Home / anomalyco / sst
Repository Analysis

anomalyco/sst

Build full-stack apps on your own infrastructure.

2.0 Likely human-written View on GitHub
2.0
Adjusted Score
2.0
Raw Score
100%
Time Factor
2026-05-29
Last Push
26,031
Stars
TypeScript
Language
160,036
Lines of Code
1845
Files
198
Pattern Hits
2026-05-31
Scan Date

Score History

Severity Breakdown

CRITICAL 1HIGH 1MEDIUM 49LOW 147

Pattern Findings

198 matches across 13 categories. Click a row to expand file-level details.

Self-Referential Comments40 hits · 120 pts
SeverityFileLineSnippet
MEDIUMplatform/src/components/secret.ts27 * #### Create a secret
MEDIUMplatform/src/components/cloudflare/queue.ts123 * #### Create a Queue
MEDIUMplatform/src/components/aws/cognito-user-pool.ts515 * #### Create the user pool
MEDIUMplatform/src/components/aws/mysql.ts380 * #### Create the database
MEDIUMplatform/src/components/aws/apigateway-websocket.ts383 * #### Create the API
MEDIUMplatform/src/components/aws/postgres-v1.ts211 * #### Create the database
MEDIUMplatform/src/components/aws/cognito-identity-pool.ts101 * #### Create the identity pool
MEDIUMplatform/src/components/aws/efs.ts116 * #### Create the file system
MEDIUMplatform/src/components/aws/apigatewayv1.ts698 * #### Create the API
MEDIUMplatform/src/components/aws/cluster-v1.ts782 * #### Create a Cluster
MEDIUMplatform/src/components/aws/postgres.ts382 * #### Create the database
MEDIUMplatform/src/components/aws/redis.ts240 * #### Create the cluster
MEDIUMplatform/src/components/aws/bus.ts173 * #### Create a bus
MEDIUMplatform/src/components/aws/aurora.ts494 * #### Create an Aurora Postgres cluster
MEDIUMplatform/src/components/aws/aurora.ts504 * #### Create an Aurora MySQL cluster
MEDIUMplatform/src/components/aws/apigatewayv2.ts618 * #### Create the API
MEDIUMplatform/src/components/aws/realtime.ts90 * #### Create a realtime endpoint
MEDIUMplatform/src/components/aws/sns-topic.ts114 * #### Create a topic
MEDIUMplatform/src/components/aws/opencontrol.ts63 * #### Create an OpenControl server
MEDIUMplatform/src/components/aws/vector.ts64 * #### Create the database
MEDIUMplatform/src/components/aws/alb.ts182 * #### Create a shared ALB
MEDIUMplatform/src/components/aws/app-sync.ts466 * #### Create a GraphQL API
MEDIUMplatform/src/components/aws/open-search.ts170 * #### Create the instance
MEDIUMplatform/src/components/aws/redis-v1.ts209 * #### Create the cluster
MEDIUMplatform/src/components/aws/service.ts1538 * #### Create a Service
MEDIUMplatform/src/components/aws/vpc-v1.ts108 * #### Create a VPC
MEDIUMplatform/src/components/aws/task.ts156 * #### Create a Task
MEDIUMplatform/src/components/aws/auth.ts188 * #### Create an OpenAuth server
MEDIUMplatform/src/components/aws/vpc.ts315 * #### Create a VPC
MEDIUMplatform/src/components/aws/queue.ts309 * #### Create a queue
MEDIUMsdk/python/src/sst/__init__.py40 # Create a nonce of 12 zero bytes
MEDIUM…/aws-python-huggingface/functions/src/functions/api.py9 # Define the prompt for text generation
MEDIUMexamples/aws-rust-loco/config/test.yaml9 # Define the logging format. options: compact, pretty or json
MEDIUMexamples/aws-rust-loco/config/development.yaml11 # Define the logging format. options: compact, pretty or json
MEDIUMexamples/aws-fastapi/functions/src/functions/api.py14# Create a route
MEDIUMexamples/aws-flutter-web/pubspec.yaml53# The following section is specific to Flutter packages.
MEDIUM…es/aws-rails/config/initializers/permissions_policy.rb3# Define an application-wide HTTP permissions policy. For further
MEDIUM…s-rails/config/initializers/content_security_policy.rb3# Define an application-wide content security policy.
MEDIUMexamples/aws-rails/db/schema.rb1# This file is auto-generated from the current state of the database. Instead
MEDIUMexamples/aws-rails/db/schema.rb5# This file is the source Rails uses to define your schema when running `bin/rails
