← Legacy view v2 (rp.*)

ajseverson-glitch/apps

https://github.com/ajseverson-glitch/apps.git · lang: javascript · LOC: · source: user_submitted

Quality

45.8

Grade D+

Security

100.0

Findings

0 critical · 1 high

Status

completed

May 28, 2026 22:49

medium: 4 high: 1 low: 1

Top rules by occurrence

Rule	Severity	Count
`CORE_NO_LICENSE` No LICENSE file	low	1
`SEC087` JS: weak Math.random for crypto	medium	1
`CFG006` [CFG006] Missing .gitignore: No .gitignore file. Risk of co…	medium	1
`CORE_NO_README` No README file found	medium	1
`CORE_NO_CI` No CI/CD configuration found	medium	1
`CORE_NO_TESTS` No test files found	high	1

First 6 findings (severity-sorted)

high CORE_NO_TESTS No test files found

No test files found

medium CFG006 [CFG006] Missing .gitignore: No .gitignore file. Risk of committing secrets and build artifacts.

· conf 1.00

[CFG006] Missing .gitignore: No .gitignore file. Risk of committing secrets and build artifacts.

medium CORE_NO_CI No CI/CD configuration found

No CI/CD configuration found

medium CORE_NO_README No README file found

No README file found

medium SEC087 JS: weak Math.random for crypto

mellow-flow-vite-project/mnt/data/mellow-flow/src/App.jsx:96 · conf 1.00

[SEC087] JS: weak Math.random for crypto: Math.random() is not cryptographically secure; using it for tokens/keys/nonces is predictable. Ported from gosec G404 / eslint detect-pseudoRandomBytes conce…

low CORE_NO_LICENSE No LICENSE file

No LICENSE file

Reading from rp.scan + rp.finding + rp.rule (unified schema, R78 series). Legacy data path unchanged. Compare with /scan/a326f2a6-e11d-44cf-a01c-aa3f0f34810c/.