https://github.com/Light-Heart-Labs/DreamServer.git ·
lang: python ·
LOC: ·
source: both
| Rule | Severity | Count |
|---|---|---|
DKC006 Compose service does not declare a runtime user |
low | 42 |
DKC007 Compose service contains a literal secret environment value |
medium | 30 |
AIC003 Duplicated implementation block across source files |
low | 7 |
DKR001 Docker final stage has no non-root USER |
medium | 5 |
DKC010 Compose service lacks no-new-privileges hardening |
low | 5 |
DKC014 Database data bind mount is inside the Docker build context |
medium | 4 |
AGT012 Agent control bridge may listen on a network interface with… |
medium | 4 |
AGT015 Remote install command pipes network code directly to a she… |
medium | 4 |
ERR002 [ERR002] Empty Catch Block: Empty catch blocks hide errors. |
medium | 3 |
ERR001 [ERR001] Silent Exception Swallowing (and 2 more): Same pat… |
info | 3 |
DKC007
Compose service contains a literal secret environment value
dream-server/extensions/services/ape/compose.yaml:1
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
dream-server/extensions/services/brave-search/compose.yaml:1
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
dream-server/extensions/services/hermes/compose.yaml:1
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
dream-server/extensions/services/litellm/compose.yaml:1
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
dream-server/extensions/services/n8n/compose.yaml:1
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
dream-server/extensions/services/openclaw/compose.yaml:1
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
dream-server/extensions/services/openclaw/compose.yaml:56
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
dream-server/extensions/services/perplexica/compose.yaml:1
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
dream-server/extensions/services/privacy-shield/compose.yaml:1
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
dream-server/extensions/services/qdrant/compose.yaml:1
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
dream-server/extensions/services/searxng/compose.yaml:1
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/products/token-spy/docker-compose.yml:17
· conf 0.96
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/products/token-spy/docker-compose.yml:58
· conf 0.96
Compose service contains a literal secret environment valueSEC022
Database URL With Embedded Credential
resources/products/privacy-shield/custom_recognizers.py:312
· conf 1.00
[SEC022] Database URL With Embedded Credential: A database connection URL contains an embedded username and password. These URLs are often copied into defaults, docs, and scripts, then leak working c…AGT002
LLM memory extraction can be prompt-injected into storing fake facts
dream-server/extensions/services/token-spy/main.py:750
· conf 0.82
LLM memory extraction can be prompt-injected into storing fake factsDKC002
Compose service uses host networking
dream-server/extensions/services/tailscale/compose.yaml:1
· conf 0.90
Compose service uses host networkingDKC011
Database service publishes a host port
resources/products/token-spy/docker-compose.yml:92
· conf 0.84
Database service publishes a host portDKR014
Dockerfile copies the entire context without .dockerignore
dream-server/extensions/services/dashboard/Dockerfile:16
· conf 0.92
Dockerfile copies the entire context without .dockerignoreDKR014
Dockerfile copies the entire context without .dockerignore
dream-server/extensions/services/token-spy/Dockerfile:8
· conf 0.92
Dockerfile copies the entire context without .dockerignoreJRN009
Secret-like setting is echoed into a password input value
resources/products/token-spy/dashboard/src/pages/ProviderKeysPage.tsx:199
· conf 0.83
Secret-like setting is echoed into a password input valueSEC013
Path Traversal — User Input in File Path
dream-server/extensions/services/dashboard-api/helpers.py:563
· conf 0.80
[SEC013] Path Traversal — User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files.SEC013
Path Traversal — User Input in File Path
dream-server/extensions/services/dashboard-api/main.py:450
· conf 0.80
[SEC013] Path Traversal — User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files.SEC013
Path Traversal — User Input in File Path
dream-server/extensions/services/dashboard-api/routers/setup.py:288
· conf 0.80
[SEC013] Path Traversal — User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files.SEC016
LLM Prompt Injection — User Input in AI Prompt
resources/tools/local_spawner.py:205
· conf 0.90
[SEC016] LLM Prompt Injection — User Input in AI Prompt: User-supplied text is interpolated directly into an AI/LLM prompt (e.g. OpenAI, Anthropic, or local model). This is the AI equivalent of SQL i…SEC020
Secret Printed to Logs
dream-server/extensions/services/ape/main.py:63
· conf 0.72
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…SEC029
Server-Side Request Forgery (SSRF) — outbound HTTP from user input
dream-server/extensions/services/dashboard-api/agent_monitor.py:142
· conf 1.00
[SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.25…SEC029
Server-Side Request Forgery (SSRF) — outbound HTTP from user input
dream-server/extensions/services/dashboard-api/main.py:450
· conf 1.00
[SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.25…SEC029
Server-Side Request Forgery (SSRF) — outbound HTTP from user input
dream-server/extensions/services/dashboard-api/routers/extensions.py:599
· conf 1.00
[SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.25…AGT012
Agent control bridge may listen on a network interface without visible auth
dream-server/docker-compose.base.yml:37
· conf 0.72
Agent control bridge may listen on a network interface without visible authAGT012
Agent control bridge may listen on a network interface without visible auth
dream-server/extensions/services/dashboard-api/config.py:226
· conf 0.72
Agent control bridge may listen on a network interface without visible authAGT012
Agent control bridge may listen on a network interface without visible auth
dream-server/extensions/services/token-spy/start.sh:35
· conf 0.72
Agent control bridge may listen on a network interface without visible authAGT012
Agent control bridge may listen on a network interface without visible auth
dream-server/installers/phases/11-services.sh:81
· conf 0.72
Agent control bridge may listen on a network interface without visible authAGT015
Remote install command pipes network code directly to a shell
dream-server/config/ape/policy.yaml:34
· conf 0.70
Remote install command pipes network code directly to a shellAGT015
Remote install command pipes network code directly to a shell
dream-server/get-dream-server.sh:3
· conf 0.70
Remote install command pipes network code directly to a shellAGT015
Remote install command pipes network code directly to a shell
dream-server/scripts/demo-offline.sh:350
· conf 0.70
Remote install command pipes network code directly to a shellAGT015
Remote install command pipes network code directly to a shell
resources/dev/download-page/index.html:332
· conf 0.70
Remote install command pipes network code directly to a shellAUC001
[AUC001] No Repobility access matrix policy found: The repository uses web/API frameworks but does not define .repobility/access.yml or equivalent authorization documentation.
