← Legacy view v2 (rp.*)

supertone-inc/supertonic

https://github.com/supertone-inc/supertonic.git · lang: swift · LOC: · source: user_submitted

Quality
54.9
Grade C-
Security
100.0
Findings
3
0 critical · 0 high
Status
completed
May 16, 2026 09:25
info: 2 low: 1
Top rules by occurrence
RuleSeverityCount
SEC015 Insecure Randomness for Security medium 2
SEC006 XSS Risk high 1
First 3 findings (severity-sorted)
low SEC006 XSS Risk
web/main.js:38 · conf 0.40 
[SEC006] XSS Risk: Direct HTML injection without sanitization.
info SEC015 Insecure Randomness for Security
nodejs/helper.js:174 · conf 0.25 
[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable.
info SEC015 Insecure Randomness for Security
web/helper.js:320 · conf 0.25 
[SEC015] Insecure Randomness for Security: Weak PRNG used in security-sensitive context. Output is predictable.

Reading from rp.scan + rp.finding + rp.rule (unified schema, R78 series). Legacy data path unchanged. Compare with /scan/3040d5b8-70f5-496d-a2f0-f5d19878614e/.