https://github.com/openai/openai-python ·
lang: python ·
LOC: ·
source: user_submitted
| Rule | Severity | Count |
|---|---|---|
AIC003 Duplicated implementation block across source files |
low | 30 |
MINED112 FastAPI POST/PUT/DELETE/PATCH endpoint without auth |
high | 25 |
MINED108 self.attribute used but never assigned in __init__ |
high | 25 |
MINED106 Phantom test coverage (assertion-free test) |
high | 25 |
MINED109 Mutable default argument |
medium | 25 |
MINED111 Bare except continues silently |
medium | 16 |
MINED064 Python Input Call |
info | 4 |
COMP001 [COMP001] High cognitive complexity: Function `load_yfinanc… |
low | 4 |
MINED001 Bare Except Pass |
high | 4 |
MINED050 Stub Only Function |
info | 4 |
MINED019
Ssti Jinja From String
CWE-94
src/openai/resources/responses/input_items.py:88
· conf 1.00
[MINED019] Ssti Jinja From String: jinja2.Environment().from_string(user_input) — full RCE via templates.MINED107
Missing Python import (NameError at runtime)
CWE-1075
src/openai/resources/uploads/uploads.py:452
· conf 1.00
[MINED107] Missing import: `stat` used but not imported: The file uses `stat.something(...)` but never imports `stat`. This raises NameError at runtime the first time the line executes.MINED107
Missing Python import (NameError at runtime)
CWE-1075
src/openai/_utils/_utils.py:367
· conf 1.00
[MINED107] Missing import: `string` used but not imported: The file uses `string.something(...)` but never imports `string`. This raises NameError at runtime the first time the line executes.MINED116
GHA pull_request workflow leaks secrets to forks
CWE-829
.github/workflows/ci.yml:119
· conf 0.90
[MINED116] Workflow uses `secrets.OPENAI_API_KEY` on a `pull_request` trigger: This workflow triggers on `pull_request`, which checks out the FORK's code. Referencing `${ secrets.OPENAI_API_KEY }` le…MINED116
GHA pull_request workflow leaks secrets to forks
CWE-829
.github/workflows/ci.yml:123
· conf 0.90
[MINED116] Workflow uses `secrets.OPENAI_API_KEY` on a `pull_request` trigger: This workflow triggers on `pull_request`, which checks out the FORK's code. Referencing `${ secrets.OPENAI_API_KEY }` le…MINED001
Bare Except Pass
CWE-755
examples/realtime/audio_util.py:138
· conf 1.00
[MINED001] Bare Except Pass: except: pass or except Exception: pass — silently swallows everything including KeyboardInterrupt and bugs.MINED001
Bare Except Pass
CWE-755
examples/realtime/push_to_talk_app.py:253
· conf 1.00
[MINED001] Bare Except Pass: except: pass or except Exception: pass — silently swallows everything including KeyboardInterrupt and bugs.MINED001
Bare Except Pass
CWE-755
src/openai/_event_handler.py:44
· conf 1.00
[MINED001] Bare Except Pass: except: pass or except Exception: pass — silently swallows everything including KeyboardInterrupt and bugs.MINED004
Weak Crypto
CWE-327
src/openai/types/upload_complete_params.py:16
· conf 1.00
[MINED004] Weak Crypto: MD5/SHA1/DES/RC4 used for security context (not just checksums).MINED006
Overcatch Baseexception
CWE-705
examples/realtime/audio_util.py:138
· conf 1.00
[MINED006] Overcatch Baseexception: except BaseException: ... — prevents Ctrl+C and SystemExit from working.MINED006
Overcatch Baseexception
CWE-705
examples/realtime/push_to_talk_app.py:253
· conf 1.00
[MINED006] Overcatch Baseexception: except BaseException: ... — prevents Ctrl+C and SystemExit from working.MINED106
Phantom test coverage (assertion-free test)
CWE-1126
noxfile.py:5
· conf 1.00
[MINED106] Phantom test coverage: test_pydantic_v1: Test function `test_pydantic_v1` runs code but contains no assert / expect / should call — it passes regardless of behaviour. Adds line coverage wi…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/lib/test_azure.py:82
· conf 1.00
[MINED106] Phantom test coverage: test_enforce_credentials_false_sync: Test function `test_enforce_credentials_false_sync` runs code but contains no assert / expect / should call — it passes regardle…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/lib/test_azure.py:143
· conf 1.00
[MINED106] Phantom test coverage: test_enforce_credentials_true_sync: Test function `test_enforce_credentials_true_sync` runs code but contains no assert / expect / should call — it passes regardless…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_client.py:273
· conf 1.00
[MINED106] Phantom test coverage: test_copy_build_request: Test function `test_copy_build_request` runs code but contains no assert / expect / should call — it passes regardless of behaviour. Adds li…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_client.py:408
· conf 1.00
[MINED106] Phantom test coverage: test_invalid_http_client: Test function `test_invalid_http_client` runs code but contains no assert / expect / should call — it passes regardless of behaviour. Adds …MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_client.py:579
· conf 1.00
[MINED106] Phantom test coverage: test_workload_identity_is_mutually_exclusive_with_api_key: Test function `test_workload_identity_is_mutually_exclusive_with_api_key` runs code but contains no assert…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_client.py:1033