[AUC001] No Repobility access matrix policy found: The repository uses web/API frameworks but does not define .repobility/access.yml or equivalent authorization documentation.DKC005
Compose service adds dangerous Linux capabilities
dream-server/extensions/services/tailscale/compose.yaml:1
· conf 0.72
Compose service adds dangerous Linux capabilitiesDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/aider/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/anythingllm/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/bark/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/baserow/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/crewai/compose.yaml:8
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/flowise/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/frigate/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/immich/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/immich/compose.yaml:39
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/jupyter/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/librechat/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/librechat/compose.yaml:80
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/open-interpreter/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/paperless-ngx/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/paperless-ngx/compose.yaml:43
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/rvc/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC007
Compose service contains a literal secret environment value
resources/dev/extensions-library/services/weaviate/compose.yaml:1
· conf 0.56
Compose service contains a literal secret environment valueDKC014
Database data bind mount is inside the Docker build context
resources/dev/extensions-library/services/immich/compose.yaml:64
· conf 0.84
Database data bind mount is inside the Docker build contextDKC014
Database data bind mount is inside the Docker build context
resources/dev/extensions-library/services/librechat/compose.yaml:80
· conf 0.84
Database data bind mount is inside the Docker build contextDKC014
Database data bind mount is inside the Docker build context
resources/dev/extensions-library/services/paperless-ngx/compose.yaml:43
· conf 0.84
Database data bind mount is inside the Docker build contextDKC014
Database data bind mount is inside the Docker build context
resources/dev/extensions-library/services/paperless-ngx/compose.yaml:72
· conf 0.84
Database data bind mount is inside the Docker build contextDKR001
Docker final stage has no non-root USER
dream-server/extensions/services/llama-server/Dockerfile.amd:81
· conf 0.82
Docker final stage has no non-root USERDKR001
Docker final stage has no non-root USER
dream-server/images/llama-sycl/Dockerfile:71
· conf 0.82
Docker final stage has no non-root USERDKR001
Docker final stage has no non-root USER
resources/dev/bootstrap/Dockerfile:18
· conf 0.82
Docker final stage has no non-root USERDKR001
Docker final stage has no non-root USER
resources/dev/extensions-library/services/bark/Dockerfile:4
· conf 0.82
Docker final stage has no non-root USERDKR001
Docker final stage has no non-root USER
resources/products/privacy-shield/Dockerfile:4
· conf 0.82
Docker final stage has no non-root USERDKR002
Dockerfile base image has no explicit tag
resources/dev/extensions-library/services/audiocraft/Dockerfile:23
· conf 0.90
Dockerfile base image has no explicit tagDKR002
Dockerfile base image has no explicit tag
resources/dev/extensions-library/services/audiocraft/Dockerfile:24
· conf 0.90
Dockerfile base image has no explicit tagDKR007
Docker build context has no .dockerignore
.dockerignore
· conf 0.90
Docker build context has no .dockerignoreERR001
[ERR001] Silent Exception Swallowing (and 2 more): Same pattern found in 2 additional files. Review if needed.
dream-server/extensions/services/dashboard-api/routers/privacy.py:76
· conf 1.00
[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level.ERR001
[ERR001] Silent Exception Swallowing (and 2 more): Same pattern found in 2 additional files. Review if needed.
resources/products/token-spy/sidecar/audit_middleware.py:247
· conf 1.00
[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level.ERR001
[ERR001] Silent Exception Swallowing (and 2 more): Same pattern found in 2 additional files. Review if needed.
resources/products/token-spy/sidecar/proxy.py:467
· conf 1.00
[ERR001] Silent Exception Swallowing: Silently swallowing all exceptions hides bugs. Even in cleanup code, log at DEBUG level.ERR002
[ERR002] Empty Catch Block: Empty catch blocks hide errors.
