better-auth/better-auth

Pattern Findings

337 matches across 6 categories. Click a row to expand file-level details.

Decorative Section Separators62 hits · 186 pts

Severity	File	Line	Snippet
MEDIUM	docs/components/command-menu.tsx	33	// ─── Context ─────────────────────────────────────────────────────────────────
MEDIUM	docs/components/command-menu.tsx	50	// ─── AI Suggestions ──────────────────────────────────────────────────────────
MEDIUM	docs/components/command-menu.tsx	59	// ─── Provider ────────────────────────────────────────────────────────────────
MEDIUM	docs/components/command-menu.tsx	117	// ─── Dialog ──────────────────────────────────────────────────────────────────
MEDIUM	docs/components/command-menu.tsx	227	// ─── Search Mode ─────────────────────────────────────────────────────────────
MEDIUM	docs/components/command-menu.tsx	399	// ─── AI Mode ─────────────────────────────────────────────────────────────────
MEDIUM	docs/components/command-menu.tsx	620	// ─── AI Text Input ───────────────────────────────────────────────────────────
MEDIUM	docs/components/command-menu.tsx	663	// ─── AI Message ──────────────────────────────────────────────────────────────
MEDIUM	docs/components/command-menu.tsx	729	// ─── Thinking Indicator ──────────────────────────────────────────────────────
MEDIUM	docs/components/ai-chat.tsx	30	// ─── Context ─────────────────────────────────────────────────────────────────
MEDIUM	docs/components/ai-chat.tsx	48	// ─── Root ────────────────────────────────────────────────────────────────────
MEDIUM	docs/components/ai-chat.tsx	103	// ─── Trigger ─────────────────────────────────────────────────────────────────
MEDIUM	docs/components/ai-chat.tsx	126	// ─── Panel ───────────────────────────────────────────────────────────────────
MEDIUM	docs/components/ai-chat.tsx	281	// ─── Panel Header ────────────────────────────────────────────────────────────
MEDIUM	docs/components/ai-chat.tsx	306	// ─── Panel Messages ──────────────────────────────────────────────────────────
MEDIUM	docs/components/ai-chat.tsx	396	// ─── Panel Input ─────────────────────────────────────────────────────────────
MEDIUM	docs/components/ai-chat.tsx	555	// ─── Thinking Indicator ──────────────────────────────────────────────────────
MEDIUM	docs/components/ai-chat.tsx	576	// ─── Message ─────────────────────────────────────────────────────────────────
MEDIUM	docs/components/ai-chat.tsx	637	// ─── Hot Key ─────────────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/mdx-components.tsx	19	// ─── GenerateSecret ──────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/mdx-components.tsx	62	// ─── APIMethod ───────────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/mdx-components.tsx	89	// ─── DatabaseTable ───────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/mdx-components.tsx	504	// ─── Endpoint ────────────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/mdx-components.tsx	539	// ─── ForkButton ──────────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/mdx-components.tsx	572	// ─── AddToCursor ─────────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/mdx-components.tsx	602	// ─── DividerText ─────────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/mdx-components.tsx	616	// ─── GenerateAppleJwt ────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/mdx-components.tsx	626	// ─── Features (placeholder) ─────────────────────────────────────────────────
MEDIUM	docs/components/docs/custom-sidebar.tsx	14	// ─── Item ───────────────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/custom-sidebar.tsx	40	// ─── Folder ─────────────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/custom-sidebar.tsx	95	// ─── Separator ──────────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/custom-sidebar.tsx	111	// ─── Search Button (sidebar banner) ─────────────────────────────────────────
MEDIUM	docs/components/docs/custom-sidebar.tsx	145	// ─── Helpers ────────────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/docs-sidebar.tsx	204	// ─── Collapsible Section ──────────────────────────────────────────────────────
MEDIUM	docs/components/docs/docs-sidebar.tsx	286	// ─── Sidebar Item with Subpages ───────────────────────────────────────────────
MEDIUM	docs/components/docs/docs-sidebar.tsx	365	// ─── Subpage Link ─────────────────────────────────────────────────────────────
MEDIUM	docs/components/docs/docs-sidebar.tsx	431	// ─── Sidebar Link ─────────────────────────────────────────────────────────────
MEDIUM	packages/cli/src/commands/ai.ts	31	// ── Main ──────────────────────────────────────────
MEDIUM	packages/cli/src/commands/ai.ts	71	// ── Client Integration ────────────────────────────
MEDIUM	packages/cli/src/commands/ai.ts	101	// ── Server Selection ──────────────────────────────
MEDIUM	packages/cli/src/commands/ai.ts	122	// ── MCP Server Setup ──────────────────────────────
MEDIUM	packages/cli/src/commands/ai.ts	354	// ── CLI Setup ─────────────────────────────────────
MEDIUM	packages/cli/src/commands/ai.ts	420	// ── Server Setup ──────────────────────────────────
MEDIUM	packages/cli/src/commands/ai.ts	645	// ── Helpers ───────────────────────────────────────
MEDIUM	packages/cli/src/commands/ai.ts	777	// ── Export ─────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	35	// ── Types ──────────────────────────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	63	// ── Constants ──────────────────────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	65	// ── CLI argument parsing ───────────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	109	// ── Git helpers ────────────────────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	133	// ── Previous tag resolution ────────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	187	// ── Changeset file parsing ─────────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	212	// ── PR metadata resolution ─────────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	282	// ── Domain classification ──────────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	300	// ── Changeset description index ────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	475	// ── Entry collection ───────────────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	721	// ── Formatting ─────────────────────────────────────────────────────────
MEDIUM	.github/scripts/release-notes.ts	845	// ── Main ───────────────────────────────────────────────────────────────
MEDIUM	.github/scripts/auto-changeset.ts	14	// ── Types ──────────────────────────────────────────────────────────────
MEDIUM	.github/scripts/auto-changeset.ts	27	// ── Constants ──────────────────────────────────────────────────────────
MEDIUM	.github/scripts/auto-changeset.ts	32	// ── PR data fetching ───────────────────────────────────────────────────
2 more matches not shown…

