation_key": "fp|27d3c39bbc0df4eb6921940d89c85b231afec240cb44c263a0a888abfaf3fd4f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/setup_variables.py"}, "region": {"startLine": 135}}}]}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function (and 19 more): Same pattern found in 19 additional files. Review if needed."}, "properties": {"repobilityId": 54915, "scanner": "repobility-threat-engine", "fingerprint": "aa1cd71561e05e95642798878be0af8ceb3a68e6c4fc5321d404c6e036a65d1a", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 19 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|aa1cd71561e05e95642798878be0af8ceb3a68e6c4fc5321d404c6e036a65d1a", "aggregated_count": 19}}}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment."}, "properties": {"repobilityId": 54914, "scanner": "repobility-threat-engine", "fingerprint": "49f4a49081f39ee38a1661b5bcd91f140c08261001d875d4097e1e1992ffee96", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "correlation_key": "fp|49f4a49081f39ee38a1661b5bcd91f140c08261001d875d4097e1e1992ffee96"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/__pyinstaller/hook-yt_dlp.py"}, "region": {"startLine": 16}}}]}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment."}, "properties": {"repobilityId": 54913, "scanner": "repobility-threat-engine", "fingerprint": "295e76f688d5ccffc8718862275e2f9abff0739620178731b91ef26f70808c08", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "correlation_key": "fp|295e76f688d5ccffc8718862275e2f9abff0739620178731b91ef26f70808c08"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/tomlparse.py"}, "region": {"startLine": 130}}}]}, {"ruleId": "MINED050", "level": "none", "message": {"text": "[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment."}, "properties": {"repobilityId": 54912, "scanner": "repobility-threat-engine", "fingerprint": "fdffad43cc113afc070d0ad87e852110abb734a8978c2042606b13cf43bcba49", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "stub-only-function", "owasp": null, "cwe_ids": ["CWE-1188"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348017+00:00", "triaged_in_corpus": 12, "observations_count": 633513, "ai_coder_pattern_id": 2}, "scanner": "repobility-threat-engine", "correlation_key": "fp|fdffad43cc113afc070d0ad87e852110abb734a8978c2042606b13cf43bcba49"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/run_tests.py"}, "region": {"startLine": 67}}}]}, {"ruleId": "MINED001", "level": "none", "message": {"text": "[MINED001] Bare Except Pass (and 3 more): Same pattern found in 3 additional files. Review if needed."}, "properties": {"repobilityId": 54908, "scanner": "repobility-threat-engine", "fingerprint": "bd632c4ade7e75e1a901d5e2da5e3e85b36e57e91ccdfbe5098de1738a5edc96", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 3 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "aggregated": true, "correlation_key": "fp|bd632c4ade7e75e1a901d5e2da5e3e85b36e57e91ccdfbe5098de1738a5edc96", "aggregated_count": 3}}}, {"ruleId": "COMP001", "level": "none", "message": {"text": "[COMP001] High cognitive complexity (and 391 more): Same pattern found in 391 additional files. Review if needed."}, "properties": {"repobilityId": 54904, "scanner": "repobility-threat-engine", "fingerprint": "ecfb6d34a0d1753614ad835641edfd2ae4995f74cdcf92be60ef5e9e7383d0f3", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 391 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"scanner": "repobility-threat-engine", "function": "build_completion", "breakdown": {"if": 2, "for": 2, "nested_bonus": 5}, "aggregated": true, "complexity": 9, "correlation_key": "fp|ecfb6d34a0d1753614ad835641edfd2ae4995f74cdcf92be60ef5e9e7383d0f3", "aggregated_count": 391}}}, {"ruleId": "SEC128", "level": "none", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake) (and 66 more): Same pattern found in 66 additional files. Review if needed."}, "properties": {"repobilityId": 54900, "scanner": "repobility-threat-engine", "fingerprint": "d2817d61f796f2cb61d1eb211436925b67a90b3ee05f2b18642159685d84c3d8", "category": "quality", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 66 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 66 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|d2817d61f796f2cb61d1eb211436925b67a90b3ee05f2b18642159685d84c3d8"}}}, {"ruleId": "MINED077", "level": "none", "message": {"text": "[MINED077] Python Open No Context: fp = open(path) outside with-block leaks file handles."}, "properties": {"repobilityId": 54896, "scanner": "repobility-threat-engine", "fingerprint": "7e1252fe4fc96ee0879cd3ea18887a61ce02bce3cb07ae76257451b90b6437d0", "category": "quality", "severity": "info", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "python-open-no-context", "owasp": null, "cwe_ids": ["CWE-772"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.348081+00:00", "triaged_in_corpus": 12, "observations_count": 7864, "ai_coder_pattern_id": 123}, "scanner": "repobility-threat-engine", "correlation_key": "fp|7e1252fe4fc96ee0879cd3ea18887a61ce02bce3cb07ae76257451b90b6437d0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/check-porn.py"}, "region": {"startLine": 24}}}]}, {"ruleId": "SEC029", "level": "none", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input (and 346 more): Same pattern found in 346 additional files. Review if needed."}, "properties": {"repobilityId": 54895, "scanner": "repobility-threat-engine", "fingerprint": "9abcf1e61fa41e14cd2dd79f5f5cb9650bfb3093c00c35e86e8290563a7b2693", "category": "ssrf", "severity": "info", "confidence": 0.2, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Deduplicated summary only: 346 additional occurrences found. The top occurrences remain visible as actionable findings.", "evidence": {"reason": "Deduplicated summary only: 346 additional occurrences found. The top occurrences remain visible as actionable findings.", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 0.2, "correlation_key": "fp|9abcf1e61fa41e14cd2dd79f5f5cb9650bfb3093c00c35e86e8290563a7b2693"}}}, {"ruleId": "SEC020", "level": "none", "message": {"text": "[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for troubleshooting."}, "properties": {"repobilityId": 54891, "scanner": "repobility-threat-engine", "fingerprint": "fc8b7f58ea14158f3abca641cdd86b9bacb7a09f879ecc12015747ac12ca3d6f", "category": "credential_exposure", "severity": "info", "confidence": 0.15, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Log message mentions credential-related metadata but does not print a credential-bearing value", "evidence": {"match": "print('::error::Repository access secret ARCHIVE_REPO_TOKEN not found')", "reason": "Log message mentions credential-related metadata but does not print a credential-bearing value", "rule_id": "SEC020", "scanner": "repobility-threat-engine", "confidence": 0.15, "correlation_key": "secret|token|13|print ::error::repository access secret archive_repo_token not found"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/setup_variables.py"}, "region": {"startLine": 135}}}]}, {"ruleId": "SEC020", "level": "none", "message": {"text": "[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for troubleshooting."}, "properties": {"repobilityId": 54890, "scanner": "repobility-threat-engine", "fingerprint": "611b17f3a34a2d3df9c684406e3c8d6e060f36e20ada367667cdf696c79d8d35", "category": "credential_exposure", "severity": "info", "confidence": 0.1, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Safe context pattern detected", "evidence": {"match": "print(sysconfig.get_path(\"purelib\")", "reason": "Safe context pattern detected", "rule_id": "SEC020", "scanner": "repobility-threat-engine", "confidence": 0.1, "correlation_key": "secret|token|1|print sysconfig.get_path purelib"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "bundle/docker/linux/build.sh"}, "region": {"startLine": 12}}}]}, {"ruleId": "MINED099", "level": "error", "message": {"text": "[MINED099] Hardcoded Secret: API key, AWS access key, GitHub token, Slack token, OpenAI key, or private key embedded directly in source. AI assistants frequently leak demo credentials."}, "properties": {"repobilityId": 54974, "scanner": "repobility-threat-engine", "fingerprint": "082ee136809879278daa0defa091cf6bf4db520ca787cc90944b5aa829bd9559", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "hardcoded-secret", "owasp": "A07:2021", "cwe_ids": ["CWE-798"], "languages": [], "precision": 1.0, "promoted_at": "2026-05-18T15:01:13.611213+00:00", "triaged_in_corpus": 8, "observations_count": 88419, "ai_coder_pattern_id": 9}, "scanner": "repobility-threat-engine", "correlation_key": "fp|082ee136809879278daa0defa091cf6bf4db520ca787cc90944b5aa829bd9559"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/shahid.py"}, "region": {"startLine": 39}}}]}, {"ruleId": "SEC043", "level": "error", "message": {"text": "[SEC043] Secret stored in Odoo ir.config_parameter \u2014 broadly readable: ir.config_parameter is readable by any user with read access on the model \u2014 typically all internal users. Storing API keys, OAuth client secrets, or passwords there means any admin-account compromise, or any third-party module with broad read scope, exposes the credential. Odoo-specific instance of CWE-922 (insecure storage of sensitive info)."}, "properties": {"repobilityId": 54951, "scanner": "repobility-threat-engine", "fingerprint": "8b633ef893665b6f654e91357ad83d9ddaf410270009cd46816a12a03f1fdfcc", "category": "secret", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "get_param('videopassword", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC043", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "secret|yt_dlp/extractor/gofile.py|6|get_param videopassword"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/gofile.py"}, "region": {"startLine": 65}}}]}, {"ruleId": "SEC043", "level": "error", "message": {"text": "[SEC043] Secret stored in Odoo ir.config_parameter \u2014 broadly readable: ir.config_parameter is readable by any user with read access on the model \u2014 typically all internal users. Storing API keys, OAuth client secrets, or passwords there means any admin-account compromise, or any third-party module with broad read scope, exposes the credential. Odoo-specific instance of CWE-922 (insecure storage of sensitive info)."}, "properties": {"repobilityId": 54950, "scanner": "repobility-threat-engine", "fingerprint": "3852cd7ff8f106bc869ce30ffe6bf4a3b2f2e304ff9bbe43a9d53249c3a2f288", "category": "secret", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "get_param('videopassword", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC043", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "secret|yt_dlp/extractor/dropbox.py|6|get_param videopassword"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/dropbox.py"}, "region": {"startLine": 62}}}]}, {"ruleId": "SEC043", "level": "error", "message": {"text": "[SEC043] Secret stored in Odoo ir.config_parameter \u2014 broadly readable: ir.config_parameter is readable by any user with read access on the model \u2014 typically all internal users. Storing API keys, OAuth client secrets, or passwords there means any admin-account compromise, or any third-party module with broad read scope, exposes the credential. Odoo-specific instance of CWE-922 (insecure storage of sensitive info)."}, "properties": {"repobilityId": 54949, "scanner": "repobility-threat-engine", "fingerprint": "4a7f9fc361fa5b75ef2ea2c8d99fc21c09c7e38f1713869e3ed90a2251763452", "category": "secret", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "get_param('videopassword", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC043", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "secret|token|4|get_param videopassword"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/ciscowebex.py"}, "region": {"startLine": 42}}}]}, {"ruleId": "SEC061", "level": "error", "message": {"text": "[SEC061] JWT in source: Three-part JWT (likely signed token). Even if expired, may leak structure or claims. Ported from gitleaks jwt (MIT)."}, "properties": {"repobilityId": 54943, "scanner": "repobility-threat-engine", "fingerprint": "6c4c4c13708b32f9018d675b290ec11dadb7ee05c56885fb940991029405a84a", "category": "secret", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJraWQiOiJmYTA0YjViMzQ2NDkwYTM5NWJiNzQ1NWFhZTA2YzYwZSIsInN1YiI", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC061", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "secret|token|4|token"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/cloudflarestream.py"}, "region": {"startLine": 46}}}]}, {"ruleId": "SEC061", "level": "error", "message": {"text": "[SEC061] JWT in source: Three-part JWT (likely signed token). Even if expired, may leak structure or claims. Ported from gitleaks jwt (MIT)."