aquasecurity/trivy

Pattern Findings

140 matches across 8 categories. Click a row to expand file-level details.

Hallucination Indicators12 hits · 180 pts

Severity	File	Line	Snippet
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	160	assert.Equal(t, 15, cluster.Logging.Broker.Cloudwatch.Metadata.Range().GetStartLine())
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	161	assert.Equal(t, 18, cluster.Logging.Broker.Cloudwatch.Metadata.Range().GetEndLine())
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	163	assert.Equal(t, 16, cluster.Logging.Broker.Cloudwatch.Enabled.GetMetadata().Range().GetStartLine())
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	164	assert.Equal(t, 16, cluster.Logging.Broker.Cloudwatch.Enabled.GetMetadata().Range().GetEndLine())
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	166	assert.Equal(t, 19, cluster.Logging.Broker.Firehose.Metadata.Range().GetStartLine())
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	167	assert.Equal(t, 22, cluster.Logging.Broker.Firehose.Metadata.Range().GetEndLine())
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	169	assert.Equal(t, 20, cluster.Logging.Broker.Firehose.Enabled.GetMetadata().Range().GetStartLine())
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	170	assert.Equal(t, 20, cluster.Logging.Broker.Firehose.Enabled.GetMetadata().Range().GetEndLine())
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	172	assert.Equal(t, 23, cluster.Logging.Broker.S3.Metadata.Range().GetStartLine())
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	173	assert.Equal(t, 27, cluster.Logging.Broker.S3.Metadata.Range().GetEndLine())
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	175	assert.Equal(t, 24, cluster.Logging.Broker.S3.Enabled.GetMetadata().Range().GetStartLine())
CRITICAL	pkg/iac/adapters/terraform/aws/msk/adapt_test.go	176	assert.Equal(t, 24, cluster.Logging.Broker.S3.Enabled.GetMetadata().Range().GetEndLine())