Over-Commented Block94 hits · 94 pts
SeverityFileLineSnippet
LOWcmd/sst/mosaic/multiplexer/tcell-term/c0_test.go61// if vt.mode&LNM != LNM {
LOWcmd/sst/mosaic/multiplexer/tcell-term/sixel.go1package tcellterm
LOWcmd/sst/mosaic/multiplexer/tcell-term/sixel.go21//
LOWcmd/sst/mosaic/multiplexer/tcell-term/sixel.go41//
LOWcmd/sst/mosaic/multiplexer/tcell-term/sixel.go61// }
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go41 // Rob Pike didn't use concurrency since he wanted templates to be able
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go121// This action causes the current private flag, intermediate characters, final
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go161// maximum of 16 parameters need be stored. If more than 16 parameters
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go241 csi.Parameters = params
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go281// the control string as it arrives.
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go381 return escape
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go461 case in(r, 0x3C, 0x3F):
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go621 return ground
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go681 }
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go741}
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go781// The VT500 doesn’t define any function for these control strings, so this
LOWcmd/sst/mosaic/multiplexer/tcell-term/parse.go821}
LOWplatform/src/components/aws/cdn.ts441 domain.apply((domain) => {
LOWplatform/src/components/aws/https-redirect.ts181 // based on the sanitized version of the record name (ie. logicalName()). This
LOWplatform/src/components/aws/remix.ts481 } catch (e) {
LOWplatform/src/components/aws/bucket.ts1781 //
LOWwww/generate.ts1061 // "type": "templateLiteral",
LOWwww/generate.ts1341 }
LOWwww/generate.ts1361 // },
LOWwww/generate.ts1381 // _target: ReflectionSymbolId {
LOWwww/generate.ts1401 // type: 'reference',
LOWwww/src/env.d.ts1/// <reference path="../.astro/types.d.ts" />
LOWexamples/aws-astro-container/src/env.d.ts1/// <reference path="../.astro/types.d.ts" />
LOWexamples/aws-monorepo/packages/astro/src/env.d.ts1/// <reference path="../.astro/types.d.ts" />
LOWexamples/aws-prisma/tsconfig.json1{
LOWexamples/aws-prisma/tsconfig.json21 // "jsxImportSource": "", /* Specify module specifier used to import the JSX factory func
LOWexamples/aws-prisma/tsconfig.json41 // "customConditions": [], /* Conditions to set in addition to the resolver-specific defau
LOWexamples/aws-prisma/tsconfig.json61 // "removeComments": true, /* Disable emitting comments. */
LOWexamples/aws-prisma/tsconfig.json81 // "preserveSymlinks": true, /* Disable resolving symlinks to their realpath. This correlate
LOWexamples/aws-rust-loco/config/test.yaml1# Loco configuration file documentation
LOWexamples/aws-rust-loco/config/test.yaml41 # Duration time in milliseconds.
LOWexamples/aws-rust-loco/config/test.yaml61 # - ForegroundBlocking - Workers operate in the foreground and block until tasks are completed.
LOWexamples/aws-rust-loco/config/test.yaml81
LOWexamples/aws-rust-loco/config/development.yaml1# Loco configuration file documentation
LOWexamples/aws-rust-loco/config/development.yaml41 # For more: https://github.com/rails/rails/blob/main/actionpack/lib/action_dispatch/middleware/remote_ip.rb
LOWexamples/aws-rust-loco/config/development.yaml61 # Enable/Disable the middleware.
LOWexamples/aws-rust-loco/config/development.yaml81 # specifies the worker mode. Options:
LOWexamples/aws-rust-loco/config/development.yaml101 # password:
LOWexamples/aws-rust-loco/src/tasks/seed.rs1//! This task implements data seeding functionality for initializing new
LOWexamples/aws-rust-loco/src/models/users.rs161 .one(db)
LOWexamples/aws-rust-loco/src/models/users.rs241 self.email_verification_sent_at = ActiveValue::set(Some(Local::now().into()));