}, "properties": {"repobilityId": 54942, "scanner": "repobility-threat-engine", "fingerprint": "1ad52df0a4b18ede819c44c6ad406a0173e1c9a402b8d94729cf1f25860cf1b9", "category": "secret", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "eyJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJiYkNvbGxhYkFwaSIsInN1YiI6ImJiQ29sbGFiQXBpIiwiZXhwIjoxNzQwNDE2NDgzLCJ", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC061", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "secret|token|15|token"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/blackboardcollaborate.py"}, "region": {"startLine": 159}}}]}, {"ruleId": "SEC061", "level": "error", "message": {"text": "[SEC061] JWT in source: Three-part JWT (likely signed token). Even if expired, may leak structure or claims. Ported from gitleaks jwt (MIT)."}, "properties": {"repobilityId": 54941, "scanner": "repobility-threat-engine", "fingerprint": "62b0b39acc72e41fa0e52b6e9674811cc8b9e5b201293d3905eaf6e549dcf875", "category": "secret", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "eyJhbGciOiJSUzI1NiJ9.eyJzdWIiOiIwNjg5ZmU2My00OTc5LTQxZmQtYWYxNC1hYjVlNmJjNWVkZWIiLCJuYmYiOjE1MzcxOTA", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC061", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "secret|token|8|token"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/adultswim.py"}, "region": {"startLine": 87}}}]}, {"ruleId": "SEC103", "level": "error", "message": {"text": "[SEC103] LDAP injection \u2014 non-constant search filter: User input concatenated into an LDAP search filter. Attackers inject `*)(uid=*` style payloads to bypass auth or enumerate accounts."}, "properties": {"repobilityId": 54938, "scanner": "repobility-threat-engine", "fingerprint": "25e5fa8af04042de32954a9f174807c2908a209b74a5fa8e9b56c415910073f8", "category": "injection", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".search(r'(?P<minutes>[0-9]+)", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC103", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|token|166|sec103"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/appletrailers.py"}, "region": {"startLine": 166}}}]}, {"ruleId": "SEC103", "level": "error", "message": {"text": "[SEC103] LDAP injection \u2014 non-constant search filter: User input concatenated into an LDAP search filter. Attackers inject `*)(uid=*` style payloads to bypass auth or enumerate accounts."}, "properties": {"repobilityId": 54937, "scanner": "repobility-threat-engine", "fingerprint": "6f92d29fceb93586721abfa802bba635672acb9ae05485d67b9a44455aeed015", "category": "injection", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".search(r'(\\d+)", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC103", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|yt_dlp/extractor/aol.py|110|sec103"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/aol.py"}, "region": {"startLine": 110}}}]}, {"ruleId": "SEC103", "level": "error", "message": {"text": "[SEC103] LDAP injection \u2014 non-constant search filter: User input concatenated into an LDAP search filter. Attackers inject `*)(uid=*` style payloads to bypass auth or enumerate accounts."}, "properties": {"repobilityId": 54936, "scanner": "repobility-threat-engine", "fingerprint": "2f13f1518dfebe6fca91538254033b9600de842802d578987ab144e04e2cf93f", "category": "injection", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": ".search(r'([0-9]+\\.[0-9]{3})", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC103", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|injection|yt_dlp/downloader/rtmp.py|44|sec103"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/rtmp.py"}, "region": {"startLine": 44}}}]}, {"ruleId": "SEC013", "level": "error", "message": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files."}, "properties": {"repobilityId": 54934, "scanner": "repobility-threat-engine", "fingerprint": "59d7a64574a5bb80cff6cbc41581f0538267def47d31ed9ab6e027e3b3ed432f", "category": "path_traversal", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "User-controlled input detected in file path construction", "evidence": {"match": "open(_cloudfront_auth_request", "reason": "User-controlled input detected in file path construction", "rule_id": "SEC013", "scanner": "repobility-threat-engine", "confidence": 0.8, "correlation_key": "code|path_traversal|yt_dlp/downloader/soop.py|57|sec013"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/soop.py"}, "region": {"startLine": 57}}}]}, {"ruleId": "SEC013", "level": "error", "message": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files."}, "properties": {"repobilityId": 54933, "scanner": "repobility-threat-engine", "fingerprint": "934a92b17fb3a4a029032cd4e50f190b9508a9d0acb6be199b243fd2ec7066bf", "category": "path_traversal", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "User-controlled input detected in file path construction", "evidence": {"match": "open(Request", "reason": "User-controlled input detected in file path construction", "rule_id": "SEC013", "scanner": "repobility-threat-engine", "confidence": 0.8, "correlation_key": "code|path_traversal|token|28|sec013"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/niconico.py"}, "region": {"startLine": 28}}}]}, {"ruleId": "SEC013", "level": "error", "message": {"text": "[SEC013] Path Traversal \u2014 User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files."}, "properties": {"repobilityId": 54932, "scanner": "repobility-threat-engine", "fingerprint": "9ed2c2455ba7915289b161ad3b68033e140db502265ed9eda64054a64fbb2986", "category": "path_traversal", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "likely", "isResolved": false, "reason": "User-controlled input detected in file path construction", "evidence": {"match": "open(Request", "reason": "User-controlled input detected in file path construction", "rule_id": "SEC013", "scanner": "repobility-threat-engine", "confidence": 0.8, "correlation_key": "code|path_traversal|token|48|sec013"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/bunnycdn.py"}, "region": {"startLine": 48}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 54930, "scanner": "repobility-threat-engine", "fingerprint": "d6d19e443d39f9ffd99ab488d9e8a8d2bc51e0f1e3df522e3baeb951137573df", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|d6d19e443d39f9ffd99ab488d9e8a8d2bc51e0f1e3df522e3baeb951137573df"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/abcotvs.py"}, "region": {"startLine": 21}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 54929, "scanner": "repobility-threat-engine", "fingerprint": "dba8458ef6e1d43015f899b041e015e2d6d107294f920f441c7318c9af220c86", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|dba8458ef6e1d43015f899b041e015e2d6d107294f920f441c7318c9af220c86"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/bunnycdn.py"}, "region": {"startLine": 44}}}]}, {"ruleId": "MINED004", "level": "error", "message": {"text": "[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums)."}, "properties": {"repobilityId": 54928, "scanner": "repobility-threat-engine", "fingerprint": "24f1ad47c885c744ff186cc16beac3604261138bc8097c59b6df2f9a2c8229a2", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "weak-crypto", "owasp": "A02:2021", "cwe_ids": ["CWE-327"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347906+00:00", "triaged_in_corpus": 15, "observations_count": 303181, "ai_coder_pattern_id": 13}, "scanner": "repobility-threat-engine", "correlation_key": "fp|24f1ad47c885c744ff186cc16beac3604261138bc8097c59b6df2f9a2c8229a2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/dependencies/Cryptodome.py"}, "region": {"startLine": 15}}}]}, {"ruleId": "SEC085", "level": "error", "message": {"text": "[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0)."}, "properties": {"repobilityId": 54919, "scanner": "repobility-threat-engine", "fingerprint": "77980c755e6fcb4f298f1f56dda2bea95fe456f85ccf098309551829156ac8ac", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "exec(compile", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC085", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|77980c755e6fcb4f298f1f56dda2bea95fe456f85ccf098309551829156ac8ac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/utils.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "MINED006", "level": "error", "message": {"text": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working."}, "properties": {"repobilityId": 54911, "scanner": "repobility-threat-engine", "fingerprint": "8eb104651e2edf0c80fea456cd7e529071dad1dfa00b44efd95e20dcd7e7bcac", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "overcatch-baseexception", "owasp": null, "cwe_ids": ["CWE-705"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347911+00:00", "triaged_in_corpus": 15, "observations_count": 230624, "ai_coder_pattern_id": 8}, "scanner": "repobility-threat-engine", "correlation_key": "fp|8eb104651e2edf0c80fea456cd7e529071dad1dfa00b44efd95e20dcd7e7bcac"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/rtmp.py"}, "region": {"startLine": 92}}}]}, {"ruleId": "MINED006", "level": "error", "message": {"text": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working."}, "properties": {"repobilityId": 54910, "scanner": "repobility-threat-engine", "fingerprint": "96af61229e7c8473f338f1e70bcdd06e40f0de2ecd8b881b1681ee767b0c501e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "overcatch-baseexception", "owasp": null, "cwe_ids": ["CWE-705"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347911+00:00", "triaged_in_corpus": 15, "observations_count": 230624, "ai_coder_pattern_id": 8}, "scanner": "repobility-threat-engine", "correlation_key": "fp|96af61229e7c8473f338f1e70bcdd06e40f0de2ecd8b881b1681ee767b0c501e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/niconico.py"}, "region": {"startLine": 79}}}]}, {"ruleId": "MINED006", "level": "error", "message": {"text": "[MINED006] Overcatch Baseexception: except BaseException: ... \u2014 prevents Ctrl+C and SystemExit from working."}, "properties": {"repobilityId": 54909, "scanner": "repobility-threat-engine", "fingerprint": "51ba693aa42c21821503164eeefa8e0f0e6adde86a2be4d2c98d564f58bf66ce", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "overcatch-baseexception", "owasp": null, "cwe_ids": ["CWE-705"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347911+00:00", "triaged_in_corpus": 15, "observations_count": 230624, "ai_coder_pattern_id": 8}, "scanner": "repobility-threat-engine", "correlation_key": "fp|51ba693aa42c21821503164eeefa8e0f0e6adde86a2be4d2c98d564f58bf66ce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/run_tests.py"}, "region": {"startLine": 96}}}]}, {"ruleId": "MINED001", "level": "error", "message": {"text": "[MINED001] Bare Except Pass: except: pass or except Exception: pass \u2014 silently swallows everything including KeyboardInterrupt and bugs."}, "properties": {"repobilityId": 54907, "scanner": "repobility-threat-engine", "fingerprint": "7f037d0c0ffca894df9a343481cf5c4592682504367d486831c9eaa875dc614f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "correlation_key": "fp|7f037d0c0ffca894df9a343481cf5c4592682504367d486831c9eaa875dc614f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/__pyinstaller/hook-yt_dlp.py"}, "region": {"startLine": 15}}}]}, {"ruleId": "MINED001", "level": "error", "message": {"text": "[MINED001] Bare Except Pass: except: pass or except Exception: pass \u2014 silently swallows everything including KeyboardInterrupt and bugs."}, "properties": {"repobilityId": 54906, "scanner": "repobility-threat-engine", "fingerprint": "2838791490f18968df54c82c9589f4520dad6c71bac36d9193144299e64d5ec6", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "correlation_key": "fp|2838791490f18968df54c82c9589f4520dad6c71bac36d9193144299e64d5ec6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/tomlparse.py"}, "region": {"startLine": 129}}}]}, {"ruleId": "MINED001", "level": "error", "message": {"text": "[MINED001] Bare Except Pass: except: pass or except Exception: pass \u2014 silently swallows everything including KeyboardInterrupt and bugs."}, "properties": {"repobilityId": 54905, "scanner": "repobility-threat-engine", "fingerprint": "f39a77016d878a41398721e39c2de9863a9cef83b6b0912f7882c8a0d5e6ad85", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"mined": true, "mining": {"slug": "bare-except-pass", "owasp": null, "cwe_ids": ["CWE-755"], "languages": ["python"], "precision": 1.0, "promoted_at": "2026-05-18T14:01:32.347744+00:00", "triaged_in_corpus": 15, "observations_count": 1550824, "ai_coder_pattern_id": 6}, "scanner": "repobility-threat-engine", "correlation_key": "fp|f39a77016d878a41398721e39c2de9863a9cef83b6b0912f7882c8a0d5e6ad85"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/run_tests.py"}, "region": {"startLine": 66}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 54899, "scanner": "repobility-threat-engine", "fingerprint": "d7fdd1e4f314638013414fe84d05ec8d5a1b62f6dcb4e13fc02080f39679da0c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "new_info_dict.update({\n            'ws': None,\n            'protocol': 'live_ffmpeg',", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|d7fdd1e4f314638013414fe84d05ec8d5a1b62f6dcb4e13fc02080f39679da0c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/fc2.py"}, "region": {"startLine": 38}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 54898, "scanner": "repobility-threat-engine", "fingerprint": "9564ae18ccc7b421886cbafb40b0d2986a40dea87519e43ef34b72e3c3ca6906", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "short_protocol_names.update({\n            'https': 'http',\n            'ftps': 'ftp',", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|9564ae18ccc7b421886cbafb40b0d2986a40dea87519e43ef34b72e3c3ca6906"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/__init__.py"}, "region": {"startLine": 74}}}]}, {"ruleId": "SEC128", "level": "error", "message": {"text": "[SEC128] Async function without await \u2014 fire-and-forget Promise (AI mistake): Async call invoked without `await` returns an unhandled Promise. The outer function resolves before the inner work completes \u2014 DB writes lost, emails not sent, race conditions. This is one of the top-3 errors AI coders make: they understand async-shape but drop the await keyword when chaining multiple ops. Surfaces as flaky tests or silently dropped data in production."