Fake / Example Data152 hits · 148 pts

Severity	File	Line	Snippet
LOW	test/unit/proxy-agent/index.spec.ts	149	email: "user@example.com",
LOW	packages/core/src/social-providers/apple.test.ts	28	email: "user@example.com",
LOW	packages/sso/src/providers.test.ts	239	email: "admin@example.com",
LOW	packages/sso/src/providers.test.ts	1007	email: "admin@example.com",
LOW	packages/sso/src/providers.test.ts	1013	(u) => u.email === "admin@example.com",
LOW	packages/sso/src/providers.test.ts	1226	email: "admin@example.com",
LOW	packages/sso/src/providers.test.ts	1232	(u) => u.email === "admin@example.com",
LOW	packages/sso/src/providers.test.ts	1387	email: "admin@example.com",
LOW	packages/sso/src/providers.test.ts	1393	(u) => u.email === "admin@example.com",
LOW	packages/sso/src/oidc.test.ts	241	loginHint: "user@example.com",
LOW	packages/better-auth/src/test-utils/test-instance.ts	153	email: "test@test.com",
LOW	packages/better-auth/src/plugins/oidc-provider/index.ts	216	'The contact information for the application. Eg: ["admin@example.com"]',
LOW	packages/better-auth/src/plugins/admin/admin.test.ts	487	expect(res.data?.users[0]!.email).toBe("test@test.com");
LOW	…rc/plugins/last-login-method/last-login-method.test.ts	129	email: "user@example.com",
LOW	…rc/plugins/last-login-method/last-login-method.test.ts	294	email: "user@example.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	471	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	478	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	485	expect(res.data?.user?.email).toBe("test@test.com");
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	38	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	61	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	83	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	105	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	143	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	163	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	183	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	213	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	237	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	257	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	280	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	313	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	337	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	357	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	391	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	412	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	432	email: "test@test.com",
LOW	…ckages/better-auth/src/plugins/captcha/captcha.test.ts	510	email: "test@test.com",
LOW	…rc/plugins/additional-fields/additional-fields.test.ts	40	email: "test@test.com",
LOW	…r-auth/src/plugins/generic-oauth/generic-oauth.test.ts	1416	expect(session.data?.user.name).toBe("John Doe");
LOW	packages/better-auth/src/plugins/siwe/siwe.test.ts	337	email: "user@example.com",
LOW	packages/better-auth/src/oauth2/link-account.test.ts	225	const userEmail = "user@example.com";
LOW	packages/better-auth/src/db/secondary-storage.test.ts	52	email: "test@test.com",
LOW	…ckages/better-auth/src/db/get-migration-schema.test.ts	279	email: "test@test.com",
LOW	packages/better-auth/src/api/to-auth-endpoints.test.ts	462	email: "test@test.com",
LOW	packages/better-auth/src/api/to-auth-endpoints.test.ts	481	email: "test@test.com",
LOW	packages/better-auth/src/api/to-auth-endpoints.test.ts	546	email: "test@test.com",
LOW	packages/better-auth/src/api/to-auth-endpoints.test.ts	578	email: "test@test.com",
LOW	packages/better-auth/src/api/to-auth-endpoints.test.ts	609	email: "test@test.com",
LOW	packages/better-auth/src/api/to-auth-endpoints.test.ts	643	email: "test@test.com",
LOW	…s/better-auth/src/api/middlewares/origin-check.test.ts	52	email: "test@test.com",
LOW	packages/better-auth/src/api/routes/session-api.test.ts	488	email: "test@test.com",
LOW	packages/better-auth/src/api/routes/account.test.ts	138	email = "test@test.com";
LOW	…kages/better-auth/src/api/routes/email-verification.ts	108	example: "user@example.com",
LOW	packages/better-auth/src/client/query.test.ts	35	user: { id: "1", email: "test@test.com" },
LOW	packages/better-auth/src/client/query.test.ts	48	user: { id: "1", email: "test@test.com" },
LOW	packages/better-auth/src/client/query.test.ts	59	user: { id: "1", email: "test@test.com" },
LOW	packages/better-auth/src/client/query.test.ts	78	user: { id: "1", email: "test@test.com" },
LOW	packages/better-auth/src/client/query.test.ts	91	user: { id: "1", email: "test@test.com" },
LOW	packages/better-auth/src/client/query.test.ts	191	user: { id: "1", email: "test@test.com" },
LOW	packages/better-auth/src/client/query.test.ts	204	user: { id: "1", email: "test@test.com" },
LOW	packages/better-auth/src/client/query.test.ts	214	user: { id: "1", email: "test@test.com" },
92 more matches not shown…