Over-Commented Block96 hits · 96 pts

Severity	File	Line	Snippet
LOW	integration/sbom_test.go	101	})
LOW	docs/guide/advanced/modules.md	261	// e.g. results
LOW	docs/guide/compliance/compliance.md	121	# - input: schema["kubernetes"]
LOW	docs/guide/scanner/misconfiguration/index.md	321
LOW	docs/guide/scanner/misconfiguration/custom/selectors.md	1	# Input Selectors
LOW	docs/tutorials/misconfiguration/custom-checks.md	21	```
LOW	docs/community/contribute/checks/overview.md	21	# scope: package
LOW	examples/module/spring4shell/spring4shell.go	141	// PostScan takes results including custom resources and detected CVE-2022-22965.
LOW	examples/module/spring4shell/spring4shell.go	161	// "FilePath": "/usr/local/tomcat/RELEASE-NOTES",
LOW	examples/module/spring4shell/spring4shell.go	181	// "Layer": {
LOW	examples/module/spring4shell/spring4shell.go	201	// "redhat": 3
LOW	rpc/cache/service.twirp.go	1361	}
LOW	rpc/cache/service.twirp.go	1381	// service. Those accessors are a low-level API for building reflection tools.
LOW	rpc/scanner/service.twirp.go	521	return baseServicePath(s.pathPrefix, "trivy.scanner.v1", "Scanner")
LOW	rpc/scanner/service.twirp.go	541	// HTTP handlers with additional methods for accessing metadata about the
LOW	helm/trivy/values.yaml	61	debugMode: false
LOW	helm/trivy/values.yaml	81	#
LOW	pkg/result/ignore.go	21	"github.com/aquasecurity/trivy/pkg/log"
LOW	pkg/fingerprint/fingerprint.go	21	// TODO: Future implementation
LOW	pkg/sbom/core/bom.go	101	// It's transparently generated by UUIDv4
LOW	pkg/sbom/core/bom.go	121	Group string
LOW	pkg/sbom/core/bom.go	141	SrcFile string
LOW	pkg/sbom/io/encode.go	181
LOW	pkg/sbom/io/encode.go	201	// -> Library component (vim-8.2) ------------------ #3
LOW	pkg/sbom/io/encode.go	281
LOW	pkg/sbom/io/encode.go	501
LOW	pkg/fanal/image/image.go	81	layerIDs = append(layerIDs, d.String())
LOW	pkg/fanal/image/image.go	101	// In total, it would be like:
LOW	pkg/fanal/analyzer/language/golang/mod/mod.go	261	// This situation can occur when:
LOW	pkg/fanal/walker/fs.go	101	absBase, err := filepath.Abs(base)
LOW	pkg/dependency/parser/nodejs/pnpm/parse_testcase.go	601	// cd ./node_modules/lodash/
LOW	pkg/dependency/parser/nodejs/pnpm/types.go	1	package pnpm
LOW	pkg/dependency/parser/nodejs/pnpm/parse.go	301	// e.g.
LOW	pkg/dependency/parser/nodejs/npm/parse_testcase.go	1301
LOW	pkg/dependency/parser/python/uv/parse_testcase.go	1	package uv
LOW	pkg/dependency/parser/python/poetry/parse_testcase.go	1	package poetry
LOW	pkg/dependency/parser/golang/binary/parse.go	161	// The priority order is:
LOW	pkg/dependency/parser/golang/binary/parse.go	221	}
LOW	pkg/dependency/parser/java/pom/mirror.go	61	url: *u,
LOW	pkg/dependency/parser/java/pom/parse_test.go	1401	},
LOW	pkg/dependency/parser/java/pom/parse_test.go	1481	},
LOW	pkg/dependency/parser/java/pom/parse_test.go	1501	//[INFO]
LOW	pkg/dependency/parser/java/pom/parse_test.go	2161	},
LOW	pkg/dependency/parser/java/pom/parse_test.go	2241	},
LOW	pkg/dependency/parser/java/pom/settings_test.go	121	},
LOW	pkg/dependency/parser/java/pom/settings_test.go	141	// <server>
LOW	pkg/dependency/parser/java/pom/settings_test.go	161	// </snapshots>
LOW	pkg/dependency/parser/java/pom/settings_test.go	181	// <repository>
LOW	pkg/dependency/parser/java/jar/parse_test.go	181	//│ └── foo
LOW	pkg/dependency/parser/ruby/gemspec/parse.go	21	// e.g. Gem::Specification.new do \|s\|
LOW	pkg/iac/rego/embed_test.go	41	# scope: package
LOW	pkg/iac/rego/embed_test.go	61	# custom:
LOW	pkg/iac/rego/embed_test.go	121	# title: "deprecated check"
LOW	pkg/iac/rego/embed_test.go	161	},
LOW	pkg/iac/rego/scanner_test.go	21
LOW	pkg/iac/rego/scanner_test.go	161	t.Setenv("DEFSEC_RUNTIME_VAL", "AOK")
LOW	pkg/iac/rego/scanner_test.go	201	assert.Empty(t, results.GetPassed())
LOW	pkg/iac/rego/scanner_test.go	301	assert.Equal(t, 456, results.GetFailed()[0].Metadata().Range().GetEndLine())
LOW	pkg/iac/rego/scanner_test.go	421	"policies/test.rego": `# METADATA
LOW	pkg/iac/rego/scanner_test.go	501	srcFS := testutil.CreateFS(map[string]string{
36 more matches not shown…