}, "properties": {"repobilityId": 54897, "scanner": "repobility-threat-engine", "fingerprint": "2c0957ba143d12a974f4aec139c953bfc4b12817ad6eed8ab813e5fa05bfb05d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "patched_parser.defaults.update({\n        'ignoreerrors': False,\n        'retries': 0,\n        'f", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC128", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|2c0957ba143d12a974f4aec139c953bfc4b12817ad6eed8ab813e5fa05bfb05d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/cli_to_api.py"}, "region": {"startLine": 17}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 54894, "scanner": "repobility-threat-engine", "fingerprint": "71a8475a5844a3c910f92d9b634bb193160f64671869acc91a6ddaad8a5527da", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "url(u", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|71a8475a5844a3c910f92d9b634bb193160f64671869acc91a6ddaad8a5527da"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/abcnews.py"}, "region": {"startLine": 57}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 54893, "scanner": "repobility-threat-engine", "fingerprint": "d53fec7befa96e0b5f5b39fd98477b3324277a7f121cd9d909043b6611cd1a36", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "url(m", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|d53fec7befa96e0b5f5b39fd98477b3324277a7f121cd9d909043b6611cd1a36"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/downloader/soop.py"}, "region": {"startLine": 41}}}]}, {"ruleId": "SEC029", "level": "error", "message": {"text": "[SEC029] Server-Side Request Forgery (SSRF) \u2014 outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches."}, "properties": {"repobilityId": 54892, "scanner": "repobility-threat-engine", "fingerprint": "070973852511f58b0d62234f7a2c479d54b2258122b879c9d6bd784592a1db05", "category": "ssrf", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "urllib.request.urlopen(r", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC029", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "fp|070973852511f58b0d62234f7a2c479d54b2258122b879c9d6bd784592a1db05"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/utils.py"}, "region": {"startLine": 80}}}]}, {"ruleId": "MINED112", "level": "error", "message": {"text": "FastAPI PATCH sys.platform has no auth"}, "properties": {"repobilityId": 54889, "scanner": "repobility-route-auth", "fingerprint": "90a4a5c4690624d442f7ed1c91e45de699725520488eaf9c5fb5b485048c7857", "category": "quality", "severity": "high", "confidence": 0.8, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "fastapi-destructive-unauth", "owasp": "A01:2021", "cwe_ids": ["CWE-306", "CWE-862"], "languages": ["python", "javascript"], "observations_count": 10455}, "scanner": "repobility-route-auth", "correlation_key": "fp|90a4a5c4690624d442f7ed1c91e45de699725520488eaf9c5fb5b485048c7857"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_utils.py"}, "region": {"startLine": 228}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChaptersAfterLastCut"}, "properties": {"repobilityId": 54839, "scanner": "repobility-ast-engine", "fingerprint": "6a830e7d4abd8a203bc03c3c37a6255e29afd4df88ccd768aeea80d4c35519bd", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|6a830e7d4abd8a203bc03c3c37a6255e29afd4df88ccd768aeea80d4c35519bd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 428}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChaptersAfterLastSponsor"}, "properties": {"repobilityId": 54838, "scanner": "repobility-ast-engine", "fingerprint": "510b1691604e1babbdfaa06a8b3e0f1fecc1dbc4bf5de55d21d0d83ff282b60d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|510b1691604e1babbdfaa06a8b3e0f1fecc1dbc4bf5de55d21d0d83ff282b60d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 419}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_CutsWithinSomeChaptersAndOverlappingOthers"}, "properties": {"repobilityId": 54837, "scanner": "repobility-ast-engine", "fingerprint": "726997bd96fdfd6431400a8386b542c9a5d767b51960c0c1fe31ca44e511fc0d", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|726997bd96fdfd6431400a8386b542c9a5d767b51960c0c1fe31ca44e511fc0d"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 413}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_SponsorsWithinSomeChaptersAndOverlappingOthers"}, "properties": {"repobilityId": 54836, "scanner": "repobility-ast-engine", "fingerprint": "d82e3ad23b2b00c91461ed7406f986f5707d159405ba53c590a650d7d2e5d94c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d82e3ad23b2b00c91461ed7406f986f5707d159405ba53c590a650d7d2e5d94c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 403}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_CutOverlapsMultipleChapters"}, "properties": {"repobilityId": 54835, "scanner": "repobility-ast-engine", "fingerprint": "4ff79006551279db7eac77f28ffdd2ac93bc080627d60c62c6fed0cd9bc7ad47", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4ff79006551279db7eac77f28ffdd2ac93bc080627d60c62c6fed0cd9bc7ad47"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 397}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_SponsorOverlapsMultipleChapters"}, "properties": {"repobilityId": 54834, "scanner": "repobility-ast-engine", "fingerprint": "24c21f1aad32cf0203804fa0b64ed4cab4b13c5ecc84f3d82b5299119a379951", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|24c21f1aad32cf0203804fa0b64ed4cab4b13c5ecc84f3d82b5299119a379951"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 390}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithRunsOfOverlappingSponsorsAndCuts"}, "properties": {"repobilityId": 54833, "scanner": "repobility-ast-engine", "fingerprint": "9ea7b81d9b6b7ccf66ec8275558066e2f793465b8cd5ce4d6afd016d7736aa95", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9ea7b81d9b6b7ccf66ec8275558066e2f793465b8cd5ce4d6afd016d7736aa95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 363}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_SponsorsStillOverlapAfterCut"}, "properties": {"repobilityId": 54832, "scanner": "repobility-ast-engine", "fingerprint": "94e45398ad35c86b19d981d1822c43eef0e57a98c413fbf5a4b3704616117ad1", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|94e45398ad35c86b19d981d1822c43eef0e57a98c413fbf5a4b3704616117ad1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 351}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_SponsorsNoLongerOverlapAfterCut"}, "properties": {"repobilityId": 54831, "scanner": "repobility-ast-engine", "fingerprint": "afb0e9afa5e12a5571b68cae20c68261905121db365ca1821e5a690b095e50ff", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|afb0e9afa5e12a5571b68cae20c68261905121db365ca1821e5a690b095e50ff"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 337}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_OverlappingSponsorsDifferentTitlesAfterCut"}, "properties": {"repobilityId": 54830, "scanner": "repobility-ast-engine", "fingerprint": "0bef67a34be560b8547a930aa98ac7fb286653f47e83d2ab3cb0883a421adf95", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|0bef67a34be560b8547a930aa98ac7fb286653f47e83d2ab3cb0883a421adf95"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 323}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithRunsOfOverlappingCuts"}, "properties": {"repobilityId": 54829, "scanner": "repobility-ast-engine", "fingerprint": "dc1adb4116567d26a7573de2db1a62d383be44eb0960497927361a11e305e5a7", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|dc1adb4116567d26a7573de2db1a62d383be44eb0960497927361a11e305e5a7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 305}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithRunsOfOverlappingSponsors"}, "properties": {"repobilityId": 54828, "scanner": "repobility-ast-engine", "fingerprint": "97043459dcb2044b4d518fa3a7167ee015c6e3fbca9e7bb80fec2ee74e2721bc", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|97043459dcb2044b4d518fa3a7167ee015c6e3fbca9e7bb80fec2ee74e2721bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 283}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithOverlappingCuts"}, "properties": {"repobilityId": 54827, "scanner": "repobility-ast-engine", "fingerprint": "2f1e1cd61c1ca439b08afef0939a9a5a53adf19814364eb2d75e4df972e1da0f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2f1e1cd61c1ca439b08afef0939a9a5a53adf19814364eb2d75e4df972e1da0f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 274}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithOverlappingSponsors"}, "properties": {"repobilityId": 54826, "scanner": "repobility-ast-engine", "fingerprint": "07b178589983ef18e7705e5acf62c23a5056ffeb4dfcaf5cb3cce0675c73690f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|07b178589983ef18e7705e5acf62c23a5056ffeb4dfcaf5cb3cce0675c73690f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 261}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithAdjacentCuts"}, "properties": {"repobilityId": 54825, "scanner": "repobility-ast-engine", "fingerprint": "ed5610b9f2241903f1b65837b345f8a869786927c699e595b04fceaa47718443", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ed5610b9f2241903f1b65837b345f8a869786927c699e595b04fceaa47718443"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 247}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithAdjacentSponsors"}, "properties": {"repobilityId": 54824, "scanner": "repobility-ast-engine", "fingerprint": "ee5f37bed3c2b5abb2c14746d2493d34189a74d4046f11dc69333c3142549cab", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ee5f37bed3c2b5abb2c14746d2493d34189a74d4046f11dc69333c3142549cab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 235}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithCutHidingSponsor"}, "properties": {"repobilityId": 54823, "scanner": "repobility-ast-engine", "fingerprint": "3d21d24673e72fa2af84a20393c7f5979dce1c3ac7e5c1410976c69910eb904c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|3d21d24673e72fa2af84a20393c7f5979dce1c3ac7e5c1410976c69910eb904c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 223}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithSponsorCutInTheMiddle"}, "properties": {"repobilityId": 54822, "scanner": "repobility-ast-engine", "fingerprint": "d4a25711407b72468f7646e545b783b5c29831fe6969c3be3abd43d93dde4b46", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d4a25711407b72468f7646e545b783b5c29831fe6969c3be3abd43d93dde4b46"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 212}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithSponsorsAndCuts"}, "properties": {"repobilityId": 54821, "scanner": "repobility-ast-engine", "fingerprint": "bebd1e29a355f22aaef58d82907aaf5f582dadbf510ee301ef871b01e3ebbdf9", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|bebd1e29a355f22aaef58d82907aaf5f582dadbf510ee301ef871b01e3ebbdf9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 200}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithCuts"}, "properties": {"repobilityId": 54820, "scanner": "repobility-ast-engine", "fingerprint": "7f3b468c28a4f3fd6f70bc45a24417891cf06837847ddb9bdb49c9f83b4d7c48", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|7f3b468c28a4f3fd6f70bc45a24417891cf06837847ddb9bdb49c9f83b4d7c48"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 192}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_UniqueNamesForOverlappingSponsors"}, "properties": {"repobilityId": 54819, "scanner": "repobility-ast-engine", "fingerprint": "bff29a64f211d40b3124c098d20c9198bb9b9563bb15204c66b1fc23513b3da2", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|bff29a64f211d40b3124c098d20c9198bb9b9563bb15204c66b1fc23513b3da2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 173}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_SponsorBlockChapters"}, "properties": {"repobilityId": 54818, "scanner": "repobility-ast-engine", "fingerprint": "8a1c114ba189dae1da6f7ccc417773e2f67c8f6f25f5286c4659529380721c33", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|8a1c114ba189dae1da6f7ccc417773e2f67c8f6f25f5286c4659529380721c33"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 