· conf 1.00
[MINED106] Phantom test coverage: test_client_max_retries_validation: Test function `test_client_max_retries_validation` runs code but contains no assert / expect / should call — it passes regardless…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_client.py:1296
· conf 1.00
[MINED106] Phantom test coverage: test_default_client_creation: Test function `test_default_client_creation` runs code but contains no assert / expect / should call — it passes regardless of behaviou…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_client.py:1536
· conf 1.00
[MINED106] Phantom test coverage: test_copy_build_request: Test function `test_copy_build_request` runs code but contains no assert / expect / should call — it passes regardless of behaviour. Adds li…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_client.py:1673
· conf 1.00
[MINED106] Phantom test coverage: test_invalid_http_client: Test function `test_invalid_http_client` runs code but contains no assert / expect / should call — it passes regardless of behaviour. Adds …MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_client.py:2289
· conf 1.00
[MINED106] Phantom test coverage: test_client_max_retries_validation: Test function `test_client_max_retries_validation` runs code but contains no assert / expect / should call — it passes regardless…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_client.py:2556
· conf 1.00
[MINED106] Phantom test coverage: test_default_client_creation: Test function `test_default_client_creation` runs code but contains no assert / expect / should call — it passes regardless of behaviou…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_files.py:46
· conf 1.00
[MINED106] Phantom test coverage: test_string_not_allowed: Test function `test_string_not_allowed` runs code but contains no assert / expect / should call — it passes regardless of behaviour. Adds li…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_files.py:61
· conf 1.00
[MINED106] Phantom test coverage: test_copies_top_level_dict: Test function `test_copies_top_level_dict` runs code but contains no assert / expect / should call — it passes regardless of behaviour. A…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_legacy_response.py:20
· conf 1.00
[MINED106] Phantom test coverage: test_response_parse_mismatched_basemodel: Test function `test_response_parse_mismatched_basemodel` runs code but contains no assert / expect / should call — it passe…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_models.py:634
· conf 1.00
[MINED106] Phantom test coverage: test_type_compat: Test function `test_type_compat` runs code but contains no assert / expect / should call — it passes regardless of behaviour. Adds line coverage wi…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_module_client.py:127
· conf 1.00
[MINED106] Phantom test coverage: test_azure_api_key_env_without_api_version: Test function `test_azure_api_key_env_without_api_version` runs code but contains no assert / expect / should call — it p…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_module_client.py:139
· conf 1.00
[MINED106] Phantom test coverage: test_azure_api_key_and_version_env: Test function `test_azure_api_key_and_version_env` runs code but contains no assert / expect / should call — it passes regardless…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_qs.py:76
· conf 1.00
[MINED106] Phantom test coverage: test_unknown_array_format: Test function `test_unknown_array_format` runs code but contains no assert / expect / should call — it passes regardless of behaviour. Add…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_required_args.py:8
· conf 1.00
[MINED106] Phantom test coverage: test_too_many_positional_params: Test function `test_too_many_positional_params` runs code but contains no assert / expect / should call — it passes regardless of be…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_response.py:39
· conf 1.00
[MINED106] Phantom test coverage: test_extract_response_type_direct_class_missing_type_arg: Test function `test_extract_response_type_direct_class_missing_type_arg` runs code but contains no assert /…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_response.py:61
· conf 1.00
[MINED106] Phantom test coverage: test_response_parse_mismatched_basemodel: Test function `test_response_parse_mismatched_basemodel` runs code but contains no assert / expect / should call — it passe…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_response.py:79
· conf 1.00
[MINED106] Phantom test coverage: test_async_response_parse_mismatched_basemodel: Test function `test_async_response_parse_mismatched_basemodel` runs code but contains no assert / expect / should cal…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_utils/test_path.py:63
· conf 1.00
[MINED106] Phantom test coverage: test_missing_kwarg_raises_key_error: Test function `test_missing_kwarg_raises_key_error` runs code but contains no assert / expect / should call — it passes regardle…MINED106
