sharang/compliance-scanner-agent
1
0
Fork 0
Code Issues 51 Pull Requests 1 Actions Packages Projects Releases 1 Wiki Activity
Labels Milestones New Issue
51 Open 0 Closed
Label
Clear labels
bug
critical
enhancement
high
infrastructure
performance
security
v0.3.0
Milestone
No milestone
Projects
Clear projects
Assignee
Clear assignees
No assignee
sharang
JWT audience validation disabled — cross-app token reuse critical security v0.3.0
#57 opened 2026-03-30 13:28:52 +00:00 by sharang
Webhook auth bypass when webhook_secret is None bug critical security v0.3.0
#56 opened 2026-03-30 13:28:02 +00:00 by sharang
[medium] semgrep: Service 'mailserver' is running with a writable root filesystem. This may allow malicious applications to download and run additional payloads, or modify container files. If an application inside a container has to save something temp…
#54 opened 2026-03-30 11:21:43 +00:00 by sharang
[high] gitleaks: Secret detected: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.
#46 opened 2026-03-18 16:01:26 +00:00 by sharang
[high] gitleaks: Secret detected: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.
#45 opened 2026-03-18 16:01:26 +00:00 by sharang
[high] gitleaks: Secret detected: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.
#44 opened 2026-03-18 16:01:25 +00:00 by sharang
[high] gitleaks: Secret detected: Detected a Generic API Key, potentially exposing access to various services and sensitive operations.
#43 opened 2026-03-18 16:01:25 +00:00 by sharang
[high] oauth-patterns: OAuth implicit grant flow detected
#42 opened 2026-03-18 16:01:25 +00:00 by sharang
[high] oauth-patterns: OAuth implicit grant flow detected
#41 opened 2026-03-18 16:01:25 +00:00 by sharang
[medium] oauth-patterns: OAuth flow without PKCE
#40 opened 2026-03-18 16:01:25 +00:00 by sharang
[medium] gdpr-patterns: Data collection without apparent consent mechanism
#39 opened 2026-03-18 16:01:25 +00:00 by sharang
[medium] gdpr-patterns: Data collection without apparent consent mechanism
#38 opened 2026-03-18 16:01:25 +00:00 by sharang
[medium] gdpr-patterns: Data collection without apparent consent mechanism
#37 opened 2026-03-18 16:01:25 +00:00 by sharang
[medium] gdpr-patterns: Data collection without apparent consent mechanism
#36 opened 2026-03-18 16:01:25 +00:00 by sharang
[high] gdpr-patterns: PII data potentially logged
#35 opened 2026-03-18 16:01:24 +00:00 by sharang
[high] gdpr-patterns: PII data potentially logged
#34 opened 2026-03-18 16:01:24 +00:00 by sharang
[high] gdpr-patterns: PII data potentially logged
#33 opened 2026-03-18 16:01:24 +00:00 by sharang
[medium] gdpr-patterns: Missing data deletion capability
#32 opened 2026-03-18 16:01:24 +00:00 by sharang
[medium] gdpr-patterns: Missing data deletion capability
#31 opened 2026-03-18 16:01:24 +00:00 by sharang
[medium] gdpr-patterns: Missing data deletion capability
#30 opened 2026-03-18 16:01:24 +00:00 by sharang