← Legacy view v2 (rp.*)

google/adk-java

https://github.com/google/adk-java · lang: java · LOC: · source: user_submitted

Quality

76.7

Grade B+

Security

94.8

Findings

0 critical · 1 high

Status

completed

May 15, 2026 13:34

high: 1 low: 1

Top rules by occurrence

Rule	Severity	Count
`SEC006` XSS Risk	high	1
`SEC013` Path Traversal — User Input in File Path	high	1

First 2 findings (severity-sorted)

high SEC013 Path Traversal — User Input in File Path

dev/browser/chunk-TXJFAAIW.js:2 · conf 0.80

[SEC013] Path Traversal — User Input in File Path: User-controlled input used in file path without sanitization. Allows reading arbitrary files.

low SEC006 XSS Risk

dev/browser/chunk-TXJFAAIW.js:1 · conf 0.40

[SEC006] XSS Risk: Direct HTML injection without sanitization.

Reading from rp.scan + rp.finding + rp.rule (unified schema, R78 series). Legacy data path unchanged. Compare with /scan/8b20d229-8149-49f5-9ad0-18d057f68f2d/.