Phantom test coverage (assertion-free test)
CWE-1126
tests/test_utils/test_path.py:87
· conf 1.00
[MINED106] Phantom test coverage: test_dot_segment_rejected: Test function `test_dot_segment_rejected` runs code but contains no assert / expect / should call — it passes regardless of behaviour. Add…MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/audio_util.py:79
· conf 1.00
[MINED108] `self.start` used but never assigned in __init__: Method `add_data` of class `AudioPlayerAsync` reads `self.start`, but no assignment to it exists in __init__ (and no class-level fallback)…MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:153
· conf 1.00
[MINED108] `self.handle_realtime_connection` used but never assigned in __init__: Method `on_mount` of class `RealtimeApp` reads `self.handle_realtime_connection`, but no assignment to it exists in _…MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:153
· conf 1.00
[MINED108] `self.run_worker` used but never assigned in __init__: Method `on_mount` of class `RealtimeApp` reads `self.run_worker`, but no assignment to it exists in __init__ (and no class-level fall…MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:154
· conf 1.00
[MINED108] `self.run_worker` used but never assigned in __init__: Method `on_mount` of class `RealtimeApp` reads `self.run_worker`, but no assignment to it exists in __init__ (and no class-level fall…MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:154
· conf 1.00
[MINED108] `self.send_mic_audio` used but never assigned in __init__: Method `on_mount` of class `RealtimeApp` reads `self.send_mic_audio`, but no assignment to it exists in __init__ (and no class-le…MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:178
· conf 1.00
[MINED108] `self.query_one` used but never assigned in __init__: Method `handle_realtime_connection` of class `RealtimeApp` reads `self.query_one`, but no assignment to it exists in __init__ (and no …MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:205
· conf 1.00
[MINED108] `self.query_one` used but never assigned in __init__: Method `handle_realtime_connection` of class `RealtimeApp` reads `self.query_one`, but no assignment to it exists in __init__ (and no …MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:232
· conf 1.00
[MINED108] `self.query_one` used but never assigned in __init__: Method `send_mic_audio` of class `RealtimeApp` reads `self.query_one`, but no assignment to it exists in __init__ (and no class-level …MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:245
· conf 1.00
[MINED108] `self._get_connection` used but never assigned in __init__: Method `send_mic_audio` of class `RealtimeApp` reads `self._get_connection`, but no assignment to it exists in __init__ (and no …MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:262
· conf 1.00
[MINED108] `self.query_one` used but never assigned in __init__: Method `on_key` of class `RealtimeApp` reads `self.query_one`, but no assignment to it exists in __init__ (and no class-level fallback…MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:266
· conf 1.00
[MINED108] `self.exit` used but never assigned in __init__: Method `on_key` of class `RealtimeApp` reads `self.exit`, but no assignment to it exists in __init__ (and no class-level fallback). This ra…MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:270
· conf 1.00
[MINED108] `self.query_one` used but never assigned in __init__: Method `on_key` of class `RealtimeApp` reads `self.query_one`, but no assignment to it exists in __init__ (and no class-level fallback…MINED108
self.attribute used but never assigned in __init__
CWE-476
examples/realtime/push_to_talk_app.py:281
· conf 1.00
[MINED108] `self._get_connection` used but never assigned in __init__: Method `on_key` of class `RealtimeApp` reads `self._get_connection`, but no assignment to it exists in __init__ (and no class-le…MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:59
· conf 1.00
[MINED108] `self._iter_events` used but never assigned in __init__: Method `__stream__` of class `Stream` reads `self._iter_events`, but no assignment to it exists in __init__ (and no class-level fal…MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:121
· conf 1.00
[MINED108] `self.close` used but never assigned in __init__: Method `__exit__` of class `Stream` reads `self.close`, but no assignment to it exists in __init__ (and no class-level fallback). This rai…MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:169
· conf 1.00
[MINED108] `self._iter_events` used but never assigned in __init__: Method `__stream__` of class `AsyncStream` reads `self._iter_events`, but no assignment to it exists in __init__ (and no class-leve…MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:231
· conf 1.00
[MINED108] `self.close` used but never assigned in __init__: Method `__aexit__` of class `AsyncStream` reads `self.close`, but no assignment to it exists in __init__ (and no class-level fallback). Th…MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:276
