← Legacy view v2 (rp.*)

kevingarcia85/practica1-api-vue

https://github.com/KevinGarcia85/practica1-api-vue.git · lang: php · LOC: · source: user_submitted

Quality

66.7

Grade B-

Security

95.0

Findings

0 critical · 0 high

Status

completed

May 27, 2026 22:31

low: 6 medium: 5

Top rules by occurrence

Rule	Severity	Count
`WEB008` Public docs site has no llms.txt	low	1
`CORE_NO_LICENSE` No LICENSE file	low	1
`AUC005` [AUC005] No authorization-focused tests detected: No test f…	low	1
`AUC001` [AUC001] No Repobility access matrix policy found: The repo…	medium	1
`CORE_NO_CI` No CI/CD configuration found	medium	1
`WEB005` robots.txt does not advertise a sitemap	low	1
`AUC002` [AUC002] Low visible authorization coverage in route invent…	medium	1
`WEB003` Public web service has no security.txt	medium	1
`WEB015` Public web app has no Content Security Policy	medium	1
`WEB011` Public web app has no humans.txt	low	1

First 11 findings (severity-sorted)

medium AUC001 [AUC001] No Repobility access matrix policy found: The repository uses web/API frameworks but does not define .repobility/access.yml or equivalent authorization documentation.

· conf 0.92

[AUC001] No Repobility access matrix policy found: The repository uses web/API frameworks but does not define .repobility/access.yml or equivalent authorization documentation.

medium AUC002 [AUC002] Low visible authorization coverage in route inventory: Only 0.0% of discovered routes show nearby authentication, authorization, middleware, or public-route evidence.

· conf 0.74

[AUC002] Low visible authorization coverage in route inventory: Only 0.0% of discovered routes show nearby authentication, authorization, middleware, or public-route evidence.

medium CORE_NO_CI No CI/CD configuration found

No CI/CD configuration found

medium WEB003 Public web service has no security.txt

.well-known/security.txt · conf 0.78

Public web service has no security.txt

medium WEB015 Public web app has no Content Security Policy

index.html · conf 0.70

Public web app has no Content Security Policy

low AUC005 [AUC005] No authorization-focused tests detected: No test files with common authorization, ownership, 403, admin, or super_admin assertions were found.

· conf 0.76

[AUC005] No authorization-focused tests detected: No test files with common authorization, ownership, 403, admin, or super_admin assertions were found.

low CORE_NO_LICENSE No LICENSE file

No LICENSE file

low WEB002 Public web app has no sitemap

sitemap.xml · conf 0.72

Public web app has no sitemap

low WEB005 robots.txt does not advertise a sitemap

public/robots.txt · conf 0.74

robots.txt does not advertise a sitemap

low WEB008 Public docs site has no llms.txt

llms.txt · conf 0.64

Public docs site has no llms.txt

low WEB011 Public web app has no humans.txt

humans.txt · conf 0.50

Public web app has no humans.txt

Reading from rp.scan + rp.finding + rp.rule (unified schema, R78 series). Legacy data path unchanged. Compare with /scan/f5452577-962e-410a-9cb4-e37d32184d78/.