159}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_ChapterWithSponsors"}, "properties": {"repobilityId": 54817, "scanner": "repobility-ast-engine", "fingerprint": "224d84fa4b25511c4586eaac998a20051e1e79fafab179466d4c12364a48f3bf", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|224d84fa4b25511c4586eaac998a20051e1e79fafab179466d4c12364a48f3bf"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 147}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_remove_marked_arrange_sponsors_CanGetThroughUnaltered"}, "properties": {"repobilityId": 54816, "scanner": "repobility-ast-engine", "fingerprint": "a6b77db97f56c2760e43162c9b3ef9891a632421780457b5dc082cdc104c4771", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a6b77db97f56c2760e43162c9b3ef9891a632421780457b5dc082cdc104c4771"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_postprocessors.py"}, "region": {"startLine": 143}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._commits` used but never assigned in __init__"}, "properties": {"repobilityId": 54800, "scanner": "repobility-ast-engine", "fingerprint": "08f10a3c5725fb6055fc0c65c93c4d59fa3bacfdfb06b6297418240cb16a3f10", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|08f10a3c5725fb6055fc0c65c93c4d59fa3bacfdfb06b6297418240cb16a3f10"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 355}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._commits` used but never assigned in __init__"}, "properties": {"repobilityId": 54799, "scanner": "repobility-ast-engine", "fingerprint": "05ff8a9bea510e1eae64f3768ee77533b1e3158aa2280e2c67c3e802729279c3", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|05ff8a9bea510e1eae64f3768ee77533b1e3158aa2280e2c67c3e802729279c3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 353}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._start` used but never assigned in __init__"}, "properties": {"repobilityId": 54798, "scanner": "repobility-ast-engine", "fingerprint": "5699ae6423184748a9d248d43ab149b37d7261ea7e993cfc85528a188f6dd145", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|5699ae6423184748a9d248d43ab149b37d7261ea7e993cfc85528a188f6dd145"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 342}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._commits` used but never assigned in __init__"}, "properties": {"repobilityId": 54797, "scanner": "repobility-ast-engine", "fingerprint": "83ecc4a10416b756e3c3cfdeec2858a4e2bf210e8c50ee38e05b541e33f75025", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|83ecc4a10416b756e3c3cfdeec2858a4e2bf210e8c50ee38e05b541e33f75025"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 371}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._start` used but never assigned in __init__"}, "properties": {"repobilityId": 54796, "scanner": "repobility-ast-engine", "fingerprint": "ed59ef927f5fac70bc22a54c1769fc026b007ebddbe173ef617ddb6fe7c12391", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|ed59ef927f5fac70bc22a54c1769fc026b007ebddbe173ef617ddb6fe7c12391"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 306}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._end` used but never assigned in __init__"}, "properties": {"repobilityId": 54795, "scanner": "repobility-ast-engine", "fingerprint": "e8e1c9c5c2255f4111467881ed45409fa6003376a0d80c9c5bab97c673470c53", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e8e1c9c5c2255f4111467881ed45409fa6003376a0d80c9c5bab97c673470c53"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 285}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._start` used but never assigned in __init__"}, "properties": {"repobilityId": 54794, "scanner": "repobility-ast-engine", "fingerprint": "d5e80eb930dae6b8d60257247a80bb40969bd4d7cdcd933400b6af2de7f96547", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d5e80eb930dae6b8d60257247a80bb40969bd4d7cdcd933400b6af2de7f96547"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 285}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._commits` used but never assigned in __init__"}, "properties": {"repobilityId": 54793, "scanner": "repobility-ast-engine", "fingerprint": "cb07fd8e002599dea48e9d07e1388110eaa1a484f45a0508263774562db4c697", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|cb07fd8e002599dea48e9d07e1388110eaa1a484f45a0508263774562db4c697"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 280}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._commits` used but never assigned in __init__"}, "properties": {"repobilityId": 54792, "scanner": "repobility-ast-engine", "fingerprint": "47f28cd3c07399fd2e56f050f3421b937d7269923e0028794327ef1888d8f6f6", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|47f28cd3c07399fd2e56f050f3421b937d7269923e0028794327ef1888d8f6f6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 272}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._commits` used but never assigned in __init__"}, "properties": {"repobilityId": 54791, "scanner": "repobility-ast-engine", "fingerprint": "e3c1a3f5ee0c7446fe879265cebc0aa2e12dddc13cc73368dddcdcea6aa65b63", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e3c1a3f5ee0c7446fe879265cebc0aa2e12dddc13cc73368dddcdcea6aa65b63"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 269}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.repo_url` used but never assigned in __init__"}, "properties": {"repobilityId": 54790, "scanner": "repobility-ast-engine", "fingerprint": "a0f247cb7274ccbfb1c325fac8be1d94245aba8d826bb77076c08ae0a055606c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a0f247cb7274ccbfb1c325fac8be1d94245aba8d826bb77076c08ae0a055606c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 230}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.repo_url` used but never assigned in __init__"}, "properties": {"repobilityId": 54789, "scanner": "repobility-ast-engine", "fingerprint": "a4b3fe2cfc524b8cce580497853dcf6a6373082cb1b0bd72c7233384f97878ce", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a4b3fe2cfc524b8cce580497853dcf6a6373082cb1b0bd72c7233384f97878ce"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 227}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._format_message_link` used but never assigned in __init__"}, "properties": {"repobilityId": 54788, "scanner": "repobility-ast-engine", "fingerprint": "bdb138b2688b02a9d72fe99bc747f93378e2e894a526b6f4e5292250c6a61b2c", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|bdb138b2688b02a9d72fe99bc747f93378e2e894a526b6f4e5292250c6a61b2c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 214}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._format_authors` used but never assigned in __init__"}, "properties": {"repobilityId": 54787, "scanner": "repobility-ast-engine", "fingerprint": "4e6967d5b04968023c74bdd0016dac2408e4390a0a512c422c350d647700d167", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|4e6967d5b04968023c74bdd0016dac2408e4390a0a512c422c350d647700d167"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 218}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._format_authors` used but never assigned in __init__"}, "properties": {"repobilityId": 54786, "scanner": "repobility-ast-engine", "fingerprint": "1d3bc4b12e4e56fe50f6e9ddfa4416a80963ac9d57c6e5e665fbc6ce98c33003", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|1d3bc4b12e4e56fe50f6e9ddfa4416a80963ac9d57c6e5e665fbc6ce98c33003"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 211}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._format_issues` used but never assigned in __init__"}, "properties": {"repobilityId": 54785, "scanner": "repobility-ast-engine", "fingerprint": "649f4bcbab21c41cf47c84b9dc20d0e497b141fb4ad2c9aa5be30077e15eb58a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|649f4bcbab21c41cf47c84b9dc20d0e497b141fb4ad2c9aa5be30077e15eb58a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 208}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._format_message_link` used but never assigned in __init__"}, "properties": {"repobilityId": 54784, "scanner": "repobility-ast-engine", "fingerprint": "2e64cb0506390812b63ab5c3a6f176ecd4112d27fc368c36d6ca11119c4815a9", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2e64cb0506390812b63ab5c3a6f176ecd4112d27fc368c36d6ca11119c4815a9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 205}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._format_message_link` used but never assigned in __init__"}, "properties": {"repobilityId": 54783, "scanner": "repobility-ast-engine", "fingerprint": "9da2cf0d30e87f22ce585dfa1c3c2143d86f3f0f48ef28218dc04b36dd8cf38a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9da2cf0d30e87f22ce585dfa1c3c2143d86f3f0f48ef28218dc04b36dd8cf38a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 195}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.format_single_change` used but never assigned in __init__"}, "properties": {"repobilityId": 54782, "scanner": "repobility-ast-engine", "fingerprint": "f36609a0634690f332a70797a4c6748ddf375048fa1678a391de3ecbc978232f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|f36609a0634690f332a70797a4c6748ddf375048fa1678a391de3ecbc978232f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 170}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.format_single_change` used but never assigned in __init__"}, "properties": {"repobilityId": 54781, "scanner": "repobility-ast-engine", "fingerprint": "05492fbab331270b8703eff55bddc1e617f531a59684f6119ede4a6cf564953f", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|05492fbab331270b8703eff55bddc1e617f531a59684f6119ede4a6cf564953f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 181}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.format_single_change` used but never assigned in __init__"}, "properties": {"repobilityId": 54780, "scanner": "repobility-ast-engine", "fingerprint": "436488af8f5b9115068d10ecc9ae7334e4034d5651f46666d778beae0fff1c3b", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|436488af8f5b9115068d10ecc9ae7334e4034d5651f46666d778beae0fff1c3b"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 176}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._prepare_cleanup_misc_items` used but never assigned in __init__"}, "properties": {"repobilityId": 54779, "scanner": "repobility-ast-engine", "fingerprint": "2c31b021c70fa694e52d4b7a1e40ccec12d2cdebd0fb51d197b7dd984abbdac3", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2c31b021c70fa694e52d4b7a1e40ccec12d2cdebd0fb51d197b7dd984abbdac3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 156}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._format_group` used but never assigned in __init__"}, "properties": {"repobilityId": 54778, "scanner": "repobility-ast-engine", "fingerprint": "b12b12b27dff43edd8bc8a1c2844a92b379ba087db475d5df985959d584e0b7e", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|b12b12b27dff43edd8bc8a1c2844a92b379ba087db475d5df985959d584e0b7e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 146}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self.format_module` used but never assigned in __init__"}, "properties": {"repobilityId": 54777, "scanner": "repobility-ast-engine", "fingerprint": "9bc1a94c6ee3ecf97fb353490a323d40aa0ff1eb1fabc4ffe70b401ff218491a", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9bc1a94c6ee3ecf97fb353490a323d40aa0ff1eb1fabc4ffe70b401ff218491a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 139}}}]}, {"ruleId": "MINED108", "level": "error", "message": {"text": "`self._format_groups` used but never assigned in __init__"}, "properties": {"repobilityId": 54776, "scanner": "repobility-ast-engine", "fingerprint": "bbeda53aceeb9256e9ae41290ac6bb1f5d0b5158bdda23f4ff007411d2b6cc02", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "self-attr-never-set", "owasp": null, "cwe_ids": ["CWE-476"], "languages": ["python"], "observations_count": 25998}, "scanner": "repobility-ast-engine", "correlation_key": "fp|bbeda53aceeb9256e9ae41290ac6bb1f5d0b5158bdda23f4ff007411d2b6cc02"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/make_changelog.py"}, "region": {"startLine": 129}}}]}, {"ruleId": "MINED106", "level": "error", "message": {"text": "Phantom test coverage: test_setup_variables"}, "properties": {"repobilityId": 54775, "scanner": "repobility-ast-engine", "fingerprint": "a192806a682fe93df1ff1a6e1a862f0dc0d1b5f7d9835738f04bfa377e4e65cd", "category": "quality", "severity": "high", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "phantom-test-coverage", "owasp": null, "cwe_ids": ["CWE-1126"], "languages": ["python"], "observations_count": 982154}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a192806a682fe93df1ff1a6e1a862f0dc0d1b5f7d9835738f04bfa377e4e65cd"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "devscripts/setup_variables_tests.py"}, "region": {"startLine": 62}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55086, "scanner": "gitleaks", "fingerprint": "b9272f850fbb9f5c86dab188276f53303ae2a2460cb2d53dbb9eeeba9e7dec5a", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "AUTH': 