Hi @colbymchenry, an automated scan of this repository surfaced 22 code-quality findings that may be worth a look.
Full details, severity filters, and per-file context are at the link below — feel free to close this issue if it isn't useful to you.
Full interactive report
https://repobility.com/scan/ed2a4dec-9203-454c-8335-a1c2d105bf62/
At a glance
- Score:
85/100 • Grade: A-
- Scanned:
2026-05-16 19:36 UTC
- Lines of code: 34,828
- Total findings: 22
- Security-tagged: 0
- Credential / secret patterns: 0
Top issues, with file & line
These are deterministic rule-based findings — the file paths and line numbers below are real and can be verified in your tree.
- [high] [SEC029] Server-Side Request Forgery (SSRF) — outbound HTTP from user input: Outbound HTTP request to a user-controlled URL without allowlist validation. Attackers can probe internal services (169.254.169.254 metadata, internal Kubernetes endpoints, file:// URIs), exfiltrate data, or pivot through your network. SSRF is OWASP A10:2021 and a frequent foothold in cloud breaches. —
src/mcp/index.ts:30
Validate the URL against an allowlist BEFORE fetching: ALLOWED = {'images.example.com', 'cdn.example.com'} host = urlparse(url).hostname if host not in ALLOWED: abort(400)…
- [low] Duplicated implementation block across source files —
src/extraction/languages/swift.ts:66
Duplicated blocks are a common artifact when generated code is pasted or recreated instead of reused. They increase maintenance cost because every future bug fix must be found i…
- [low] Duplicated implementation block across source files —
src/extraction/languages/typescript.ts:19
Duplicated blocks are a common artifact when generated code is pasted or recreated instead of reused. They increase maintenance cost because every future bug fix must be found i…
- [low] Duplicated implementation block across source files —
src/extraction/liquid-extractor.ts:4
Duplicated blocks are a common artifact when generated code is pasted or recreated instead of reused. They increase maintenance cost because every future bug fix must be found i…
- [low] Duplicated implementation block across source files —
src/extraction/languages/rust.ts:17
Duplicated blocks are a common artifact when generated code is pasted or recreated instead of reused. They increase maintenance cost because every future bug fix must be found i…
See all 22 findings, with severity filters and AI fix prompts: https://repobility.com/scan/ed2a4dec-9203-454c-8335-a1c2d105bf62/
What is this? Repobility is a research project that scans public repositories with a multi-layer static analyzer (rule-based, no AI hallucinations) and learns code-quality patterns across a broad cross-repo corpus. This is not a sales pitch — there's no paywall, no signup required to view the report, and no payment ask. If the findings aren't useful, please close this issue and we won't post again.
To re-run after fixes land: paste your repo URL at repobility.com — fresh scan, free.
Issue filed via the public Repobility report at https://repobility.com/scan/ed2a4dec-9203-454c-8335-a1c2d105bf62/.
Hi @colbymchenry, an automated scan of this repository surfaced 22 code-quality findings that may be worth a look.
Full details, severity filters, and per-file context are at the link below — feel free to close this issue if it isn't useful to you.
Full interactive report
https://repobility.com/scan/ed2a4dec-9203-454c-8335-a1c2d105bf62/
At a glance
85/100• Grade:A-2026-05-16 19:36 UTCTop issues, with file & line
These are deterministic rule-based findings — the file paths and line numbers below are real and can be verified in your tree.
src/mcp/index.ts:30Validate the URL against an allowlist BEFORE fetching: ALLOWED = {'images.example.com', 'cdn.example.com'} host = urlparse(url).hostname if host not in ALLOWED: abort(400)…
src/extraction/languages/swift.ts:66Duplicated blocks are a common artifact when generated code is pasted or recreated instead of reused. They increase maintenance cost because every future bug fix must be found i…
src/extraction/languages/typescript.ts:19Duplicated blocks are a common artifact when generated code is pasted or recreated instead of reused. They increase maintenance cost because every future bug fix must be found i…
src/extraction/liquid-extractor.ts:4Duplicated blocks are a common artifact when generated code is pasted or recreated instead of reused. They increase maintenance cost because every future bug fix must be found i…
src/extraction/languages/rust.ts:17Duplicated blocks are a common artifact when generated code is pasted or recreated instead of reused. They increase maintenance cost because every future bug fix must be found i…
See all 22 findings, with severity filters and AI fix prompts: https://repobility.com/scan/ed2a4dec-9203-454c-8335-a1c2d105bf62/
What is this? Repobility is a research project that scans public repositories with a multi-layer static analyzer (rule-based, no AI hallucinations) and learns code-quality patterns across a broad cross-repo corpus. This is not a sales pitch — there's no paywall, no signup required to view the report, and no payment ask. If the findings aren't useful, please close this issue and we won't post again.
To re-run after fixes land: paste your repo URL at repobility.com — fresh scan, free.
Issue filed via the public Repobility report at https://repobility.com/scan/ed2a4dec-9203-454c-8335-a1c2d105bf62/.