python_subprocess
System command execution (Python)
Line 1418Snippets
result = subprocess.run( result = subprocess.run(exec_call
System command execution
System command execution
Line 3743Snippets
'exec() with potential user input'),eval_call
Use of eval()
Use of eval()
Line 3745Snippets
'eval() with potential user input'),hardcoded_secret
Potentially hardcoded secret
Potentially hardcoded secret
Line 350Snippets
API_KEY = "sk-1234567890abcdef"API_KEY = "sk-1234567890abcdef"network_call
Outbound network call
Outbound network call
Line 2094Snippets
cve_data = fetch_nvd_data(cve_id) 'axios': [ 'severity': 'medium', 'desc': 'CSRF token exposure in axios', 'node-fetch': [ 'severity': 'high', 'desc': 'Information exposure in node-fetch',env_access
Environment variable access
Environment variable access
Line 354Snippets
API_KEY = os.environ.get("API_KEY") value = os.environ.get(name)API_KEY = os.environ.get("API_KEY") value = os.environ.get(name)fs_read
Filesystem read access
Filesystem read access
Line 3752Snippets
(r'readFile\s*\(\s*[^)]*(?:user|input|param|req\.|query)',Trust Score
Updated semana passada
Analisado
31 de mar. de 2026, 15:57
+ 2 previous scans
Compatível com
Skill details
Updated semana passada
Analisado 31 de mar. de 2026, 15:57
Descricao
Senior SecOps engineer skill for application security, vulnerability management, compliance verification, and secure development practices. Runs SAST/DAST scans, generates CVE remediation plans, checks dependency vulnerabilities, creates security policies, enforces secure coding patterns, and automates compliance checks against...
Scans recentes
31 de mar. de 2026, 15:57
Latest analysis
31 de mar. de 2026, 15:12
Run 2
27 de mar. de 2026, 15:47
Run 1