https://github.com/deepakmuvva99/backend_dasep.git ·
lang: javascript ·
LOC: ·
source: user_submitted
| Rule | Severity | Count |
|---|---|---|
AIC003 Duplicated implementation block across source files |
low | 30 |
MINED113 Express POST/PUT/DELETE/PATCH route without auth |
high | 19 |
AUC003 [AUC003] Object-level route lacks visible authorization: A … |
high | 10 |
AUC004 [AUC004] Admin route does not show super_admin separation: … |
medium | 10 |
AUC009 [AUC009] Sensitive function route lacks elevated authorizat… |
medium | 10 |
MINED044 Js Console Log Prod |
info | 4 |
SEC020 Secret Printed to Logs |
high | 4 |
SEC029 Server-Side Request Forgery (SSRF) — outbound HTTP from use… |
high | 4 |
MINED014 Disabled Tls Verify |
high | 3 |
SEC118 UUIDv1 / UUIDv3 used for security-sensitive identifier |
low | 2 |
MINED019
Ssti Jinja From String
CWE-94
Intern-batch-08/Digital-Eval-Backend/services/emailService.js:60
· conf 1.00
[MINED019] Ssti Jinja From String: jinja2.Environment().from_string(user_input) — full RCE via templates.MINED019
Ssti Jinja From String
CWE-94
services/emailService.js:47
· conf 1.00
[MINED019] Ssti Jinja From String: jinja2.Environment().from_string(user_input) — full RCE via templates.AUC003
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. Endpoint: ANY /plugins/<slug:plugin_slug>/.
Intern-batch-08/Digital-Eval-Backend/routes/v1/documents.js:15
· conf 0.70
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. End…AUC003
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/annotations.js:14
· conf 0.70
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. End…AUC003
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/audit-logs.js:13
· conf 0.70
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. End…AUC003
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/audit-logs.js:15
· conf 0.70
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. End…AUC003
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/documents.js:15
· conf 0.70
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. End…AUC003
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/evaluations.js:17
· conf 0.70
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. End…AUC003
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/files.js:25
· conf 0.70
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. End…AUC003
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/files.js:26
· conf 0.70
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. End…AUC003
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/notifications.js:22
· conf 0.70
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. End…AUC003
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/pages.js:12
· conf 0.70
[AUC003] Object-level route lacks visible authorization: A route with an object id-like parameter does not show nearby authentication or authorization evidence. This is a BOLA/IDOR review target. End…CORE_NO_TESTS
No test files found
No test files foundMINED014
Disabled Tls Verify
CWE-295
config/database.js:13
· conf 1.00
[MINED014] Disabled Tls Verify: verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in Go.MINED014
Disabled Tls Verify
CWE-295
Intern-batch-08/Digital-Eval-Backend/config/database.js:13
· conf 1.00
[MINED014] Disabled Tls Verify: verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in Go.MINED014
Disabled Tls Verify
CWE-295
Intern-batch-08/Digital-Eval-Backend/services/emailService.js:27
· conf 1.00
[MINED014] Disabled Tls Verify: verify=False in requests, rejectUnauthorized:false in node, InsecureSkipVerify:true in Go.MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
Intern-batch-08/Digital-Eval-Backend/routes/v1/auth.js:9
· conf 0.80
[MINED113] Express POST /login has no auth: Express route POST /login declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes a…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
Intern-batch-08/Digital-Eval-Backend/routes/v1/auth.js:13
· conf 0.80
[MINED113] Express POST /logout has no auth: Express route POST /logout declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
Intern-batch-08/Digital-Eval-Backend/routes/v1/classes.js:35
· conf 0.80
[MINED113] Express DELETE /:class_id/subjects/:subject_id has no auth: Express route DELETE /:class_id/subjects/:subject_id declared without an auth middleware in its handler chain. Destructive metho…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
Intern-batch-08/Digital-Eval-Backend/routes/v1/notifications.js:15
· conf 0.80
[MINED113] Express PUT /read-all has no auth: Express route PUT /read-all declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated rout…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
Intern-batch-08/Digital-Eval-Backend/routes/v1/notifications.js:22
· conf 0.80
[MINED113] Express PUT /:notification_id/read has no auth: Express route PUT /:notification_id/read declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATC…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
Intern-batch-08/Digital-Eval-Backend/routes/v1/permissions.js:13
· conf 0.80
[MINED113] Express POST / has no auth: Express route POST / declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
