https://github.com/troyahmed18-max/Trading-bot.git ·
lang: python ·
LOC: ·
source: user_submitted
| Rule | Severity | Count |
|---|---|---|
MINED108 self.attribute used but never assigned in __init__ |
high | 5 |
SEC078 Python: requests without timeout |
high | 2 |
MINED067 Python Requests No Timeout |
info | 2 |
CFG006 [CFG006] Missing .gitignore: No .gitignore file. Risk of co… |
medium | 1 |
CORE_NO_README No README file found |
medium | 1 |
CORE_NO_CI No CI/CD configuration found |
medium | 1 |
CORE_NO_TESTS No test files found |
high | 1 |
CORE_NO_LICENSE No LICENSE file |
low | 1 |
MINED111 Bare except continues silently |
medium | 1 |
CORE_NO_TESTS
No test files found
No test files foundMINED108
self.attribute used but never assigned in __init__
CWE-476
analyzer.py:22
· conf 1.00
[MINED108] `self._fetch_coingecko` used but never assigned in __init__: Method `analyze` of class `MarketAnalyzer` reads `self._fetch_coingecko`, but no assignment to it exists in __init__ (and no cl…MINED108
self.attribute used but never assigned in __init__
CWE-476
analyzer.py:24
· conf 1.00
[MINED108] `self._fetch_forex` used but never assigned in __init__: Method `analyze` of class `MarketAnalyzer` reads `self._fetch_forex`, but no assignment to it exists in __init__ (and no class-leve…MINED108
self.attribute used but never assigned in __init__
CWE-476
analyzer.py:26
· conf 1.00
[MINED108] `self._fetch_stooq` used but never assigned in __init__: Method `analyze` of class `MarketAnalyzer` reads `self._fetch_stooq`, but no assignment to it exists in __init__ (and no class-leve…MINED108
self.attribute used but never assigned in __init__
CWE-476
analyzer.py:31
· conf 1.00
[MINED108] `self._compute_indicators` used but never assigned in __init__: Method `analyze` of class `MarketAnalyzer` reads `self._compute_indicators`, but no assignment to it exists in __init__ (and…MINED108
self.attribute used but never assigned in __init__
CWE-476
analyzer.py:33
· conf 1.00
[MINED108] `self._generate_signal` used but never assigned in __init__: Method `analyze` of class `MarketAnalyzer` reads `self._generate_signal`, but no assignment to it exists in __init__ (and no cl…CFG006
[CFG006] Missing .gitignore: No .gitignore file. Risk of committing secrets and build artifacts.
[CFG006] Missing .gitignore: No .gitignore file. Risk of committing secrets and build artifacts.CORE_NO_CI
No CI/CD configuration found
No CI/CD configuration foundCORE_NO_README
No README file found
No README file foundMINED111
Bare except continues silently
analyzer.py:34
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.CORE_NO_LICENSE
No LICENSE file
No LICENSE fileMINED067
Python Requests No Timeout
CWE-400
analyzer.py:40
· conf 1.00
[MINED067] Python Requests No Timeout: requests.get/post/etc. without timeout= can hang forever.MINED067
Python Requests No Timeout
CWE-400
bot.py:24
· conf 1.00
[MINED067] Python Requests No Timeout: requests.get/post/etc. without timeout= can hang forever.SEC078
Python: requests without timeout
analyzer.py:40
· conf 0.10
[SEC078] Python: requests without timeout: requests.get/post without a timeout will hang indefinitely on a non-responsive server, causing thread exhaustion and ReDoS. Ported from bandit B113 (Apache-…SEC078
Python: requests without timeout
bot.py:24
· conf 0.10
[SEC078] Python: requests without timeout: requests.get/post without a timeout will hang indefinitely on a non-responsive server, causing thread exhaustion and ReDoS. Ported from bandit B113 (Apache-…Reading from rp.scan + rp.finding + rp.rule (unified schema, R78 series). Legacy data path unchanged. Compare with /scan/12ca0e6d-f782-42bf-98ff-654d9820dd5d/.