Home / OWASP / CheatSheetSeries
Repository Analysis

OWASP/CheatSheetSeries

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

1.0 Likely human-written View on GitHub
1.0
Adjusted Score
1.0
Raw Score
100%
Time Factor
2026-05-29
Last Push
32,131
Stars
Python
Language
49,429
Lines of Code
172
Files
20
Pattern Hits
2026-05-31
Scan Date

Score History

Severity Breakdown

CRITICAL 3HIGH 1MEDIUM 0LOW 16

Pattern Findings

20 matches across 6 categories. Click a row to expand file-level details.

Hallucination Indicators3 hits · 30 pts
SeverityFileLineSnippet
CRITICALcheatsheets/Error_Handling_Cheat_Sheet.md39 org.apache.struts2.interceptor.debugging.DebuggingInterceptor.intercept(DebuggingInterceptor.java:256)
CRITICALcheatsheets/XML_Security_Cheat_Sheet.md845 at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:1459)
CRITICALcheatsheets/XML_Security_Cheat_Sheet.md846 at com.sun.org.apache.xerces.internal.impl.XMLEntityManager.setupCurrentEntity(XMLEntityManager.java:674)
Over-Commented Block6 hits · 6 pts
SeverityFileLineSnippet
LOWmkdocs.yml21 lang:
LOW…s/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.md921 .find(cookie => cookie.startsWith(`${cookieName}=`));
LOW…s/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.md941// // CSRF token is automatically added
LOW…s/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.md1041
LOW…atsheets/XML_External_Entity_Prevention_Cheat_Sheet.md261try {
LOWcheatsheets/C-Based_Toolchain_Hardening_Cheat_Sheet.md221In addition to `NDEBUG` (Release) and `DEBUG` (Debug), you have two additional cross products: both are defined or neith
Synthetic Comment Markers1 hit · 5 pts
SeverityFileLineSnippet
HIGHCONTRIBUTING.md144Templates for all issues and pull requests must be used, otherwise it suggests that they have been generated by AI witho
Excessive Try-Catch Wrapping4 hits · 4 pts
SeverityFileLineSnippet
LOWcheatsheets/Multi_Tenant_Security_Cheat_Sheet.md206 except Exception:
LOWcheatsheets/Multi_Tenant_Security_Cheat_Sheet.md748 except Exception as e:
LOW…/Server_Side_Request_Forgery_Prevention_Cheat_Sheet.md220 except Exception as e:
LOW…/Server_Side_Request_Forgery_Prevention_Cheat_Sheet.md226 except Exception as e:
Hyper-Verbose Identifiers4 hits · 3 pts
SeverityFileLineSnippet
LOWscripts/Update_CheatSheets_Index.py14def extract_languages_snippet_provided(cheatsheet):
LOWcheatsheets/Cookie_Theft_Mitigation_Cheat_Sheet.md93function cookieTheftDetectionMiddleware(req, res) {
LOWcheatsheets/AI_Agent_Security_Cheat_Sheet.md296 def validate_no_sensitive_data(cls, v):
LOWcheatsheets/AI_Agent_Security_Cheat_Sheet.md333 def _detect_exfiltration_attempt(self, output: dict) -> bool:
Fake / Example Data2 hits · 2 pts
SeverityFileLineSnippet
LOW…heets/Browser_Extension_Vulnerabilities_Cheat_Sheet.md219 name: "Jane Doe",
LOWcheatsheets/JSON_Web_Token_for_Java_Cheat_Sheet.md41 "name": "John Doe",