Hyper-Verbose Identifiers82 hits · 82 pts

Severity	File	Line	Snippet
LOW	demo/nextjs/app/(auth)/sign-in/_components/electron.tsx	12	export function ElectronManualSignInToast({
LOW	demo/nextjs/components/ui/chart.tsx	293	function getPayloadConfigFromPayload(
LOW	docs/components/api-method.tsx	744	function shouldClientUseQueryParams(
LOW	docs/components/api-method.tsx	817	function shouldServerUseQueryParams(
LOW	docs/scripts/sync-typesense.ts	7	export function getTypesenseSyncSkipReason(env: NodeJS.ProcessEnv) {
LOW	packages/scim/src/routes.ts	91	function isProviderOwnershipEnabled(opts: SCIMOptions): boolean {
LOW	packages/scim/src/routes.ts	95	async function getSCIMUserOrgMemberships(
LOW	packages/api-key/src/adapter.ts	16	export function parseDoubleStringifiedMetadata(
LOW	packages/api-key/src/adapter.ts	45	export async function batchMigrateLegacyMetadata(
LOW	packages/api-key/src/adapter.ts	93	export async function migrateDoubleStringifiedMetadata(
LOW	packages/api-key/src/adapter.ts	140	function getStorageKeyByReferenceId(referenceId: string): string {
LOW	packages/api-key/src/adapter.ts	539	function applySortingAndPagination(
LOW	…ages/api-key/src/routes/delete-all-expired-api-keys.ts	4	export function deleteAllExpiredApiKeysEndpoint({
LOW	packages/core/src/context/request-state.ts	18	export async function getRequestStateAsyncLocalStorage() {
LOW	packages/core/src/context/endpoint-context.ts	29	export async function getCurrentAuthContextAsyncLocalStorage() {
LOW	packages/core/src/oauth2/verify.ts	24	function isJoseInfrastructureError(error: joseErrors.JOSEError) {
LOW	packages/core/src/oauth2/refresh-access-token.ts	6	export async function refreshAccessTokenRequest({
LOW	packages/core/src/oauth2/refresh-access-token.ts	32	export function createRefreshAccessTokenRequest({
LOW	packages/core/src/oauth2/utils.ts	38	export function applyDefaultAccessTokenExpiry(
LOW	packages/core/src/oauth2/client-credentials-token.ts	6	export async function clientCredentialsTokenRequest({
LOW	packages/core/src/oauth2/client-credentials-token.ts	29	export function createClientCredentialsTokenRequest({
LOW	packages/core/src/oauth2/validate-authorization-code.ts	46	export function createAuthorizationCodeRequest({
LOW	packages/core/src/oauth2/validate-authorization-code.ts	119	export async function validateAuthorizationCode({
LOW	packages/core/src/instrumentation/noop.ts	62	function createNoopOpenTelemetryAPI(): OpenTelemetryAPI {
LOW	…kages/core/src/instrumentation/instrumentation.test.ts	23	async function primeLazyOpenTelemetryForTests(): Promise<void> {
LOW	packages/core/src/api/index.ts	22	function attachResponseHeadersToAPIError(
LOW	packages/oauth-provider/src/consent.ts	165	function sessionSatisfiesLoginPrompt(
LOW	packages/oauth-provider/src/introspect.ts	136	async function validateOpaqueAccessToken(
LOW	packages/oauth-provider/src/authorize.ts	69	function redirectWithPromptNoneError(