· conf 1.00
[MINED108] `self.data` used but never assigned in __init__: Method `json` of class `ServerSentEvent` reads `self.data`, but no assignment to it exists in __init__ (and no class-level fallback). This …MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:280
· conf 1.00
[MINED108] `self.id` used but never assigned in __init__: Method `__repr__` of class `ServerSentEvent` reads `self.id`, but no assignment to it exists in __init__ (and no class-level fallback). This …MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:280
· conf 1.00
[MINED108] `self.event` used but never assigned in __init__: Method `__repr__` of class `ServerSentEvent` reads `self.event`, but no assignment to it exists in __init__ (and no class-level fallback).…MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:280
· conf 1.00
[MINED108] `self.data` used but never assigned in __init__: Method `__repr__` of class `ServerSentEvent` reads `self.data`, but no assignment to it exists in __init__ (and no class-level fallback). T…MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:280
· conf 1.00
[MINED108] `self.retry` used but never assigned in __init__: Method `__repr__` of class `ServerSentEvent` reads `self.retry`, but no assignment to it exists in __init__ (and no class-level fallback).…MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:297
· conf 1.00
[MINED108] `self._iter_chunks` used but never assigned in __init__: Method `iter_bytes` of class `SSEDecoder` reads `self._iter_chunks`, but no assignment to it exists in __init__ (and no class-level…MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:301
· conf 1.00
[MINED108] `self.decode` used but never assigned in __init__: Method `iter_bytes` of class `SSEDecoder` reads `self.decode`, but no assignment to it exists in __init__ (and no class-level fallback). …MINED108
self.attribute used but never assigned in __init__
CWE-476
src/openai/_streaming.py:319
· conf 1.00
[MINED108] `self._aiter_chunks` used but never assigned in __init__: Method `aiter_bytes` of class `SSEDecoder` reads `self._aiter_chunks`, but no assignment to it exists in __init__ (and no class-le…MINED110
Blocking call inside async function
CWE-833
examples/realtime/azure_realtime.py:56
· conf 1.00
[MINED110] Blocking call `input` inside async function `main`: `input` is a synchronous (blocking) call. When invoked inside an `async def` it stalls the event loop, preventing every other coroutine …MINED110
Blocking call inside async function
CWE-833
examples/realtime/realtime.py:33
· conf 1.00
[MINED110] Blocking call `input` inside async function `main`: `input` is a synchronous (blocking) call. When invoked inside an `async def` it stalls the event loop, preventing every other coroutine …MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/api_resources/test_webhooks.py:39
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_unwrap_with_secret` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in …MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/api_resources/test_webhooks.py:53
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_verify_signature_valid` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/api_resources/test_webhooks.py:66
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_verify_signature_invalid` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appea…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/api_resources/test_webhooks.py:94
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_verify_signature_payload_bytes` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/api_resources/test_webhooks.py:99
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_unwrap_with_client_secret` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appe…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/api_resources/test_webhooks.py:118
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_verify_signature_timestamp_too_new` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth ma…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/api_resources/test_webhooks.py:128
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_verify_signature_custom_tolerance` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth mar…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/api_resources/test_webhooks.py:143
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_verify_signature_recent_timestamp_succeeds` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/api_resources/test_webhooks.py:153
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_verify_signature_multiple_signatures_one_valid` is registered with router/app.patch(...) but no Depends/Security parameter is declared an…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/api_resources/test_webhooks.py:163
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_verify_signature_multiple_signatures_all_invalid` is registered with router/app.patch(...) but no Depends/Security parameter is declared …MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/api_resources/test_webhooks.py:179