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/vimeo.py|7|auth : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/vimeo.py"}, "region": {"startLine": 79}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55085, "scanner": "gitleaks", "fingerprint": "37f9f01c012c69d39626654daafda3fa57026ec57305742908c68d12f727a59f", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "AUTH': 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/vimeo.py|6|auth : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/vimeo.py"}, "region": {"startLine": 64}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55084, "scanner": "gitleaks", "fingerprint": "3b7f20e9b4651150ed9a0215000f4e036ebad3124bbd5ddf16b61fb77fa8eaba", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "X-ACC-APP-SECRET': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/weverse.py|6|x-acc-app-secret : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/weverse.py"}, "region": {"startLine": 70}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55083, "scanner": "gitleaks", "fingerprint": "180042718fa829bf15465513abb8ce885940934172a3b6ed1ff3937319e8b9bc", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "key:    REDACTED", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/vrt.py|5|key: redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/vrt.py"}, "region": {"startLine": 52}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55082, "scanner": "gitleaks", "fingerprint": "c43a25a4409dff642eec57afb67275bd3e62ea90ff837a713c534e5b2fa29335", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_JWT_SIGNING_KEY = 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/vrt.py|5|_jwt_signing_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/vrt.py"}, "region": {"startLine": 51}}}]}, {"ruleId": "gcp-api-key", "level": "error", "message": {"text": "Uncovered a GCP API key, which could lead to unauthorized access to Google Cloud services and data breaches."}, "properties": {"repobilityId": 55081, "scanner": "gitleaks", "fingerprint": "bef82faf9e36484d50a1f1b1dde1ba003a3da429a65fb0325e7584f23428210c", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED'", "rule_id": "gcp-api-key", "scanner": "gitleaks", "detector": "gcp-api-key", "correlation_key": "secret|token|3|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/wrestleuniverse.py"}, "region": {"startLine": 31}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55080, "scanner": "gitleaks", "fingerprint": "fd99bbd59da42b4a4c8a8f90f3f746e569ab543422e4753b694711e688e444e8", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "apiKey': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/zingmp3.py|6|apikey : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/zingmp3.py"}, "region": {"startLine": 65}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55079, "scanner": "gitleaks", "fingerprint": "d910b9a5c8c0c18bba0b61b41dd99799e0b8a2f0929dcb9b08f091e7ce1491ac", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "secret': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/wykop.py|2|secret : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/wykop.py"}, "region": {"startLine": 25}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55078, "scanner": "gitleaks", "fingerprint": "64fab2f86702a3c18f643bbecb2fd7795d1bfba95dd49e7478e195a5bf13f6f6", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "key': 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|15|key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/stacommu.py"}, "region": {"startLine": 156}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55077, "scanner": "gitleaks", "fingerprint": "16dafda44a2c7373de9185662e1c3164088570a1c4dadf0c250715f125cc80ce", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "key': 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|12|key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/stacommu.py"}, "region": {"startLine": 125}}}]}, {"ruleId": "gcp-api-key", "level": "error", "message": {"text": "Uncovered a GCP API key, which could lead to unauthorized access to Google Cloud services and data breaches."}, "properties": {"repobilityId": 55076, "scanner": "gitleaks", "fingerprint": "67afc71d1f813fca8e8491a2662dd4f85869e67e1b7ac79a928444198493f8cf", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED'", "rule_id": "gcp-api-key", "scanner": "gitleaks", "detector": "gcp-api-key", "correlation_key": "secret|token|17|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/stacommu.py"}, "region": {"startLine": 177}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55075, "scanner": "gitleaks", "fingerprint": "c64f13c333fd8eecb8bef6f272210a929a1173df67d94560d168a1c44589520c", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "key=REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|14|key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/videocampus_sachsen.py"}, "region": {"startLine": 146}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55074, "scanner": "gitleaks", "fingerprint": "9ef88138d859ce230dfded4ef88b5f9ed5f11cb9b1b1edf52cdfdc7e2e4ff067", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "app_key=REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|10|app_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/yle_areena.py"}, "region": {"startLine": 108}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55073, "scanner": "gitleaks", "fingerprint": "86b098e7aee1ba0f1afe81214f8d0eb67c99406fcb7b3ecbabf640643411c8b9", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "xsec_token=<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|2|xsec_token redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/xiaohongshu.py"}, "region": {"startLine": 30}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55072, "scanner": "gitleaks", "fingerprint": "2d7ed6111c13573b54703afe1b3f3134078434624483102ebf413f859365adee", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_STATIC_SECRET = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/videa.py|9|_static_secret redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/videa.py"}, "region": {"startLine": 98}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55071, "scanner": "gitleaks", "fingerprint": "afd4022a7b428aba751929bb4643d91685149590718344ba838b49ade9c3fba8", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|yt_dlp/extractor/vice.py|10|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/vice.py"}, "region": {"startLine": 103}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55070, "scanner": "gitleaks", "fingerprint": "079b636a3f5bc7326ae4ebafef2cd772b2720b6cbda4669e604a243080653b05", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "key': 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/viddler.py|9|key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/viddler.py"}, "region": {"startLine": 92}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55069, "scanner": "gitleaks", "fingerprint": "a3c1ed22b609f5d8cf60bab077a0706d35f20d1c817be744d0d17beff195ea48", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "wsc-api-key': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/tvw.py|10|wsc-api-key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/tvw.py"}, "region": {"startLine": 108}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55068, "scanner": "gitleaks", "fingerprint": "d3363548a0a2d21c6c9a6f3f87803462c137c05fbe5f967daf0d7e92debb9264", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "api_key = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/tver.py|31|api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/tver.py"}, "region": {"startLine": 312}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55067, "scanner": "gitleaks", "fingerprint": "4e4e77a6c8d56cdf40ceaea9f6e9c52a414e6853592e3bdcb5683fa9f5eab948", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 2 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|yt_dlp/extractor/tbs.py|1|redacted", "duplicate_count": 2, "duplicate_rule_ids": ["jwt"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["4e4e77a6c8d56cdf40ceaea9f6e9c52a414e6853592e3bdcb5683fa9f5eab948", "c82a0c2c21f9ece6f91449b355e171f0e50d1497f21baa691e2d3e2536e3c9ba", "e05ba1f66583c94b772bfdca14b0674674c78f249658700b69aab1bd046c1008"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/tbs.py"}, "region": {"startLine": 16}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55066, "scanner": "gitleaks", "fingerprint": "fa345b861f6c570c85a57f15750954adbead66930d46d91104a5e26029660fac", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "ClientSecret': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/toutv.py|4|clientsecret : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/toutv.py"}, "region": {"startLine": 46}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55065, "scanner": "gitleaks", "fingerprint": "198c63cf38734569d82bf32bc6586399c24e988267ee7e7b469ba62dc1f37099", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_CLIENT_KEY = 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/toutv.py|3|_client_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/toutv.py"}, "region": {"startLine": 38}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55064, "scanner": "gitleaks", "fingerprint": "dd4dc5ef83bc28a92737d5415549690d7b95a94fc8699d830f9a5b9415d5a505", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "app_key': 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/trunews.py|2|app_key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/trunews.py"}, "region": {"startLine": 27}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55063, "scanner": "gitleaks", "fingerprint": "37b5845787657cbb6cc4fa50c962a244ea154c523ff47656e2b4aafca989b5ac", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "api_key=<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/trunews.py|1|api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/trunews.py"}, "region": {"startLine": 20}}}]}, {"ruleId": "aws-access-token", "level": "error", "message": {"text": "Identified a pattern that may indicate AWS credentials, risking unauthorized cloud resource access and data breaches on AWS platforms."}, "properties": {"repobilityId": 55062, "scanner": "gitleaks", "fingerprint": "f687d140964f1e040b21f3d024a0749a6bbc738f3d8acc3ef9b194ecef1099a2", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED", "rule_id": "aws-access-token", "scanner": "gitleaks", "detector": "aws-access-token", "correlation_key": "secret|yt_dlp/extractor/shahid.py|3|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/shahid.py"}, "region": {"startLine": 39}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55061, "scanner": "gitleaks", "fingerprint": "691e447fed95e5236d0332fe40dc754dc5d60d0ec1be8822c70745aab9c7c66f", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "secret_key': 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/shahid.py|3|secret_key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/shahid.py"}, "region": {"startLine": 40}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55060, "scanner": "gitleaks", "fingerprint": "02698bca9e93fd7f07fda86a4b1fd98a9350e56bb9d3a2a7a87d147611f25536", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_AWS_API_KEY = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/shahid.py|1|_aws_api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/shahid.py"}, "region": {"startLine": 20}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55059, "scanner": "gitleaks", "fingerprint": "011ea645baaf8cc6fc43bca520bbe95872b74d52053418a3606c0f120e85c261", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "rtp-play-auth-hash': 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/rtp.py|14|rtp-play-auth-hash : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/rtp.py"}, "region": {"startLine": 149}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55058, "scanner": "gitleaks", "fingerprint": "7ec7eccc10ad73b4732af7811fe4b303b062e99b2fc0adc25ece1333e2f17d13", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|yt_dlp/extractor/nbc.py|23|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/nbc.py"}, "region": {"startLine": 233}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55057, "scanner": "gitleaks", "fingerprint": "a55e6e5f12361af5526fc459febf6b8172d66734c85c87b94c95358fbce06dcc", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_API_KEY = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|2|_api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/skynewsau.py"}, "region": {"startLine": 28}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55056, "scanner": "gitleaks", "fingerprint": "a28f354a7ee9a7a27a7d556507df863dbe8089c3e09963fe246e4a2cb2973ea5", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_AWS_API_KEY = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|4|_aws_api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/scrippsnetworks.py"}, "region": {"startLine": 49}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55055, "scanner": "gitleaks", "fingerprint": "79272c377fac55a21240a69390b2107cc13254301a8c09fa88bcead8fc8abbfe", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_TOKEN = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/nytimes.py|2|_token redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/nytimes.