Intern-batch-08/Digital-Eval-Backend/routes/v1/permissions.js:14
· conf 0.80
[MINED113] Express PUT /:id has no auth: Express route PUT /:id declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWA…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
Intern-batch-08/Digital-Eval-Backend/routes/v1/permissions.js:15
· conf 0.80
[MINED113] Express DELETE /:id has no auth: Express route DELETE /:id declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes a…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
Intern-batch-08/Digital-Eval-Backend/routes/v1/users.js:26
· conf 0.80
[MINED113] Express POST /:user_id/change-password has no auth: Express route POST /:user_id/change-password declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DEL…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
routes/v1/auth.js:9
· conf 0.80
[MINED113] Express POST /login has no auth: Express route POST /login declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes a…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
routes/v1/auth.js:13
· conf 0.80
[MINED113] Express POST /logout has no auth: Express route POST /logout declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
routes/v1/classes.js:28
· conf 0.80
[MINED113] Express DELETE /:class_id/subjects/:subject_id has no auth: Express route DELETE /:class_id/subjects/:subject_id declared without an auth middleware in its handler chain. Destructive metho…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
routes/v1/files.js:13
· conf 0.80
[MINED113] Express POST /request-upload has no auth: Express route POST /request-upload declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauth…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
routes/v1/notifications.js:15
· conf 0.80
[MINED113] Express PUT /read-all has no auth: Express route PUT /read-all declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated rout…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
routes/v1/notifications.js:22
· conf 0.80
[MINED113] Express PUT /:notification_id/read has no auth: Express route PUT /:notification_id/read declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATC…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
routes/v1/permissions.js:13
· conf 0.80
[MINED113] Express POST / has no auth: Express route POST / declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWASP A…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
routes/v1/permissions.js:14
· conf 0.80
[MINED113] Express PUT /:id has no auth: Express route PUT /:id declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes are OWA…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
routes/v1/permissions.js:15
· conf 0.80
[MINED113] Express DELETE /:id has no auth: Express route DELETE /:id declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DELETE/PATCH) on unauthenticated routes a…MINED113
Express POST/PUT/DELETE/PATCH route without auth
CWE-306CWE-862
routes/v1/users.js:26
· conf 0.80
[MINED113] Express POST /:user_id/change-password has no auth: Express route POST /:user_id/change-password declared without an auth middleware in its handler chain. Destructive methods (POST/PUT/DEL…MINED118
Dockerfile FROM not pinned by sha256 digest
CWE-829
Dockerfile:2
· conf 0.90
[MINED118] Dockerfile FROM `node:20-slim` not pinned by digest: `FROM node:20-slim` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is pote…MINED118
Dockerfile FROM not pinned by sha256 digest
CWE-829
Intern-batch-08/Digital-Eval-Backend/Dockerfile:2
· conf 0.90
[MINED118] Dockerfile FROM `node:24-slim` not pinned by digest: `FROM node:24-slim` resolves the tag at build time. The registry CAN re-push a different image for the same tag, so every build is pote…SEC029
Server-Side Request Forgery (SSRF) — outbound HTTP from user input
controllers/filesController.js:89
· conf 1.00
[SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.25…SEC029
Server-Side Request Forgery (SSRF) — outbound HTTP from user input
Intern-batch-08/Digital-Eval-Backend/controllers/filesController.js:52
· conf 1.00
[SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.25…SEC029
Server-Side Request Forgery (SSRF) — outbound HTTP from user input
Intern-batch-08/Digital-Eval-Backend/controllers/submissionsController.js:29
· conf 1.00
[SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.25…SEC085
JS: child_process.exec with non-literal
generate_postman.js:96
· conf 1.00
[SEC085] JS: child_process.exec with non-literal: child_process.exec with user-derived input enables command injection. Ported from eslint-plugin-security detect-child-process (Apache-2.0).AUC001
[AUC001] No Repobility access matrix policy found: The repository uses web/API frameworks but does not define .repobility/access.yml or equivalent authorization documentation.
[AUC001] No Repobility access matrix policy found: The repository uses web/API frameworks but does not define .repobility/access.yml or equivalent authorization documentation.AUC002
[AUC002] Low visible authorization coverage in route inventory: Only 0.0% of discovered routes show nearby authentication, authorization, middleware, or public-route evidence.
