Repos / joshwgray__Orchestral / Security

Security: Orchestral

1
Vulnerabilities
10
Credential Leaks
FAIL
Quality Gate
C
OWASP Grade
55.8h
Tech Debt (B)
Elite
DORA Rating

AI Fix Prompts

Auto-generated prompts to fix every issue — copy into Claude, GPT, or any AI coder

View AI Prompts
Repobility · severity-and-effort ranking · https://repobility.com

Quality Gate: Default Gate

Scored by Repobility's multi-pass pipeline · https://repobility.com
MetricCondition
overall_score0.0 >= 50
security_score0.0 >= 40
critical_vulnerabilities1.0 <= 0
critical_credentials8.0 <= 0
duplication_pct6.8 <= 20

DORA Metrics

All metrics by Repobility · https://repobility.com
Deploy Frequencydaily (17.0/week)
Lead Time0.0 hours
MTTR0.0 hours
Change Failure Rate0.0%
Total Commits54
Overall RatingELITE

Vulnerabilities (1)

Repobility · code-quality intelligence · https://repobility.com
SeverityIDPackageVersionSummary
criticalGHSA-3p68-rc4w-qgx5axios1.13.6Axios has a NO_PROXY Hostname Normalization Bypass Leads to SSRF

Credential Findings (10)

Findings curated by Repobility · https://repobility.com
SeverityPatternFileLine
criticalVault Tokensrc/watcher/ReviewGate.js44
criticalVault Tokensrc/models/ModelFactory.js36
criticalVault Tokensrc/providers/ProviderFactory.js26
criticalVault Tokendocs/api/models_ModelFactory.js.html83
criticalVault Tokendocs/api/providers_ProviderFactory.js.html73
criticalVault Tokensrc/cli/commands/configure.js108
critical[sast:aljefra/taint-deserialization] Insecure Deserialization of Tainted Datasrc/cli/commands/configure.js119
criticalVault Tokensrc/config/configLoader.js90
highGeneric Secretdocs/api/cli_commands_init.js.html91
highGeneric Secretdocs/api/cli_commands_init.js.html71

Export

SARIF SBOM (CycloneDX) SBOM (SPDX) Vulns CSV Generate AI Fix Prompts (5)