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55054, "scanner": "gitleaks", "fingerprint": "f1802766dfe762e4733405340c7a61c48fdc387332e20b15fd1f70dffe3c4aaa", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "viewkey=REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/pornhub.py|26|viewkey redacted", "duplicate_count": 1, "duplicate_rule_ids": ["generic-api-key"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["30980163521d99bf867dc05c9112ad55e864925a81998acbce7ee6188d75d240", "f1802766dfe762e4733405340c7a61c48fdc387332e20b15fd1f70dffe3c4aaa"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/pornhub.py"}, "region": {"startLine": 262}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55053, "scanner": "gitleaks", "fingerprint": "882f2d78abd0537023ca1be28e9b4aac5794eb2a83479d98af3976f48d8a4623", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "viewkey=REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/pornhub.py|25|viewkey redacted", "duplicate_count": 1, "duplicate_rule_ids": ["generic-api-key"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["882f2d78abd0537023ca1be28e9b4aac5794eb2a83479d98af3976f48d8a4623", "8ae506ec7d020db5fde25b8b30bbb57dc35c825b94492841c882ecfc01df7794"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/pornhub.py"}, "region": {"startLine": 255}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55052, "scanner": "gitleaks", "fingerprint": "677ce1af6e8439e432468b777e2ea27adcf02569a2792bfdccbde96e8078fa08", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "viewkey=REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/pornhub.py|23|viewkey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/pornhub.py"}, "region": {"startLine": 235}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55051, "scanner": "gitleaks", "fingerprint": "6f2204204d70318b3dad9f0f36e5162948b00c8e92ef3abc73b998810ec20e4b", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "viewkey=REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/pornhub.py|22|viewkey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/pornhub.py"}, "region": {"startLine": 223}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55050, "scanner": "gitleaks", "fingerprint": "cc557b9cb4863b37ed03c01d0144240fcc2329a311bd1566a4f4f65492d362c3", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "viewkey=REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/pornhub.py|20|viewkey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/pornhub.py"}, "region": {"startLine": 209}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55049, "scanner": "gitleaks", "fingerprint": "5dc69122b64a2028350170ebacd6d5c5500e7b3f412344ee13e43d592eb4e32a", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "API-KEY': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|12|api-key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/redbulltv.py"}, "region": {"startLine": 130}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55048, "scanner": "gitleaks", "fingerprint": "80c791163daa4a3a8507cda517a8958b85e8496e105ddfbaff81cf9bcb14283a", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_GIGYA_API_KEY = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/redbee.py|22|_gigya_api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/redbee.py"}, "region": {"startLine": 227}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55047, "scanner": "gitleaks", "fingerprint": "9150992ad551531c6762895567cba2791d22403b70a8e330c46e07b83a6ab493", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_ENCRYPTION_KEY = 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|38|_encryption_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/prosiebensat1.py"}, "region": {"startLine": 382}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55046, "scanner": "gitleaks", "fingerprint": "c63f1e9e9bf86856ea0519413daeb1cee2d2f92cd35c106e0e07d7ee50479f84", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "client_key': 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|6|client_key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/radiocanada.py"}, "region": {"startLine": 63}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55045, "scanner": "gitleaks", "fingerprint": "25949517aa508bda03925ba05ddeb47702657b5c1685b95215018cad281765ff", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "x-api-key': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|26|x-api-key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/polskieradio.py"}, "region": {"startLine": 261}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55044, "scanner": "gitleaks", "fingerprint": "214ad5c6f7b76f825915fb60cb0a6077402bf5088750ae6efd45881c53c080a8", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_API_KEY = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/nfl.py|8|_api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/nfl.py"}, "region": {"startLine": 84}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55043, "scanner": "gitleaks", "fingerprint": "60e78fc9dd97cab6de1bd0f81ef50264ef80cde05e582d992b50b5480269bfe8", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "clientSecret': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/nfl.py|7|clientsecret : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/nfl.py"}, "region": {"startLine": 72}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55042, "scanner": "gitleaks", "fingerprint": "0f76ca569f675eeaca139a70ff182a0f0cf945647528365a7321c7ceec8cdb81", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "clientKey': 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/nfl.py|7|clientkey : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/nfl.py"}, "region": {"startLine": 71}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55041, "scanner": "gitleaks", "fingerprint": "8e97b1d2e63668525d7ccef0c426dfc518e8111944c54fc66d1bb54000410c68", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "apiKey': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/npr.py|6|apikey : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/npr.py"}, "region": {"startLine": 69}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55040, "scanner": "gitleaks", "fingerprint": "a0ea04b078e0b771f20d4c92a9cfa2cebd1064c67fbef93cb5b645be6173e531", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "X-Streaks-Api-Key': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/ntvcojp.py|5|x-streaks-api-key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/ntvcojp.py"}, "region": {"startLine": 57}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55039, "scanner": "gitleaks", "fingerprint": "f9c5e531c788515b024fde7178e5c278a96490cce1ff2a3cad98206320c40d0b", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "Ocp-Apim-Subscription-Key': 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/mzaalo.py|6|ocp-apim-subscription-key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/mzaalo.py"}, "region": {"startLine": 69}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55038, "scanner": "gitleaks", "fingerprint": "c032898d77b6c6ae90db0c1c4961654089f5461e923473456f8a2bdc7fabe318", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_CLIENT_SECRET = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/loco.py|9|_client_secret redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/loco.py"}, "region": {"startLine": 91}}}]}, {"ruleId": "gcp-api-key", "level": "error", "message": {"text": "Uncovered a GCP API key, which could lead to unauthorized access to Google Cloud services and data breaches."}, "properties": {"repobilityId": 55037, "scanner": "gitleaks", "fingerprint": "a260ca8785d6b3d4f2dd44494fb4b683e9d900f5c6dd31335a8a2755464d0f26", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED'", "rule_id": "gcp-api-key", "scanner": "gitleaks", "detector": "gcp-api-key", "correlation_key": "secret|token|14|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/googledrive.py"}, "region": {"startLine": 143}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55036, "scanner": "gitleaks", "fingerprint": "c2008219f19235a8537103705c8590651a2571835f4f469891c609560aceb1a1", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_API_KEY = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|8|_api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/nationalgeographic.py"}, "region": {"startLine": 83}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55035, "scanner": "gitleaks", "fingerprint": "9a1b32ec21574cf51785fab1eb73a39d91502b0f3911a5f2bb14403c46631063", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "client_secret': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|5|client_secret : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/dailymotion.py"}, "region": {"startLine": 60}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55034, "scanner": "gitleaks", "fingerprint": "ec1af57f1f732364ba5cdfa509f17197c708c6893b3775e93d28f97a64b1fc6b", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "apikey=<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/espn.py|41|apikey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/espn.py"}, "region": {"startLine": 413}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55033, "scanner": "gitleaks", "fingerprint": "abd483fa991b4f4d4340efcb42343f3339f1d7e57d2cbcea1cbdf167c6926637", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "apikey=<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/espn.py|40|apikey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/espn.py"}, "region": {"startLine": 403}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55032, "scanner": "gitleaks", "fingerprint": "1065f9e3820704939179c80043d3ea6ed90bbd260a962ea9a793a44719c9c0d8", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_API_KEY = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/espn.py|33|_api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/espn.py"}, "region": {"startLine": 331}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55031, "scanner": "gitleaks", "fingerprint": "c5ab44262cbc5b96e55f8504abcf6c2c467ff4b9e4390f98106108a2c011de0c", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "apikey=<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/espn.py|32|apikey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/espn.py"}, "region": {"startLine": 324}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55030, "scanner": "gitleaks", "fingerprint": "9156dc421fff1020d4707fd7553d91b63960db62d58556db1702df4a34f0c639", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "apikey=<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/espn.py|31|apikey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/espn.py"}, "region": {"startLine": 312}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55029, "scanner": "gitleaks", "fingerprint": "0ed01749c308481bdf791b023031f84ef75b11b86e3930c2a04db88a4bff1f18", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|yt_dlp/extractor/espn.py|33|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/espn.py"}, "region": {"startLine": 332}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55028, "scanner": "gitleaks", "fingerprint": "d8ca8f5a89be1d1b92c002a38834819bb7af57788e18456350f40711d6d4ee9d", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "key = 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/iqiyi.py|10|key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/iqiyi.py"}, "region": {"startLine": 107}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55027, "scanner": "gitleaks", "fingerprint": "1506482fbc26b4cb839c90a9116a58361da47f3fc6757e217be32fac2c4dd97c", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_API_KEY = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|1|_api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/imggaming.py"}, "region": {"startLine": 15}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55026, "scanner": "gitleaks", "fingerprint": "7af8babba40a2bfe8a1e1da99aa5a5049f477ea58808527fe12afb0aa8e780a9", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|yt_dlp/extractor/go.py|4|redacted", "duplicate_count": 1, "duplicate_rule_ids": ["jwt"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["47f335954c3d918957ec9b24569e49b1b30fd77034c20e5db5d9ca804ed95087", "7af8babba40a2bfe8a1e1da99aa5a5049f477ea58808527fe12afb0aa8e780a9"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/go.py"}, "region": {"startLine": 41}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55025, "scanner": "gitleaks", "fingerprint": "3366e0e79f5bc31aa5a960dda198e0beac65aa53d98442eee29b5c50232f9339", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|yt_dlp/extractor/go.py|3|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/go.py"}, "region": {"startLine": 34}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55024, "scanner": "gitleaks", "fingerprint": "9a76160c7c7b921e7a6dcfd07d1fa62f25934709e7124e025c7b26edb2bfd3a4", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|yt_dlp/extractor/go.py|2|redacted", "duplicate_count": 1, "duplicate_rule_ids": ["jwt"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["81a4bb84f1d8b910bbf157174b4a9ba7e3096f8bb8718ef1c437094766527f0f", "9a76160c7c7b921e7a6dcfd07d1fa62f25934709e7124e025c7b26edb2bfd3a4"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/go.py"}, "region": {"startLine": 22}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55023, "scanner": "gitleaks", "fingerprint": "918ec8175d2011c212213655208754e2980eecd578f0de81ff25786274e7eba7", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_API_KEY = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/fox.py|5|_api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/fox.py"}, "region": {"startLine": 57}}}]}, {"ruleId": "gcp-api-key", "level": "error", "message": {"text": "Uncovered a GCP API key, which could lead to unauthorized access to Google Cloud services and data breaches."