https://github.com/vivekchand/clawmetry ·
lang: python ·
source: corpus_mined
| Rule | Severity | Count |
|---|---|---|
SEC004 SQL Injection Risk |
high | 3 |
SEC006 XSS Risk |
high | 2 |
SEC020 Secret Printed to Logs |
high | 1 |
SEC004
SQL Injection Risk
clawmetry/adapters/hermes.py:212
· conf 1.00
[SEC004] SQL Injection Risk: String interpolation in SQL execution. Allows SQL injection.SEC004
SQL Injection Risk
history.py:239
· conf 0.50
[SEC004] SQL Injection Risk: String interpolation in SQL execution. Allows SQL injection.SEC020
Secret Printed to Logs
clawmetry/cli.py:586
· conf 0.92
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…SEC006
XSS Risk
clawmetry/static/js/alerts.js:155
· conf 0.40
[SEC006] XSS Risk: Direct HTML injection without sanitization.SEC006
XSS Risk
dashboard_claudecode.py:1097
· conf 0.40
[SEC006] XSS Risk: Direct HTML injection without sanitization.SEC004
SQL Injection Risk
routes/alerts.py:367
· conf 0.10
[SEC004] SQL Injection Risk: String interpolation in SQL execution. Allows SQL injection.Reading from rp.scan + rp.finding + rp.rule (unified schema, R78 series). Legacy data path unchanged. Compare with /scan/b8d6d8db-1a9e-4d5e-8189-6d0592eb62cf/.