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_unwrap_with_secret` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appears in …MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:1100
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_parse_retry_after_header` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appea…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:1110
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_retrying_timeout_errors_doesnt_leak` is registered with router/app.patch(...) but no Depend…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:1128
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_retrying_status_errors_doesnt_leak` is registered with router/app.patch(...) but no Depends…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:1147
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_retries_taken` is registered with router/app.patch(...) but no Depends/Security parameter i…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:1185
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_omit_retry_count_header` is registered with router/app.patch(...) but no Depends/Security p…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:1217
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_overwrite_retry_count_header` is registered with router/app.patch(...) but no Depends/Secur…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:1249
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_retries_taken_new_response_class` is registered with router/app.patch(...) but no Depends/S…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:2356
· conf 0.80
[MINED112] FastAPI PATCH time.time has no auth: Handler `test_parse_retry_after_header` is registered with router/app.patch(...) but no Depends/Security parameter is declared and no auth marker appea…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:2366
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_retrying_timeout_errors_doesnt_leak` is registered with router/app.patch(...) but no Depend…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:2384
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_retrying_status_errors_doesnt_leak` is registered with router/app.patch(...) but no Depends…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:2403
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_retries_taken` is registered with router/app.patch(...) but no Depends/Security parameter i…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:2441
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_omit_retry_count_header` is registered with router/app.patch(...) but no Depends/Security p…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:2473
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_overwrite_retry_count_header` is registered with router/app.patch(...) but no Depends/Secur…MINED112
FastAPI POST/PUT/DELETE/PATCH endpoint without auth
CWE-306CWE-862
tests/test_client.py:2505
· conf 0.80
[MINED112] FastAPI PATCH openai._base_client.BaseClient._calculate_retry_timeout has no auth: Handler `test_retries_taken_new_response_class` is registered with router/app.patch(...) but no Depends/S…MINED118
Dockerfile FROM not pinned by sha256 digest
CWE-829
.devcontainer/Dockerfile:2
· conf 0.90
[MINED118] Dockerfile FROM `mcr.microsoft.com/vscode/devcontainers/python:0-` not pinned by digest: `FROM mcr.microsoft.com/vscode/devcontainers/python:0-` resolves the tag at build time. The registr…SEC029
Server-Side Request Forgery (SSRF) — outbound HTTP from user input
src/openai/__init__.py:227
· conf 1.00
[SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.25…SEC029
Server-Side Request Forgery (SSRF) — outbound HTTP from user input
src/openai/types/beta/chatkit/chatkit_response_output_text.py:49
· conf 1.00
[SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.25…SEC029
Server-Side Request Forgery (SSRF) — outbound HTTP from user input
src/openai/types/beta/threads/image_url.py:11
· conf 1.00
[SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.25…AIC001
Parallel implementation file sits beside a canonical file
src/openai/types/beta/realtime/transcription_session_update.py:1
· conf 0.82
Parallel implementation file sits beside a canonical fileCOMP001
[COMP001] High cognitive complexity: Function `load_yfinance_data` has cognitive complexity 9 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand — nested branches, boolean chains, and recursion all weigh in. Breakdown: except=1, for=1, if=2, nested_bonus=3, or=2.
examples/realtime/azure_realtime.py:15
· conf 0.95
[COMP001] High cognitive complexity: Function `main` has cognitive complexity 16 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand — nested branche…COMP001
[COMP001] High cognitive complexity: Function `load_yfinance_data` has cognitive complexity 9 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand — nested branches, boolean chains, and recursion all weigh in. Breakdown: except=1, for=1, if=2, nested_bonus=3, or=2.