}, "properties": {"repobilityId": 55022, "scanner": "gitleaks", "fingerprint": "a2395091643b3d9fe29db9a1b43803add31fce5a349256b7c731056afff2cbab", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED'", "rule_id": "gcp-api-key", "scanner": "gitleaks", "detector": "gcp-api-key", "correlation_key": "secret|yt_dlp/extractor/cybrary.py|1|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/cybrary.py"}, "region": {"startLine": 12}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55021, "scanner": "gitleaks", "fingerprint": "b2d20764530695a843dce83ef1f6cdbbdb84dcb9c5660b96a5774dc74b9c48c9", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_AUTH_TOKEN = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|2|_auth_token redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/dangalplay.py"}, "region": {"startLine": 23}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55020, "scanner": "gitleaks", "fingerprint": "dd8eab019f7d128388ad8bad4fe8be994f10fb519604451762de68e4bbb4eca9", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "rlkey=REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/dropbox.py|3|rlkey redacted", "duplicate_count": 1, "duplicate_rule_ids": ["generic-api-key"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["88aa92c405a7f5a0c7f423f1074dd692958b729eb1d8359a2768f590ef44de3f", "dd8eab019f7d128388ad8bad4fe8be994f10fb519604451762de68e4bbb4eca9"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/dropbox.py"}, "region": {"startLine": 33}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55019, "scanner": "gitleaks", "fingerprint": "02b27ed464419644ff127d4f5fe130ee687470b39e4746e5dcc9e513360f1d03", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "api_path = 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/ard.py|56|api_path redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/ard.py"}, "region": {"startLine": 570}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55018, "scanner": "gitleaks", "fingerprint": "935cf492e52b4dc4197b80e93666a78e5dacf83d81b87cbc87ce4e89a9bb86e1", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "token=<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/clyp.py|2|token redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/clyp.py"}, "region": {"startLine": 24}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55017, "scanner": "gitleaks", "fingerprint": "54e87b99a9e5defa141c15b24e75456e8373d4bd30afe98894bbc4c81afb2105", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "RAINFOCUS_API_PROFILE_ID = 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|1|rainfocus_api_profile_id redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/ciscolive.py"}, "region": {"startLine": 18}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55016, "scanner": "gitleaks", "fingerprint": "40e3365e95b51f9b0997798d9511fc3b0735f42ec735d49ffe0ec6ac5aa1db02", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 3 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|token|2|redacted", "duplicate_count": 3, "duplicate_rule_ids": ["jwt"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["40e3365e95b51f9b0997798d9511fc3b0735f42ec735d49ffe0ec6ac5aa1db02", "54c6637951c9ca0fc2d0c3c928f5d65b63ce1384ceb6818be16a3f8c6aba6750", "e29939cebd5ef9bb3a45332aac801968cfc9616894534324f9a92245e7a81ea1", "fce1816bb542882762c665a7f7127672a0f358e6e0bfcd8597b534d8bf0b7f8f"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/aenetworks.py"}, "region": {"startLine": 26}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55015, "scanner": "gitleaks", "fingerprint": "0304a9cf6360d620221d0195fa5713a62be49de0058e396ddd7062132b1e2dc3", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "_TOKEN = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|25|_token redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/bitchute.py"}, "region": {"startLine": 255}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55014, "scanner": "gitleaks", "fingerprint": "b803e453635349e25ee61e08fd87302d34aca27490455de838877ef4044f4ad1", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "token=<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/blogger.py|1|token redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/blogger.py"}, "region": {"startLine": 16}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55013, "scanner": "gitleaks", "fingerprint": "80aa69f8ab15b5d0aefd43c1c8c544be53bdbf4ddc763704bc4fe99bef1e6448", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "sharedKey=REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/bandlab.py|15|sharedkey redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/bandlab.py"}, "region": {"startLine": 153}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55012, "scanner": "gitleaks", "fingerprint": "a750899c4f5594f848c1bd2524a253944ae833da34e2a26af8041094afc093f8", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|token|16|redacted", "duplicate_count": 1, "duplicate_rule_ids": ["jwt"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["a750899c4f5594f848c1bd2524a253944ae833da34e2a26af8041094afc093f8", "bb374aedf2d20bee6a944e62bb97a1c326f8536570f8ffb06b0c22fbd29d76ec"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/blackboardcollaborate.py"}, "region": {"startLine": 163}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55011, "scanner": "gitleaks", "fingerprint": "94a8e6d1df2dedc2a98de5d9b018bd3115a71dec49f179a13352d505d92ec847", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "AUTH_TOKEN = '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|yt_dlp/extractor/bibeltv.py|2|auth_token redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/bibeltv.py"}, "region": {"startLine": 22}}}]}, {"ruleId": "algolia-api-key", "level": "error", "message": {"text": "Identified an Algolia API Key, which could result in unauthorized search operations and data exposure on Algolia-managed platforms."}, "properties": {"repobilityId": 55010, "scanner": "gitleaks", "fingerprint": "31677384be4990baf3dc25b79f0a668c7589c458701b160b8aebab5c07564a0d", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "X-Algolia-API-Key': '<redacted>'", "rule_id": "algolia-api-key", "scanner": "gitleaks", "detector": "algolia-api-key", "correlation_key": "secret|token|18|x-algolia-api-key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/americastestkitchen.py"}, "region": {"startLine": 188}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55009, "scanner": "gitleaks", "fingerprint": "39942a49434d1984d005352b267c16c6f3b51f04f4fec8af956d3be654ad7b48", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "api_key=<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|9|api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/americastestkitchen.py"}, "region": {"startLine": 96}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55008, "scanner": "gitleaks", "fingerprint": "e164d5ce4923fa292b81d02fcbc506a0e0305922ee1e8f76a580d4aa1ab3305b", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "X-MICROCMS-API-KEY': '<redacted>'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|token|1|x-microcms-api-key : redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/asobichannel.py"}, "region": {"startLine": 13}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55007, "scanner": "gitleaks", "fingerprint": "df2d1ffe39632aed6559b453293ce6336cd6c75eba07e906280194e18d14a08a", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 3 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|test/test_utils.py|222|redacted", "duplicate_count": 3, "duplicate_rule_ids": ["jwt"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["26212a973cf5dce3d47bbf914822e2c740938185ede491de76a78d33c00147f4", "621ae2366a75ff72b253bb65de08f94ef295940fad99f907b7b7c29625bdda93", "839b6e4d6c9ec02516e3f5f472db61007be61dc9eaa3b74add425227ae94f658", "df2d1ffe39632aed6559b453293ce6336cd6c75eba07e906280194e18d14a08a"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_utils.py"}, "region": {"startLine": 2221}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55006, "scanner": "gitleaks", "fingerprint": "5104b539633f319dcbd0a94b12aefe4011629f64a5cbd0dc017169cf29bb2504", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|test/test_utils.py|221|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_utils.py"}, "region": {"startLine": 2220}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55005, "scanner": "gitleaks", "fingerprint": "3e7fa0fe3f1fa7b2b9984ca560284bfd17789dd12f9ce00ddd1d0cd80ff404fd", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|token|15|redacted", "duplicate_count": 1, "duplicate_rule_ids": ["jwt"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["3e7fa0fe3f1fa7b2b9984ca560284bfd17789dd12f9ce00ddd1d0cd80ff404fd", "aa4a63dc58804ce106d6ae043e747d92992b65e0cb31a6de301e58731cdbe8c8"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/adultswim.py"}, "region": {"startLine": 156}}}]}, {"ruleId": "jwt", "level": "error", "message": {"text": "Uncovered a JSON Web Token, which may lead to unauthorized access to web applications and sensitive user data."}, "properties": {"repobilityId": 55004, "scanner": "gitleaks", "fingerprint": "3a1dbb83b13873bef51b69701a69b679940cb0c1e30d460ba8f091375f0774ef", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED'", "rule_id": "jwt", "scanner": "gitleaks", "detector": "jwt", "correlation_key": "secret|token|8|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/adultswim.py"}, "region": {"startLine": 87}}}]}, {"ruleId": "private-key", "level": "error", "message": {"text": "Identified a Private Key, which may compromise cryptographic security and sensitive data encryption."}, "properties": {"repobilityId": 55003, "scanner": "gitleaks", "fingerprint": "305c9dcc3f46ae332757091ac824c694f3d881ee803da6045efa6bc23fda14ad", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "REDACTED", "rule_id": "private-key", "scanner": "gitleaks", "detector": "private-key", "correlation_key": "secret|test/testcert.pem|1|redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/testcert.pem"}, "region": {"startLine": 1}}}]}, {"ruleId": "private-key", "level": "error", "message": {"text": "Identified a Private Key, which may compromise cryptographic security and sensitive data encryption."}, "properties": {"repobilityId": 55002, "scanner": "gitleaks", "fingerprint": "518ff1f519b7a38273419dfc99c9536dd8fc921389d8b00fcc783fee4f701c3d", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "Collapsed 5 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "REDACTED", "rule_id": "private-key", "scanner": "gitleaks", "detector": "private-key", "correlation_key": "secret|token|1|redacted", "duplicate_count": 5, "duplicate_rule_ids": ["gcp-api-key", "private-key"], "duplicate_scanners": ["gitleaks"], "duplicate_fingerprints": ["044bc14caa3902d9e4151cc1d60c56c68ccd4529f46df20dd433f8bf934c5c23", "462ffea8f3d7a1ad9ccba15a5cec345eba9bf9268b4c68ed9c4a7eff2aa01a90", "518ff1f519b7a38273419dfc99c9536dd8fc921389d8b00fcc783fee4f701c3d", "6278e473465d819191249ab9162012fdce6162ad4b84c931e3222240439575ce", "9918d03fca70eded8aa10b53a4c7c4ebda1e9a3cbcdb7f140e16a9cc94f34975", "b352018d88a6c944a8420f26db20e2d262fdcfd0d70701d9ab5ac27f1aeeaa56"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/testdata/certificate/clientencrypted.key"}, "region": {"startLine": 1}}}]}, {"ruleId": "generic-api-key", "level": "error", "message": {"text": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations."}, "properties": {"repobilityId": 55001, "scanner": "gitleaks", "fingerprint": "9d0d8396d03ca980adb31820416731a4b3c40517453d0b4fd0aa726f669f1120", "category": "credential_exposure", "severity": "critical", "confidence": 0.95, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"match": "key = 'REDACTED'", "rule_id": "generic-api-key", "scanner": "gitleaks", "detector": "generic-api-key", "correlation_key": "secret|test/test_aes.py|12|key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_aes.py"}, "region": {"startLine": 127}}}]}, {"ruleId": "SEC010", "level": "error", "message": {"text": "[SEC010] Cloud Provider Token: Cloud provider or SaaS API token found in source code."