LOWexamples/aws-rust-loco/src/models/users.rs261 Ok(self.update(db).await?)
LOW…ples/aws-postgres-shared-parameter-group/sst.config.ts21 // parameters: [
LOWexamples/aws-dart-api/analysis_options.yaml1# This file configures the static analysis results for your project (errors,
LOWexamples/aws-dart-api/analysis_options.yaml21
LOWexamples/aws-astro-redis/src/env.d.ts1/// <reference path="../.astro/types.d.ts" />
LOWexamples/aws-flutter-web/pubspec.yaml1name: aws_flutter_web
LOWexamples/aws-flutter-web/pubspec.yaml41 sdk: flutter
LOWexamples/aws-flutter-web/pubspec.yaml61 # To add assets to your application, add an assets section, like this:
LOWexamples/aws-flutter-web/pubspec.yaml81 # - asset: fonts/Schyler-Italic.ttf
LOWexamples/aws-flutter-web/analysis_options.yaml1# This file configures the analyzer, which statically analyzes Dart code to
LOWexamples/aws-flutter-web/analysis_options.yaml21 # `// ignore_for_file: name_of_lint` syntax on the line or in the file
LOW…lutter-web/linux/flutter/generated_plugin_registrant.h1//
LOWexamples/aws-flutter-web/lib/main.dart61 setState(() {
LOWexamples/aws-flutter-web/lib/main.dart81 // TRY THIS: Try changing the color here to a specific color (to
34 more matches not shown…
Hyper-Verbose Identifiers35 hits · 40 pts
SeverityFileLineSnippet
LOWplatform/functions/python-runtime/index.py33 def get_remaining_time_in_millis(self):
LOWplatform/src/auto/run.ts26function addTransformationToRetainResourcesOnDelete() {
LOWplatform/src/auto/run.ts57function addTransformationToAddTags() {
LOWplatform/src/auto/run.ts68function addTransformationToCheckBucketsHaveMultiplePolicies() {
LOWplatform/src/components/aws/nextjs.ts586 function detectDefaultOpenNextVersion() {
LOWplatform/src/components/aws/nextjs.ts946 function createRevalidationTableSeeder() {
LOWplatform/src/components/aws/cognito-user-pool.ts627 function normalizeAliasesAndUsernames() {
LOWplatform/src/components/aws/router.ts1772 function createCfRequestDefaultFunction() {
LOWplatform/src/components/aws/router.ts1865 function createOriginAccessControl() {
LOWplatform/src/components/aws/router.ts2872 function buildOversizedHeadersResponse() {
LOWplatform/src/components/aws/cdn.ts424 function createDistributionDeploymentWaiter() {
LOWplatform/src/components/aws/aurora.ts924 function createInstanceParameterGroup() {
LOWplatform/src/components/aws/aurora.ts950 function createClusterParameterGroup() {
LOWplatform/src/components/aws/bucket-notification.ts90 function createNotificationsConfig() {
LOWplatform/src/components/aws/service.ts2610 function createAlbTargetsAndEntries(
LOWplatform/src/components/aws/task.ts432 function createPublicSecurityGroup() {
LOWplatform/src/components/aws/ssr-site.ts1636 function useServerWarmingInjection(streaming?: boolean) {
LOWplatform/src/components/aws/helpers/arn.ts14export function splitQualifiedFunctionArn(arn: string) {
LOWwww/generate.ts512async function generateIndividualExampleDocs() {
LOWwww/generate.ts648function stripTopLevelReturnObject(lines: string[]) {
LOWwww/generate.ts1058 function renderTemplateLiteralType(type: TypeDoc.TemplateLiteralType) {
LOWwww/generate.ts2133function renderInterfaceInheritedApiInline(int: TypeDoc.DeclarationReflection) {
LOWwww/generate.ts2143function renderInterfaceInheritedApiSummary(int: TypeDoc.DeclarationReflection) {
LOWwww/generate.ts2152function renderExternalExtendedTypeLinks(int: TypeDoc.DeclarationReflection) {
LOWwww/generate.ts2165function renderJsonParseReviverType() {
LOWwww/generate.ts2168function renderJsonStringifyReplacerType() {
LOWwww/generate.ts2171function renderTransformResourceType() {
LOWwww/generate.ts2174function renderTransformCallbackType() {
LOWwww/generate.ts2218function useClassProviderNamespace(module: TypeDoc.DeclarationReflection) {