dream-server/config/openclaw/inject-token.js:191
· conf 1.00
[ERR002] Empty Catch Block: Empty catch blocks hide errors.ERR002
[ERR002] Empty Catch Block: Empty catch blocks hide errors.
dream-server/extensions/services/dashboard/src/components/Sidebar.jsx:27
· conf 1.00
[ERR002] Empty Catch Block: Empty catch blocks hide errors.ERR002
[ERR002] Empty Catch Block: Empty catch blocks hide errors.
dream-server/extensions/services/dashboard/src/hooks/useModels.js:153
· conf 1.00
[ERR002] Empty Catch Block: Empty catch blocks hide errors.SEC017
Unbounded Input to LLM/External API
resources/tools/local_spawner.py:205
· conf 0.80
[SEC017] Unbounded Input to LLM/External API: User input is passed to an LLM or external AI API (OpenAI, Anthropic, etc.) without any visible length or size validation. This creates two risks: (1) Co…SEC034
Log Injection / Log Forging — unsanitized user input in log
resources/tools/vllm-tool-proxy.py:335
· conf 1.00
[SEC034] Log Injection / Log Forging — unsanitized user input in log: User input is logged without sanitizing newlines or control characters. Attackers inject `\n` to forge fake log entries, hide tra…WEB003
Public web service has no security.txt
.well-known/security.txt
· conf 0.78
Public web service has no security.txtAIC003
Duplicated implementation block across source files
dream-server/extensions/services/dashboard/src/pages/Invites.jsx:405
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
dream-server/extensions/services/dashboard/src/pages/ServiceMap.test.jsx:48
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
dream-server/extensions/services/token-spy/db_postgres.py:305
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
dream-server/extensions/services/token-spy/providers/openai.py:141
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
.github/scripts/apply-type-hints.py:5
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
.github/scripts/generate-type-hints.py:24
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
resources/products/token-spy/db.py:1
· conf 0.86
Duplicated implementation block across source filesDKC006
Compose service does not declare a runtime user
dream-server/extensions/services/ape/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
dream-server/extensions/services/brave-search/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
dream-server/extensions/services/embeddings/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
dream-server/extensions/services/litellm/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
dream-server/extensions/services/perplexica/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
dream-server/extensions/services/qdrant/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
dream-server/extensions/services/searxng/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
dream-server/extensions/services/token-spy/compose.yaml:2
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
dream-server/extensions/services/tts/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
dream-server/extensions/services/whisper/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/anythingllm/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/audiocraft/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/bark/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/baserow/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/chromadb/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/crewai/compose.yaml:8
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/flowise/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/forge/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/frigate/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/gitea/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/immich/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/invokeai/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/jupyter/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/label-studio/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/langflow/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/librechat/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/localai/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/milvus/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/ollama/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/open-interpreter/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/paperless-ngx/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/piper-audio/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/rvc/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/sillytavern/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/text-generation-webui/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/weaviate/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/dev/extensions-library/services/xtts/compose.yaml:1
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/products/privacy-shield/docker-compose.yml:4
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/products/token-spy/docker-compose.yml:17
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/products/token-spy/docker-compose.yml:58
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/products/token-spy/docker-compose.yml:92
· conf 0.56
Compose service does not declare a runtime userDKC006
Compose service does not declare a runtime user
resources/products/token-spy/docker-compose.yml:137
· conf 0.56
Compose service does not declare a runtime userDKC010
Compose service lacks no-new-privileges hardening
resources/products/privacy-shield/docker-compose.yml:4
· conf 0.62
Compose service lacks no-new-privileges hardeningDKC010
Compose service lacks no-new-privileges hardening
resources/products/token-spy/docker-compose.yml:17
· conf 0.62
Compose service lacks no-new-privileges hardeningDKC010
Compose service lacks no-new-privileges hardening
resources/products/token-spy/docker-compose.yml:58
· conf 0.62
Compose service lacks no-new-privileges hardeningDKC010
Compose service lacks no-new-privileges hardening
resources/products/token-spy/docker-compose.yml:92
· conf 0.62
Compose service lacks no-new-privileges hardeningDKC010
Compose service lacks no-new-privileges hardening
resources/products/token-spy/docker-compose.yml:137
· conf 0.62
Compose service lacks no-new-privileges hardeningDKR011
Dockerfile installs recommended OS packages
resources/dev/extensions-library/services/audiocraft/Dockerfile:4
· conf 0.72
Dockerfile installs recommended OS packagesWEB001
Public web app has no robots.txt
robots.txt
· conf 0.74
Public web app has no robots.txtWEB002
Public web app has no sitemap
sitemap.xml
· conf 0.72
Public web app has no sitemapWEB008
Public docs site has no llms.txt
llms.txt
· conf 0.64
Public docs site has no llms.txtWEB011
Public web app has no humans.txt
humans.txt
· conf 0.50
Public web app has no humans.txtReading from rp.scan + rp.finding + rp.rule (unified schema, R78 series). Legacy data path unchanged. Compare with /scan/14ebfb12-eb39-4b1e-a033-187ecee5aff4/.