Sharang Parnerkar

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Inconsistent error handling with unwrap() in production code

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

Compliance scan found 48 issue(s) in this PR:

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Unvalidated API responses in notification data structures

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Potential silent failure in dismiss_notification

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Incorrect HTTP method for dismissing notification

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Potential Command Injection via User-Controlled Repository Name

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Inconsistent error handling in notification API

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Complex boolean expressions in error handling

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Sensitive Data Exposure in Logs

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Complex boolean expression in notification filtering

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Potential panic from unwrap_or_else() in notification creation

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[high] Race condition in notification loading

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[high] Missing error handling for database operations in notifications listing

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Incorrect handling of empty known_vulnerabilities in SBOM entry updates

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[high] Server-Side Request Forgery (SSRF) via User-Controlled URL

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[high] Missing error handling for HTTP request failures

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[low] Inconsistent public API design

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Missing error propagation in database index creation

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Unwrapped Option in Notification Processing

sharang commented on pull request sharang/compliance-scanner-agent#53

2026-03-30 10:35:51 +00:00

feat: hourly CVE alerting with notification bell and API

[medium] Inconsistent error handling with unwrap() in critical path