examples/realtime/push_to_talk_app.py:156
· conf 0.95
[COMP001] High cognitive complexity: Function `handle_realtime_connection` has cognitive complexity 19 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to under…DKR007
Docker build context has no .dockerignore
.dockerignore
· conf 0.90
Docker build context has no .dockerignoreMINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1220
· conf 1.00
[MINED109] Mutable default argument in `get` (dict): `def get(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in …MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1230
· conf 1.00
[MINED109] Mutable default argument in `get` (dict): `def get(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in …MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1241
· conf 1.00
[MINED109] Mutable default argument in `get` (dict): `def get(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in …MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1251
· conf 1.00
[MINED109] Mutable default argument in `get` (dict): `def get(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in …MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1266
· conf 1.00
[MINED109] Mutable default argument in `post` (dict): `def post(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it i…MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1279
· conf 1.00
[MINED109] Mutable default argument in `post` (dict): `def post(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it i…MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1293
· conf 1.00
[MINED109] Mutable default argument in `post` (dict): `def post(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it i…MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1306
· conf 1.00
[MINED109] Mutable default argument in `post` (dict): `def post(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it i…MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1334
· conf 1.00
[MINED109] Mutable default argument in `patch` (dict): `def patch(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it…MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1360
· conf 1.00
[MINED109] Mutable default argument in `put` (dict): `def put(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in …MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1386
· conf 1.00
[MINED109] Mutable default argument in `delete` (dict): `def delete(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating …MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1407
· conf 1.00
[MINED109] Mutable default argument in `get_api_list` (dict): `def get_api_list(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all call…MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1821
· conf 1.00
[MINED109] Mutable default argument in `get` (dict): `def get(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in …MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1831
· conf 1.00
[MINED109] Mutable default argument in `get` (dict): `def get(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in …MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1842
· conf 1.00
[MINED109] Mutable default argument in `get` (dict): `def get(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in …MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1852
· conf 1.00
[MINED109] Mutable default argument in `get` (dict): `def get(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in …MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1865
· conf 1.00
[MINED109] Mutable default argument in `post` (dict): `def post(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it i…MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1878
· conf 1.00
[MINED109] Mutable default argument in `post` (dict): `def post(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it i…MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1892
· conf 1.00
[MINED109] Mutable default argument in `post` (dict): `def post(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it i…MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1905
· conf 1.00
[MINED109] Mutable default argument in `post` (dict): `def post(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it i…MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1933
· conf 1.00
[MINED109] Mutable default argument in `patch` (dict): `def patch(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it…MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1964
· conf 1.00
[MINED109] Mutable default argument in `put` (dict): `def put(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it in …MINED109
Mutable default argument
CWE-1023
src/openai/_base_client.py:1990
· conf 1.00
[MINED109] Mutable default argument in `delete` (dict): `def delete(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating …MINED109
Mutable default argument
CWE-1023
src/openai/_client.py:509
· conf 1.00
[MINED109] Mutable default argument in `copy` (dict): `def copy(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it i…MINED109
Mutable default argument
CWE-1023
src/openai/_client.py:1015
· conf 1.00
[MINED109] Mutable default argument in `copy` (dict): `def copy(... = []/{}/set())` — Python's default value is constructed ONCE at function definition time and shared across all calls. Mutating it i…MINED111
Bare except continues silently
examples/image_stream.py:52
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
scripts/utils/ruffen-docs.py:42
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/_base_client.py:424
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/_base_client.py:2103
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/_base_client.py:2168
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/_base_client.py:2175
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/_base_client.py:2182
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/_models.py:651
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/_models.py:696
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/_models.py:702
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/resources/realtime/realtime.py:419
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/resources/realtime/realtime.py:897
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/resources/responses/responses.py:3831
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/resources/responses/responses.py:4286
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/_utils/_proxy.py:51
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.MINED111
Bare except continues silently
src/openai/_utils/_utils.py:410
· conf 1.00
[MINED111] Bare except continues silently: Bare `except:` (or `except Exception:`) that runs code without re-raising or logging the exception. Hides real failures and makes bugs hard to diagnose.SEC127
AI agent stub — TODO: implement / pass placeholder body
src/openai/_compat.py:228
· conf 1.00
[SEC127] AI agent stub — TODO: implement / pass placeholder body: Function body left as TODO/pass/raise NotImplementedError after an AI scaffolding pass. The route appears to exist (and may even pass…AIC003
Duplicated implementation block across source files
src/openai/_exceptions.py:11
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/lib/streaming/chat/_completions.py:63
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/lib/streaming/_deltas.py:3
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/lib/streaming/responses/_responses.py:52
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/lib/streaming/responses/_responses.py:53
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/groups/groups.py:5
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/groups/__init__.py:8
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/organization.py:2
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/api_keys.py:79
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/certificates.py:20
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/data_retention.py:13
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/groups/groups.py:25
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/groups/__init__.py:18
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/groups/roles.py:17
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/__init__.py:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/__init__.py:8
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/__init__.py:49
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/projects.py:39
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/projects.py:40
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/roles.py:16
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/service_accounts.py:165
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/service_accounts.py:166
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/users/__init__.py:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/users/roles.py:17
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/users/roles.py:61
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/users/users.py:3
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/users/users.py:28
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/users/users.py:170
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/resources/admin/organization/projects/users/users.py:171
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
src/openai/_response.py:8
· conf 0.86
Duplicated implementation block across source filesAIC005
Duplicate top-level symbol appears in a patch-style file
src/openai/types/beta/realtime/transcription_session_update.py:1
· conf 0.64
Duplicate top-level symbol appears in a patch-style fileCOMP001
[COMP001] High cognitive complexity: Function `load_yfinance_data` has cognitive complexity 9 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand — nested branches, boolean chains, and recursion all weigh in. Breakdown: except=1, for=1, if=2, nested_bonus=3, or=2.
