https://github.com/agentic-community/mcp-gateway-registry.git ·
lang: python ·
LOC: ·
source: both
| Rule | Severity | Count |
|---|---|---|
SEC022 Database URL With Embedded Credential |
critical | 4 |
SEC004 SQL Injection Risk |
high | 4 |
SEC020 Secret Printed to Logs |
high | 4 |
SEC013 Path Traversal — User Input in File Path |
high | 4 |
SEC016 LLM Prompt Injection — User Input in AI Prompt |
high | 4 |
SEC017 Unbounded Input to LLM/External API |
medium | 2 |
SEC001 Hardcoded Password |
critical | 1 |
SEC022
Database URL With Embedded Credential
scripts/debug-scopes.py:53
· conf 1.00
[SEC022] Database URL With Embedded Credential: A database connection URL contains an embedded username and password. These URLs are often copied into defaults, docs, and scripts, then leak working c…SEC022
Database URL With Embedded Credential
scripts/load-scopes.py:62
· conf 1.00
[SEC022] Database URL With Embedded Credential: A database connection URL contains an embedded username and password. These URLs are often copied into defaults, docs, and scripts, then leak working c…SEC022
Database URL With Embedded Credential
scripts/manage-documentdb.py:81
· conf 1.00
[SEC022] Database URL With Embedded Credential: A database connection URL contains an embedded username and password. These URLs are often copied into defaults, docs, and scripts, then leak working c…SEC004
SQL Injection Risk
metrics-service/app/core/retention.py:177
· conf 0.85
[SEC004] SQL Injection Risk: String interpolation in SQL execution. Allows SQL injection.SEC004
SQL Injection Risk
registry/api/agent_routes.py:1290
· conf 0.85
[SEC004] SQL Injection Risk: String interpolation in SQL execution. Allows SQL injection.SEC004
SQL Injection Risk
registry/api/skill_routes.py:905
· conf 0.85
[SEC004] SQL Injection Risk: String interpolation in SQL execution. Allows SQL injection.SEC013
Path Traversal — User Input in File Path
cli/mcp_utils.py:214
· conf 0.80
[SEC013] Path Traversal — User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files.SEC013
Path Traversal — User Input in File Path
frontend/src/components/ApplicationLogs.tsx:154
· conf 0.80
[SEC013] Path Traversal — User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files.SEC013
Path Traversal — User Input in File Path
frontend/src/pages/AuditLogsPage.tsx:66
· conf 0.80
[SEC013] Path Traversal — User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files.SEC016
LLM Prompt Injection — User Input in AI Prompt
registry/main.py:1055
· conf 0.90
[SEC016] LLM Prompt Injection — User Input in AI Prompt: User-supplied text is interpolated directly into an AI/LLM prompt (e.g. OpenAI, Anthropic, or local model). This is the AI equivalent of SQL i…SEC020
Secret Printed to Logs
auth_server/cognito_utils.py:57
· conf 0.85
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…SEC020
Secret Printed to Logs
credentials-provider/add_noauth_services.py:90
· conf 0.85
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…SEC020
Secret Printed to Logs
credentials-provider/oauth/generic_oauth_flow.py:1037
· conf 0.92
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…SEC001
Hardcoded Password
frontend/src/components/IAMUsers.tsx:111
· conf 0.30
[SEC001] Hardcoded Password: Hardcoded password found in source code.SEC016
LLM Prompt Injection — User Input in AI Prompt
servers/realserverfaketools/server.py:132
· conf 0.50
[SEC016] LLM Prompt Injection — User Input in AI Prompt: User-supplied text is interpolated directly into an AI/LLM prompt (e.g. OpenAI, Anthropic, or local model). This is the AI equivalent of SQL i…SEC017
Unbounded Input to LLM/External API
registry/main.py:1055
· conf 0.80
[SEC017] Unbounded Input to LLM/External API: User input is passed to an LLM or external AI API (OpenAI, Anthropic, etc.) without any visible length or size validation. This creates two risks: (1) Co…SEC017
Unbounded Input to LLM/External API
servers/realserverfaketools/server.py:132
· conf 0.80
[SEC017] Unbounded Input to LLM/External API: User input is passed to an LLM or external AI API (OpenAI, Anthropic, etc.) without any visible length or size validation. This creates two risks: (1) Co…SEC004
SQL Injection Risk
[SEC004] SQL Injection Risk (and 5 more): Same pattern found in 5 additional files. Review if needed.SEC013
Path Traversal — User Input in File Path
[SEC013] Path Traversal — User Input in File Path (and 1 more): Same pattern found in 1 additional files. Review if needed.SEC016
LLM Prompt Injection — User Input in AI Prompt
[SEC016] LLM Prompt Injection — User Input in AI Prompt (and 1 more): Same pattern found in 1 additional files. Review if needed.SEC016
LLM Prompt Injection — User Input in AI Prompt
servers/example-server/server.py:75
· conf 0.10
[SEC016] LLM Prompt Injection — User Input in AI Prompt: User-supplied text is interpolated directly into an AI/LLM prompt (e.g. OpenAI, Anthropic, or local model). This is the AI equivalent of SQL i…SEC020
Secret Printed to Logs
[SEC020] Secret Printed to Logs (and 65 more): Same pattern found in 65 additional files. Review if needed.SEC022
Database URL With Embedded Credential
[SEC022] Database URL With Embedded Credential (and 7 more): Same pattern found in 7 additional files. Review if needed.Reading from rp.scan + rp.finding + rp.rule (unified schema, R78 series). Legacy data path unchanged. Compare with /scan/063c0d3f-9293-4a44-b676-cd76b0028d8d/.