Self-Referential Comments16 hits · 52 pts

Severity	File	Line	Snippet
MEDIUM	misc/backport/backport.sh	24	# Create a new branch with the PR number and branch name
MEDIUM	misc/backport/backport.sh	30	# Create the pull request title
MEDIUM	misc/backport/backport.sh	33	# Create the pull request description
MEDIUM	misc/backport/backport.sh	65	# Create a new pull request with the original PR title, backport suffix, and description
MEDIUM	…alyzer/language/julia/pkg/testdata/happy/Manifest.toml	1	# This file is machine-generated - editing it directly is not advised
MEDIUM	…age/julia/pkg/testdata/shadowed_dep_v1.9/Manifest.toml	1	# This file is machine-generated - editing it directly is not advised
MEDIUM	…language/julia/pkg/testdata/dep_ext_v1.9/Manifest.toml	1	# This file is machine-generated - editing it directly is not advised
MEDIUM	…language/julia/pkg/testdata/no_deps_v1.6/Manifest.toml	1	# This file is machine-generated - editing it directly is not advised
MEDIUM	…lia/manifest/testdata/multiple-same-deps/Manifest.toml	1	# This file is machine-generated - editing it directly is not advised
MEDIUM	…ulia/manifest/testdata/shadowed_dep_v1.9/Manifest.toml	1	# This file is machine-generated - editing it directly is not advised
MEDIUM	…julia/manifest/testdata/missed-child-dep/Manifest.toml	1	# This file is machine-generated - editing it directly is not advised
MEDIUM	…ser/julia/manifest/testdata/dep_ext_v1.9/Manifest.toml	1	# This file is machine-generated - editing it directly is not advised
MEDIUM	…ser/julia/manifest/testdata/no_deps_v1.6/Manifest.toml	1	# This file is machine-generated - editing it directly is not advised
MEDIUM	…ser/julia/manifest/testdata/no_deps_v1.9/Manifest.toml	1	# This file is machine-generated - editing it directly is not advised
MEDIUM	…ser/julia/manifest/testdata/primary/Manifest_v1.8.toml	1	# This file is machine-generated - editing it directly is not advised
MEDIUM	…ser/julia/manifest/testdata/primary/Manifest_v1.6.toml	1	# This file is machine-generated - editing it directly is not advised

Slop Phrases6 hits · 12 pts

Severity	File	Line	Snippet
LOW	helm/trivy/values.yaml	109	# In case you specify redis as backend, make sure you installed a redis server yourself, e.g.
MEDIUM	pkg/vex/testdata/csaf.json	8	"text": "Example Company VEX document. Unofficial content for demonstration purposes only.",
MEDIUM	pkg/iac/adapters/terraform/aws/apigateway/apiv1_test.go	23	description = "This is my API for demonstration purposes"
MEDIUM	pkg/iac/adapters/terraform/aws/apigateway/apiv1_test.go	50	description = "This is my API for demonstration purposes"
MEDIUM	pkg/iac/adapters/terraform/aws/apigateway/adapt_test.go	29	description = "This is my API for demonstration purposes"
MEDIUM	pkg/iac/adapters/terraform/aws/apigateway/adapt_test.go	142	description = "This is my API for demonstration purposes"

Verbosity Indicators5 hits · 8 pts

Severity	File	Line	Snippet
LOW	pkg/dependency/parser/nodejs/pnpm/parse.go	113	// Step 1: Extract direct dependencies from the "importers" section.
LOW	pkg/dependency/parser/nodejs/pnpm/parse.go	128	// Step 2: Process each snapshot to create package entries.
LOW	pkg/dependency/parser/nodejs/pnpm/parse.go	145	// Step 3: Determine if this package is a direct or transitive dependency,
LOW	pkg/dependency/parser/nodejs/pnpm/parse.go	174	// Step 4: Build the dependency graph by recording what this package depends on.
LOW	pkg/dependency/parser/nodejs/pnpm/parse.go	192	// Step 5: Propagate the "production" status to all transitive dependencies.

AI Slop Vocabulary2 hits · 6 pts

Severity	File	Line	Snippet
MEDIUM	pkg/fanal/artifact/image/image.go	204	// TODO(knqyf263): refactor to use a more robust method instead of suffix-based detection
MEDIUM	pkg/iac/scanners/terraform/parser/funcs/datetime.go	147	// be robust here.

Example Usage Blocks1 hit · 2 pts

Severity	File	Line	Snippet
LOW	pkg/x/json/jsonc.go	60	// Usage example:

Hyper-Verbose Identifiers2 hits · 1 pts

Severity	File	Line	Snippet
LOW	…eDir/.conan/data/openssl/3.0.5/_/_/export/conanfile.py	572	def _create_cmake_module_variables(self, module_file):
LOW	…stdata/cacheDir_v2/p/opens464b5c427ce9d/e/conanfile.py	572	def _create_cmake_module_variables(self, module_file):

Score History

Severity Breakdown

Pattern Findings