[AUC002] Low visible authorization coverage in route inventory: Only 41.5% of discovered routes show nearby authentication, authorization, middleware, or public-route evidence.AUC004
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin access. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/audit-logs.js:13
· conf 0.66
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin acc…AUC004
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin access. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/audit-logs.js:15
· conf 0.66
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin acc…AUC004
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin access. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/classes.js:15
· conf 0.66
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin acc…AUC004
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin access. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/documents.js:15
· conf 0.66
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin acc…AUC004
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin access. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/notifications.js:15
· conf 0.66
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin acc…AUC004
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin access. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/permissions.js:11
· conf 0.66
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin acc…AUC004
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin access. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/permissions.js:12
· conf 0.66
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin acc…AUC004
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin access. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/permissions.js:13
· conf 0.66
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin acc…AUC004
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin access. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/permissions.js:14
· conf 0.66
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin acc…AUC004
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin access. Endpoint: ANY /plugins/<slug:plugin_slug>/.
routes/v1/subjects.js:16
· conf 0.66
[AUC004] Admin route does not show super_admin separation: An administrative route was detected without nearby evidence that platform super_admin access is separated from tenant/application admin acc…AUC009
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without elevated policy evidence. Endpoint: DELETE /items/{item_id}.
Intern-batch-08/Digital-Eval-Backend/routes/v1/files.js:10
· conf 0.68
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without el…AUC009
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without elevated policy evidence. Endpoint: DELETE /items/{item_id}.
Intern-batch-08/Digital-Eval-Backend/routes/v1/notifications.js:22
· conf 0.68
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without el…AUC009
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without elevated policy evidence. Endpoint: DELETE /items/{item_id}.
Intern-batch-08/Digital-Eval-Backend/routes/v1/permissions.js:15
· conf 0.68
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without el…AUC009
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without elevated policy evidence. Endpoint: DELETE /items/{item_id}.
routes/v1/files.js:10
· conf 0.68
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without el…AUC009
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without elevated policy evidence. Endpoint: DELETE /items/{item_id}.
routes/v1/files.js:13
· conf 0.68
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without el…AUC009
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without elevated policy evidence. Endpoint: DELETE /items/{item_id}.
routes/v1/files.js:25
· conf 0.68
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without el…AUC009
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without elevated policy evidence. Endpoint: DELETE /items/{item_id}.
routes/v1/files.js:26
· conf 0.68
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without el…AUC009
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without elevated policy evidence. Endpoint: DELETE /items/{item_id}.
routes/v1/notifications.js:22
· conf 0.68
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without el…AUC009
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without elevated policy evidence. Endpoint: DELETE /items/{item_id}.
routes/v1/pages.js:12
· conf 0.68
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without el…AUC009
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without elevated policy evidence. Endpoint: DELETE /items/{item_id}.
routes/v1/permissions.js:15
· conf 0.68
[AUC009] Sensitive function route lacks elevated authorization evidence: A route appears to perform a sensitive function such as export, invite, role, token, billing, or destructive action without el…CORE_NO_CI
No CI/CD configuration found
No CI/CD configuration foundDKR001
Docker final stage has no non-root USER
Dockerfile:2
· conf 0.82
Docker final stage has no non-root USERDKR001
Docker final stage has no non-root USER
Intern-batch-08/Digital-Eval-Backend/Dockerfile:2
· conf 0.82
Docker final stage has no non-root USERDKR014
Dockerfile copies the entire context without .dockerignore
Dockerfile:15
· conf 0.76
Dockerfile copies broad context with incomplete .dockerignoreDKR014
Dockerfile copies the entire context without .dockerignore
Intern-batch-08/Digital-Eval-Backend/Dockerfile:15
· conf 0.76
Dockerfile copies broad context with incomplete .dockerignoreJRN003
Frontend API reference is not matched by discovered backend routes
app.js:17
· conf 0.74
Frontend API reference is not matched by discovered backend routesJRN003
Frontend API reference is not matched by discovered backend routes
Intern-batch-08/Digital-Eval-Backend/app.js:30
· conf 0.74
Frontend API reference is not matched by discovered backend routesSEC045
eval()/exec() on stored or user-supplied data
generate_postman.js:96
· conf 1.00
[SEC045] eval()/exec() on stored or user-supplied data: eval() and exec() on data — even admin-stored data — is a lateral-movement vector after any one credential compromise. Sandboxes (__builtins__ …WEB003
Public web service has no security.txt
.well-known/security.txt
· conf 0.78
Public web service has no security.txtAIC003
Duplicated implementation block across source files
config/azureBlob.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
config/database.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/annotationsController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/assignmentsController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/auditLogsController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/authController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/classesController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/documentsController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/evaluationsController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/examSchedulesController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/facultyController.js:10
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/filesController.js:4
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/notificationsController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/pagesController.js:12
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/permissionsController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/rolesController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/studentsController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/subjectsController.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/submissionsController.js:16
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
controllers/usersController.js:12
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
eslint.config.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
middlewares/authMiddleware.js:2
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
middlewares/errorMiddleware.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
middlewares/uploadMiddleware.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
models/annotationsModel.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
models/assignmentsModel.js:20
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
models/auditLogsModel.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
models/classesModel.js:25
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
models/documentsModel.js:1
· conf 0.86
Duplicated implementation block across source filesAIC003
Duplicated implementation block across source files
models/evaluationsModel.js:41
· conf 0.86
Duplicated implementation block across source filesAUC005
[AUC005] No authorization-focused tests detected: No test files with common authorization, ownership, 403, admin, or super_admin assertions were found.