LOW	packages/oauth-provider/src/authorize.ts	535	function serializeAuthorizationQuery(query: OAuthAuthorizationQuery) {
LOW	packages/oauth-provider/src/authorize.ts	550	async function redirectWithAuthorizationCode(
LOW	packages/oauth-provider/src/register.ts	14	function resolveUnauthenticatedAuth(body: OAuthClient): {
LOW	packages/oauth-provider/src/register.ts	198	export async function createOAuthClientEndpoint(
LOW	packages/oauth-provider/src/token.ts	695	async function handleAuthorizationCodeGrant(
LOW	packages/oauth-provider/src/token.ts	899	async function handleClientCredentialsGrant(
LOW	packages/oauth-provider/src/logout.ts	17	export async function rpInitiatedLogoutEndpoint(
LOW	packages/oauth-provider/src/utils/index.ts	200	export async function decryptStoredClientSecret(
LOW	packages/oauth-provider/src/utils/index.ts	410	export async function validateClientCredentials(
LOW	packages/oauth-provider/src/oauthClient/endpoints.ts	247	export async function rotateClientSecretEndpoint(
LOW	packages/cli/test/generate.test.ts	1293	function createMockAdapterWithDialect(
LOW	packages/cli/src/utils/get-config.ts	49	function readRawTsconfigReferences(
LOW	packages/cli/src/utils/get-config.ts	67	function collectReferencedTsconfigs(
LOW	packages/cli/src/utils/get-config.ts	204	function createRewriteImportPathsPlugin(matchers: PathsMatcher[]) {
LOW	packages/cli/src/commands/ai.ts	325	async function writeMcpConfigInteractive(
LOW	packages/sso/src/oidc/errors.ts	29	export function mapDiscoveryErrorToAPIError(error: DiscoveryError): APIError {
LOW	packages/sso/src/oidc/discovery.ts	151	function validateSkipDiscoveryEndpoint(
LOW	packages/sso/src/oidc/discovery.ts	176	export function validateSkipDiscoveryEndpoints(
LOW	packages/sso/src/oidc/discovery.ts	308	export function validateDiscoveryDocument(
LOW	packages/sso/src/oidc/discovery.ts	520	export function selectTokenEndpointAuthMethod(
LOW	packages/sso/src/routes/domain-verification.ts	18	export function getVerificationIdentifier(
LOW	packages/sso/src/linking/org-assignment.ts	29	export async function assignOrganizationFromProvider(
LOW	packages/sso/src/linking/org-assignment.ts	95	export async function assignOrganizationByDomain(
LOW	packages/sso/src/saml/algorithms.ts	87	function normalizeSignatureAlgorithm(alg: string): string {
LOW	packages/sso/src/saml/algorithms.ts	105	function extractEncryptionAlgorithms(xml: string): {
LOW	packages/sso/src/saml/algorithms.ts	153	function handleDeprecatedAlgorithm(
LOW	packages/sso/src/saml/algorithms.ts	172	function validateSignatureAlgorithm(
LOW	packages/sso/src/saml/algorithms.ts	209	function validateEncryptionAlgorithms(
LOW	packages/better-auth/src/context/helpers.ts	197	export function resolveDynamicTrustedProxyHeaders(
LOW	…src/plugins/organization/routes/crud-access-control.ts	1131	async function checkIfMemberHasPermission({
LOW	…src/plugins/organization/routes/crud-access-control.ts	1207	async function checkIfRoleNameIsTakenByPreDefinedRole({
22 more matches not shown…