examples/realtime/audio_util.py:95
· conf 0.95
[COMP001] High cognitive complexity: Function `send_audio_worker_sounddevice` has cognitive complexity 12 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to un…COMP001
[COMP001] High cognitive complexity: Function `load_yfinance_data` has cognitive complexity 9 (SonarSource scale). Cognitive complexity measures how hard the function is for a human to understand — nested branches, boolean chains, and recursion all weigh in. Breakdown: except=1, for=1, if=2, nested_bonus=3, or=2.
[COMP001] High cognitive complexity (and 19 more): Same pattern found in 19 additional files. Review if needed.DKR002
Dockerfile base image has no explicit tag
.devcontainer/Dockerfile:2
· conf 0.48
Dockerfile base image is selected through a build variableMINED001
Bare Except Pass
CWE-755
[MINED001] Bare Except Pass (and 1 more): Same pattern found in 1 additional files. Review if needed.MINED049
Print Pii
CWE-532
examples/responses_input_tokens.py:50
· conf 1.00
[MINED049] Print Pii: Logging password/token/email/ssn directly to stdout.MINED050
Stub Only Function
CWE-1188
[MINED050] Stub Only Function (and 8 more): Same pattern found in 8 additional files. Review if needed.MINED050
Stub Only Function
CWE-1188
examples/realtime/audio_util.py:139
· conf 1.00
[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment.MINED050
Stub Only Function
CWE-1188
examples/realtime/push_to_talk_app.py:254
· conf 1.00
[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment.MINED050
Stub Only Function
CWE-1188
src/openai/__init__.py:121
· conf 1.00
[MINED050] Stub Only Function: Function declared but body is just pass, return None, raise NotImplementedError, or TODO comment.MINED064
Python Input Call
[MINED064] Python Input Call (and 5 more): Same pattern found in 5 additional files. Review if needed.MINED064
Python Input Call
examples/realtime/azure_realtime.py:56
· conf 1.00
[MINED064] Python Input Call: input() blocks for stdin. Inappropriate in services.MINED064
Python Input Call
examples/realtime/realtime.py:33
· conf 1.00
[MINED064] Python Input Call: input() blocks for stdin. Inappropriate in services.MINED064
Python Input Call
src/openai/resources/moderations.py:66
· conf 1.00
[MINED064] Python Input Call: input() blocks for stdin. Inappropriate in services.MINED072
Python Pass Only Class
CWE-1188
src/openai/_exceptions.py:36
· conf 1.00
[MINED072] Python Pass Only Class: class Foo: pass — stub waiting to be filled in.MINED072
Python Pass Only Class
CWE-1188
src/openai/_extras/_common.py:20
· conf 1.00
[MINED072] Python Pass Only Class: class Foo: pass — stub waiting to be filled in.MINED072
Python Pass Only Class
CWE-1188
src/openai/resources/webhooks/__init__.py:6
· conf 1.00
[MINED072] Python Pass Only Class: class Foo: pass — stub waiting to be filled in.SEC020
Secret Printed to Logs
examples/responses_input_tokens.py:50
· conf 0.15
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…SEC029
Server-Side Request Forgery (SSRF) — outbound HTTP from user input
[SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input (and 3 more): Same pattern found in 3 additional files. Review if needed.Reading from rp.scan + rp.finding + rp.rule (unified schema, R78 series). Legacy data path unchanged. Compare with /scan/b4bd9d3a-a4bb-4865-8249-595ff2477b57/.