LOWsdk/python/tests/test_resource.py10 def test_loads_resources_from_json(self, monkeypatch):
LOWsdk/python/tests/test_resource.py19 def test_merges_with_individual_vars(self, monkeypatch):
LOWsdk/python/tests/test_resource.py30 def test_json_overrides_individual_vars(self, monkeypatch):
LOWsdk/python/tests/test_resource.py40 def test_invalid_json_is_ignored(self, monkeypatch):
LOWsdk/python/tests/test_resource.py47 def test_links_not_active_without_app_or_json(self, monkeypatch):
LOWsdk/python/tests/test_resource.py55 def test_no_links_active_error_with_json(self, monkeypatch):
Slop Phrases6 hits · 18 pts
SeverityFileLineSnippet
MEDIUMplatform/src/config.ts1305 * For example, here's how you can run tests before deploying.
MEDIUMplatform/src/components/aws/queue.ts100 * For example, here's how you can create a dead-letter queue and link it to the main queue.
MEDIUMexamples/aws-efs-surrealdb/sst.config.ts35 * This example is for demonstration purposes only. It's not recommended to use
MEDIUMexamples/aws-dart-api/analysis_options.yaml9# If you want a smaller set of lints you can change this to specify
MEDIUMexamples/aws-flutter-web/pubspec.yaml57 # included with your application, so that you can use the icons in
MEDIUMexamples/aws-efs-sqlite/sst.config.ts18 * This example is for demonstration purposes only. It's not recommended to use
Hallucination Indicators1 hit · 10 pts
SeverityFileLineSnippet
CRITICALplatform/src/components/aws/router.ts2730if (event.request.headers.host.value.includes('cloudfront.net')) {
AI Slop Vocabulary3 hits · 9 pts
SeverityFileLineSnippet
MEDIUMplatform/src/components/aws/remix.ts493 // keeping deployments seamless for users we will create a server bundle
MEDIUMplatform/src/components/aws/remix.ts535 // lambda code doesn't appear to guarantee this, we therefore leverage ESBUild's
MEDIUMplatform/src/components/aws/react.ts460 // seamless for users we will create a server bundle with all dependencies included.
Magic Placeholder Names1 hit · 8 pts
SeverityFileLineSnippet
HIGHexamples/aws-lambda-ai-stream/sst.config.ts41 * sst secret set AiGatewayApiKey your-api-key-here
Excessive Try-Catch Wrapping4 hits · 6 pts
SeverityFileLineSnippet
LOWplatform/functions/python-runtime/index.py107except Exception as ex:
LOWplatform/functions/python-runtime/index.py125 except Exception as ex:
LOWplatform/functions/python-runtime/index.py132 except Exception as ex:
LOWplatform/functions/python-runtime/index.py140 except Exception as ex:
Overly Generic Function Names5 hits · 5 pts
SeverityFileLineSnippet
LOWexamples/aws-remix-stream/app/entry.server.tsx17export default function handleRequest(
LOWexamples/cloudflare-react-router/app/entry.server.tsx6export default async function handleRequest(
LOWexamples/aws-remix-container/app/entry.server.tsx17export default function handleRequest(
LOWexamples/aws-remix-redis/app/entry.server.tsx17export default function handleRequest(
LOWexamples/aws-remix/app/entry.server.tsx17export default function handleRequest(
Unused Imports3 hits · 3 pts
SeverityFileLineSnippet
LOWsdk/python/tests/test_resource.py2
LOWexamples/aws-fastapi/core/src/core/__init__.py1
LOWexamples/aws-python/core/src/core/__init__.py1
Redundant / Tautological Comments2 hits · 3 pts
SeverityFileLineSnippet
LOWsdk/python/src/sst/__init__.py26# Check if SST_KEY_FILE and SST_KEY are in environment variables
LOWexamples/aws-rails/config/environments/production.rb82 # Set this to true and configure the email server for immediate delivery to raise delivery errors.
Fake / Example Data3 hits · 3 pts
SeverityFileLineSnippet
LOWexamples/aws-apig-auth/sst.config.ts33 audiences: ["user@example.com"],
LOWexamples/aws-fastapi/core/src/core/db.py4 "name": "John Doe",
LOWexamples/aws-python/core/src/core/db.py4 "name": "John Doe",
Example Usage Blocks1 hit · 2 pts
SeverityFileLineSnippet
LOWexamples/aws-shared-alb/test.sh6# Usage: