Search

…detects SQL injection patterns, command injection, path traversal, hardcoded secrets, and other CWE-aligned vulnerabilities. The scanner emits severity-grouped findings with remediation steps…

…OWASP top-10 coverage including injection, broken authentication, sensitive data exposure, and XSS. The scanner uses pattern-based detection with smart false-positive filtering…

…the dangerous_eval scanner flags potential injection via eval() and exec() usage. False positives are filtered by context analysis (test fixtures, detection code)…

…reviews code for quality issues that adjacent to but distinct from security findings — style, structure, and complexity that don't rise to injection-level severity but still warrant attention…

…multi-pass review escalates to a deeper security-focused pass when surface scanning surfaces high-severity candidates like injection or auth bypass…