}, "properties": {"repobilityId": 54973, "scanner": "repobility-threat-engine", "fingerprint": "947ffa3aab1955aa3ea882628a829216e080e39703ea3c384ad770db51a4217b", "category": "credential_exposure", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found Collapsed 1 duplicate scanner signal(s) for the same underlying issue.", "evidence": {"match": "AKIAI6X4TYCIXM2B7MUQ", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC010", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "secret|yt_dlp/extractor/shahid.py|3|akiai6x4tycixm2b7muq", "duplicate_count": 1, "duplicate_rule_ids": ["SEC010", "SEC048"], "duplicate_scanners": ["repobility-threat-engine"], "duplicate_fingerprints": ["0724bea08f95d7def23d986510b11274cf70fca2eb048e79322b67efab1b8304", "947ffa3aab1955aa3ea882628a829216e080e39703ea3c384ad770db51a4217b"]}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/shahid.py"}, "region": {"startLine": 39}}}]}, {"ruleId": "SEC039", "level": "error", "message": {"text": "[SEC039] Plaintext-equivalent password hash \u2014 unsalted single-pass digest: Single-pass digest of a password is cryptographically strong as a hash, but is rainbow-table-attackable when used for passwords: there's no salt and no key-stretching. Attackers with the hash database can crack 90%+ of common passwords offline in hours. CWE-916 (use of password hash without computational effort)."}, "properties": {"repobilityId": 54966, "scanner": "repobility-threat-engine", "fingerprint": "80358bf7588b743fcfa63ecf8faa2a1b553e820ce5dd4501a1a040e6daaeff87", "category": "crypto", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "hashlib.sha256(password", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC039", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "code|crypto|yt_dlp/extractor/gofile.py|66|sec039"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/gofile.py"}, "region": {"startLine": 66}}}]}, {"ruleId": "SEC049", "level": "error", "message": {"text": "[SEC049] GCP API key: Google Cloud API key (AIza prefix). Ported from gitleaks gcp-api-key (MIT)."}, "properties": {"repobilityId": 54958, "scanner": "repobility-threat-engine", "fingerprint": "31f8b9646d2c54aa21665c61532122a187d18e845b05b5b8dfb71736e3a802d5", "category": "secret", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "AIzaSyCR9czxhH2eWuijEhTNWBZ5MCcOYEUTAhg'", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC049", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "secret|token|1|token"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/stacommu.py"}, "region": {"startLine": 15}}}]}, {"ruleId": "SEC049", "level": "error", "message": {"text": "[SEC049] GCP API key: Google Cloud API key (AIza prefix). Ported from gitleaks gcp-api-key (MIT)."}, "properties": {"repobilityId": 54957, "scanner": "repobility-threat-engine", "fingerprint": "a64173048ee5885b0d90bdd1fa93e319bb8b2baba4b6d2121d93408230876f48", "category": "secret", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "Pattern matched with no mitigating context found", "evidence": {"match": "AIzaSyCX9ru6j70PX2My1Eq6Q1zoMAhuTdXlzSw'", "reason": "Pattern matched with no mitigating context found", "rule_id": "SEC049", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "secret|yt_dlp/extractor/cybrary.py|1|token"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/cybrary.py"}, "region": {"startLine": 12}}}]}, {"ruleId": "SEC002", "level": "error", "message": {"text": "[SEC002] Hardcoded API Key: Hardcoded API key found in source code."}, "properties": {"repobilityId": 54955, "scanner": "repobility-threat-engine", "fingerprint": "0745ebe689dcef04976d697769a503e475b4fdd431b2fcd9015f3e191c9187ba", "category": "credential_exposure", "severity": "critical", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "High entropy value (4.8 bits) \u2014 likely real secret", "evidence": {"match": "API_KEY = '<redacted>'", "reason": "High entropy value (4.8 bits) \u2014 likely real secret", "rule_id": "SEC002", "scanner": "repobility-threat-engine", "confidence": 0.9, "correlation_key": "secret|token|4|api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/scrippsnetworks.py"}, "region": {"startLine": 49}}}]}, {"ruleId": "SEC002", "level": "error", "message": {"text": "[SEC002] Hardcoded API Key: Hardcoded API key found in source code."}, "properties": {"repobilityId": 54954, "scanner": "repobility-threat-engine", "fingerprint": "09a1bdd89a759d1076b997e82dd0d57fe8e945dc0f1a8c015f10de984a2f27e9", "category": "credential_exposure", "severity": "critical", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "High entropy value (4.6 bits) \u2014 likely real secret", "evidence": {"match": "API_KEY = '<redacted>'", "reason": "High entropy value (4.6 bits) \u2014 likely real secret", "rule_id": "SEC002", "scanner": "repobility-threat-engine", "confidence": 0.9, "correlation_key": "secret|yt_dlp/extractor/fox.py|5|api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/fox.py"}, "region": {"startLine": 57}}}]}, {"ruleId": "SEC002", "level": "error", "message": {"text": "[SEC002] Hardcoded API Key: Hardcoded API key found in source code."}, "properties": {"repobilityId": 54953, "scanner": "repobility-threat-engine", "fingerprint": "2f2ba934bd999f8b81c59771e57164ec6b56d93fe39448cc269eb383774f5e93", "category": "credential_exposure", "severity": "critical", "confidence": 0.9, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "High entropy value (4.7 bits) \u2014 likely real secret", "evidence": {"match": "API_KEY = '<redacted>'", "reason": "High entropy value (4.7 bits) \u2014 likely real secret", "rule_id": "SEC002", "scanner": "repobility-threat-engine", "confidence": 0.9, "correlation_key": "secret|yt_dlp/extractor/cybrary.py|1|api_key redacted"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/cybrary.py"}, "region": {"startLine": 12}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `warnings` used but not imported"}, "properties": {"repobilityId": 54888, "scanner": "repobility-ast-engine", "fingerprint": "88e48f4685c9556b53adc1d0bc8d078de2c688cb31aca202e1b649647cec6132", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|88e48f4685c9556b53adc1d0bc8d078de2c688cb31aca202e1b649647cec6132"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/youtube/_base.py"}, "region": {"startLine": 1063}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `string` used but not imported"}, "properties": {"repobilityId": 54880, "scanner": "repobility-ast-engine", "fingerprint": "59c16cbcf27d3f88a7c3ea458ff7162664c0985e7d6164b3945786a830f41999", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|59c16cbcf27d3f88a7c3ea458ff7162664c0985e7d6164b3945786a830f41999"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/postprocessor/ffmpeg.py"}, "region": {"startLine": 384}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `string` used but not imported"}, "properties": {"repobilityId": 54875, "scanner": "repobility-ast-engine", "fingerprint": "9c5b3781f6ed9080b14e03ae3ceedd407e0ee053ed94eac06fc2ccc611aa77a1", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|9c5b3781f6ed9080b14e03ae3ceedd407e0ee053ed94eac06fc2ccc611aa77a1"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/utils/_utils.py"}, "region": {"startLine": 2445}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `hmac` used but not imported"}, "properties": {"repobilityId": 54873, "scanner": "repobility-ast-engine", "fingerprint": "2245fe3fc85390e5a8f7eb6ec6454fa29765f60926e5afdd876c1e11f37abed2", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|2245fe3fc85390e5a8f7eb6ec6454fa29765f60926e5afdd876c1e11f37abed2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/itv.py"}, "region": {"startLine": 77}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `locale` used but not imported"}, "properties": {"repobilityId": 54872, "scanner": "repobility-ast-engine", "fingerprint": "455cb1bf8bdd28abbdcc21ff210121f37448e76bfa4f04871cdd86b8b1c11cf9", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|455cb1bf8bdd28abbdcc21ff210121f37448e76bfa4f04871cdd86b8b1c11cf9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/mgtv.py"}, "region": {"startLine": 160}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `html` used but not imported"}, "properties": {"repobilityId": 54871, "scanner": "repobility-ast-engine", "fingerprint": "d8e21613ccdc00661f0c59e2c84d0be607f85cc43269d28c17bb45b3b550583e", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d8e21613ccdc00661f0c59e2c84d0be607f85cc43269d28c17bb45b3b550583e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/openload.py"}, "region": {"startLine": 204}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `locale` used but not imported"}, "properties": {"repobilityId": 54869, "scanner": "repobility-ast-engine", "fingerprint": "344a1eb28f26934aa23f33359dc5985ac85b7ca02447ff6265f332001cf5b2b6", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|344a1eb28f26934aa23f33359dc5985ac85b7ca02447ff6265f332001cf5b2b6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/lego.py"}, "region": {"startLine": 65}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `json` used but not imported"}, "properties": {"repobilityId": 54861, "scanner": "repobility-ast-engine", "fingerprint": "c2dd90f36a28ce5726eace84f63ead5881b9fba71692171337ab510343c51af6", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|c2dd90f36a28ce5726eace84f63ead5881b9fba71692171337ab510343c51af6"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/wimtv.py"}, "region": {"startLine": 101}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `xml` used but not imported"}, "properties": {"repobilityId": 54858, "scanner": "repobility-ast-engine", "fingerprint": "e961c729731d680d37d043bfc4580acd0962c5c56b541e279a8267a430bd4af0", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|e961c729731d680d37d043bfc4580acd0962c5c56b541e279a8267a430bd4af0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/br.py"}, "region": {"startLine": 90}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `stat` used but not imported"}, "properties": {"repobilityId": 54856, "scanner": "repobility-ast-engine", "fingerprint": "0bf3944e9d518a3f93c413236788e7e8c99485663d6e1a18c0e0d1e5e5705646", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|0bf3944e9d518a3f93c413236788e7e8c99485663d6e1a18c0e0d1e5e5705646"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/bandcamp.py"}, "region": {"startLine": 246}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `html` used but not imported"}, "properties": {"repobilityId": 54853, "scanner": "repobility-ast-engine", "fingerprint": "a5e57f9348fc5a5290eef0b488a61ac28bbd3e950cba31f244846e06780f7544", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|a5e57f9348fc5a5290eef0b488a61ac28bbd3e950cba31f244846e06780f7544"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/kukululive.py"}, "region": {"startLine": 91}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `locale` used but not imported"}, "properties": {"repobilityId": 54852, "scanner": "repobility-ast-engine", "fingerprint": "abf84e72823d0137ab0bacba33995d22b58c772e51b011e8e461dccf26dfdfad", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|abf84e72823d0137ab0bacba33995d22b58c772e51b011e8e461dccf26dfdfad"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/extractor/theweatherchannel.py"}, "region": {"startLine": 41}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `html` used but not imported"}, "properties": {"repobilityId": 54845, "scanner": "repobility-ast-engine", "fingerprint": "1d038dcc4aedf6228af2f237ff290fa1b90aeb9a6af09606cfcbb01ffd0e2fc3", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|1d038dcc4aedf6228af2f237ff290fa1b90aeb9a6af09606cfcbb01ffd0e2fc3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_utils.py"}, "region": {"startLine": 1812}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `xml` used but not imported"}, "properties": {"repobilityId": 54844, "scanner": "repobility-ast-engine", "fingerprint": "d1c492fcad9593215c984b766216a3e99919524cb8ec865e31ba2ade5051e996", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|d1c492fcad9593215c984b766216a3e99919524cb8ec865e31ba2ade5051e996"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "test/test_compat.py"}, "region": {"startLine": 47}}}]}, {"ruleId": "MINED107", "level": "error", "message": {"text": "Missing import: `warnings` used but not imported"}, "properties": {"repobilityId": 54804, "scanner": "repobility-ast-engine", "fingerprint": "c254fcbcfbd0bda6bb811742b2c8f3772e3311a6d9529715dd4b023b59606c31", "category": "quality", "severity": "critical", "confidence": 1.0, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "missing-import-python", "owasp": "A06:2021", "cwe_ids": ["CWE-1075"], "languages": ["python"], "observations_count": 2192}, "scanner": "repobility-ast-engine", "correlation_key": "fp|c254fcbcfbd0bda6bb811742b2c8f3772e3311a6d9529715dd4b023b59606c31"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": "yt_dlp/__init__.py"}, "region": {"startLine": 503}}}]}]}]}