Verbosity Indicators32 hits · 50 pts

Severity	File	Line	Snippet
LOW	test/unit/proxy-agent/index.spec.ts	106	// Step 1: Initiate OAuth sign in
LOW	test/unit/proxy-agent/index.spec.ts	127	// Step 2: Complete OAuth callback - this will trigger requests through the proxy
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	598	// Step 1: Start OAuth on production
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	611	// Step 2: Complete OAuth callback on production - passthrough mode
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	640	// Step 3: Call oauth-proxy-callback on preview instance
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	651	// Step 4: Verify user was created ONLY in preview DB
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	1073	// Step 1: Start OAuth on production
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	1086	// Step 2: Complete OAuth callback on production
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	1120	// Step 3: Preview can decrypt and create user
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	1258	// Step 1: Initiate OAuth flow
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	1271	// Step 2: Complete OAuth callback to get encrypted profile
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	1291	// Step 3: Call oauth-proxy-callback WITHOUT cookies (simulating cross-origin)
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	1439	// Step 1: Start OAuth on preview
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	1454	// Step 2: OAuth callback arrives at production
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	1522	// Step 1: Start OAuth on preview (the non-production environment)
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	1536	// Step 2: OAuth callback arrives at production
LOW	…etter-auth/src/plugins/oauth-proxy/oauth-proxy.test.ts	1560	// Step 3: Preview receives the callback
LOW	…ges/better-auth/src/plugins/oidc-provider/oidc.test.ts	857	// Step 1: Create a new OAuth client for this test
LOW	…ges/better-auth/src/plugins/oidc-provider/oidc.test.ts	865	// Step 2: Logout to start fresh
LOW	…ges/better-auth/src/plugins/oidc-provider/oidc.test.ts	872	// Step 3: Initiate OIDC authorization flow (which will set oidc_login_prompt cookie)
LOW	…ges/better-auth/src/plugins/oidc-provider/oidc.test.ts	906	// Step 4: Complete the OIDC login flow
LOW	…ges/better-auth/src/plugins/oidc-provider/oidc.test.ts	934	// Step 5: Now do a NORMAL login to the main app (NOT OIDC flow)
LOW	packages/stripe/test/subscription.test.ts	1966	// Step 1: Create a subscription that was trialing (simulates checkout completed
LOW	packages/stripe/test/subscription.test.ts	1981	// Step 2: Simulate customer.subscription.deleted with trial data from Stripe
LOW	packages/stripe/test/subscription.test.ts	2031	// Step 3: User tries to subscribe again — should NOT get a trial
LOW	packages/stripe/src/index.ts	415	// We need to check if the Stripe customer's email matches
LOW	e2e/smoke/test/session-token-refresh.spec.ts	94	// Step 1: Initiate Google OAuth sign-in
LOW	e2e/smoke/test/session-token-refresh.spec.ts	117	// Step 2: Complete OAuth callback — this creates the session
LOW	e2e/smoke/test/session-token-refresh.spec.ts	136	// Step 3: Call getSession to populate cookie cache
LOW	e2e/smoke/test/session-token-refresh.spec.ts	148	// Step 4: Advance time past the refreshCache window
LOW	e2e/smoke/test/session-token-refresh.spec.ts	154	// Step 5: Call getSession — this should trigger refreshCache
LOW	e2e/smoke/test/session-token-refresh.spec.ts	166	// Step 6: Verify session_token cookie has extended max-age

Hallucination Indicators4 hits · 40 pts

Severity	File	Line	Snippet
CRITICAL	packages/better-auth/src/plugins/email-otp/routes.ts	1058	const email = ctx.context.session.user.email.toLowerCase();
CRITICAL	packages/better-auth/src/api/routes/update-user.ts	524	ctx.context.options.user.deleteUser.sendDeleteAccountVerification(
CRITICAL	packages/electron/test/electron.test.ts	567	const authenticateHandler = mockElectron.ipcMain.handle.mock.calls.find(
CRITICAL	packages/stripe/test/stripe-organization.test.ts	1838	mockStripeCustomerType.customers.search.mock.calls.find(

Over-Commented Block5 hits · 5 pts

Severity	File	Line	Snippet
LOW	docs/components/sidebar-content.tsx	2681	title: "AI Resources",
LOW	packages/scim/src/routes.ts	241	}
LOW	packages/oauth-provider/src/token.ts	361	});
LOW	packages/better-auth/src/plugins/oidc-provider/index.ts	861	error_description: "code verifier is missing",
LOW	.github/zizmor.yml	1	# Policy: fix shell-injection, cache, and credential-persistence findings.

Score History

Severity Breakdown

Pattern Findings