[AUC005] No authorization-focused tests detected: No test files with common authorization, ownership, 403, admin, or super_admin assertions were found.CORE_NO_LICENSE
No LICENSE file
No LICENSE fileDKR008
.dockerignore misses sensitive defaults
.dockerignore
· conf 0.72
.dockerignore misses sensitive defaultsMINED043
Http Not Https
CWE-319
Intern-batch-08/Digital-Eval-Backend/services/emailService.js:132
· conf 1.00
[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data.MINED043
Http Not Https
CWE-319
services/emailService.js:119
· conf 1.00
[MINED043] Http Not Https: Hardcoded http:// (not localhost) for endpoints that handle credentials or data.MINED044
Js Console Log Prod
CWE-532
[MINED044] Js Console Log Prod (and 22 more): Same pattern found in 22 additional files. Review if needed.MINED044
Js Console Log Prod
CWE-532
Intern-batch-08/Digital-Eval-Backend/app.js:49
· conf 1.00
[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed.MINED044
Js Console Log Prod
CWE-532
Intern-batch-08/Digital-Eval-Backend/config/azureBlob.js:29
· conf 1.00
[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed.MINED044
Js Console Log Prod
CWE-532
Intern-batch-08/Digital-Eval-Backend/config/database.js:22
· conf 1.00
[MINED044] Js Console Log Prod: console.log left in code. Should be replaced with logger or removed.MINED049
Print Pii
CWE-532
Intern-batch-08/Digital-Eval-Backend/services/emailService.js:81
· conf 1.00
[MINED049] Print Pii: Logging password/token/email/ssn directly to stdout.MINED049
Print Pii
CWE-532
services/emailService.js:68
· conf 1.00
[MINED049] Print Pii: Logging password/token/email/ssn directly to stdout.MINED053
Placeholder Default Username
CWE-1392CWE-798
generate_postman.js:51
· conf 0.10
[MINED053] Placeholder Default Username: [email protected] / [email protected] / admin/admin / changeme — typical AI placeholder credentials.SEC020
Secret Printed to Logs
[SEC020] Secret Printed to Logs (and 1 more): Same pattern found in 1 additional files. Review if needed.SEC020
Secret Printed to Logs
Intern-batch-08/Digital-Eval-Backend/services/blobStorage.js:86
· conf 0.15
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…SEC020
Secret Printed to Logs
Intern-batch-08/Digital-Eval-Backend/services/emailService.js:96
· conf 0.15
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…SEC020
Secret Printed to Logs
services/blobStorage.js:80
· conf 0.15
[SEC020] Secret Printed to Logs: Debug or diagnostic code appears to print a credential-bearing value. This is a frequent AI-assisted coding failure: the helper exposes the exact value needed for tro…SEC029
Server-Side Request Forgery (SSRF) — outbound HTTP from user input
[SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input (and 1 more): Same pattern found in 1 additional files. Review if needed.SEC118
UUIDv1 / UUIDv3 used for security-sensitive identifier
Intern-batch-08/Digital-Eval-Backend/services/authService.js:32
· conf 0.10
[SEC118] UUIDv1 / UUIDv3 used for security-sensitive identifier: UUIDv1 encodes the MAC address and timestamp, making it predictable. Used as a session token or password-reset key, it's enumerable.SEC118
UUIDv1 / UUIDv3 used for security-sensitive identifier
services/authService.js:32
· conf 0.10
[SEC118] UUIDv1 / UUIDv3 used for security-sensitive identifier: UUIDv1 encodes the MAC address and timestamp, making it predictable. Used as a session token or password-reset key, it's enumerable.Reading from rp.scan + rp.finding + rp.rule (unified schema, R78 series). Legacy data path unchanged. Compare with /scan/ba571f8b-93df-4f32-b06a-0a6dfddc3e7a/.