{"id":17685988,"url":"https://github.com/geekmasher/gh-csaudit","last_synced_at":"2026-02-09T20:01:53.341Z","repository":{"id":84947945,"uuid":"534667984","full_name":"GeekMasher/gh-csaudit","owner":"GeekMasher","description":"Code Scanning Audit Script","archived":false,"fork":false,"pushed_at":"2025-08-19T10:32:29.000Z","size":83,"stargazers_count":0,"open_issues_count":5,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-10-10T12:46:09.244Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/GeekMasher.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2022-09-09T14:05:43.000Z","updated_at":"2025-06-10T11:00:42.000Z","dependencies_parsed_at":"2024-04-09T13:52:18.621Z","dependency_job_id":"9823dead-e7e5-44aa-a321-26860d4efae7","html_url":"https://github.com/GeekMasher/gh-csaudit","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/GeekMasher/gh-csaudit","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GeekMasher%2Fgh-csaudit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GeekMasher%2Fgh-csaudit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GeekMasher%2Fgh-csaudit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GeekMasher%2Fgh-csaudit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/GeekMasher","download_url":"https://codeload.github.com/GeekMasher/gh-csaudit/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GeekMasher%2Fgh-csaudit/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29279299,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-09T19:05:41.198Z","status":"ssl_error","status_checked_at":"2026-02-09T19:05:37.449Z","response_time":56,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-10-24T10:29:38.467Z","updated_at":"2026-02-09T20:01:53.311Z","avatar_url":"https://github.com/GeekMasher.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# gh-csaudit\n\nGitHub Code Scanning Audit CLI Tool\n\n## Usage\n\n```bash\ngh extension install GeekMasher/gh-csaudit\ngh csaudit --help\n\n# Install deps\npip3 install requests tabulate\n```\n\n#### Run on a single repository\n\n```bash\ngh csaudit -r GeekMasher/Pixi\n```\n\n\u003cdetails\u003e\n\u003csummary\u003eExample Output\u003c/summary\u003e\n\u003cp\u003e \n\n\u003cpre\u003e\n\n _____  _____  ___            _ _ _\n/  __ \\/  ___|/ _ \\          | (_) |\n| /  \\/\\ `--./ /_\\ \\_   _  __| |_| |_\n| |     `--. \\  _  | | | |/ _` | | __|\n| \\__/\\/\\__/ / | | | |_| | (_| | | |_\n \\____/\\____/\\_| |_/\\__,_|\\__,_|_|\\__|   v0.1.0\n\n        Build by GitHub Field Security Specialist Team\n\n================================================================\n\nTool                       Version                                         Datetime\n-------------------------  ----------------------------------------------  --------------------\nCodeQL                     2.7.3                                           2022-01-23T06:08:36Z\ncodeql/javascript-queries  0.0.5+ddd4ccbb4b39adf3c2427088f4876432202c4eaa\n\nRule Name / ID                                     Rule Description                                                            Rule Priority\n-------------------------------------------------  --------------------------------------------------------------------------  ---------------\njs/angular/disabling-sce                           Disabling SCE                                                               warning\njs/angular/double-compilation                      Double compilation                                                          warning\njs/angular/insecure-url-whitelist                  Insecure URL whitelist                                                      warning\njs/bad-code-sanitization                           Improper code sanitization                                                  error\njs/bad-tag-filter                                  Bad HTML filtering regexp                                                   warning\njs/biased-cryptographic-random                     Creating biased random numbers from a cryptographically secure source.      warning\njs/build-artifact-leak                             Storage of sensitive information in build artifact                          error\njs/clear-text-cookie                               Clear text transmission of sensitive cookie                                 warning\njs/clear-text-logging                              Clear-text logging of sensitive information                                 error\njs/clear-text-storage-of-sensitive-data            Clear text storage of sensitive information                                 error\njs/client-exposed-cookie                           Sensitive server cookie exposed to the client                               warning\njs/client-side-unvalidated-url-redirection         Client-side URL redirect                                                    error\njs/code-injection                                  Code injection                                                              error\njs/command-line-injection                          Uncontrolled command line                                                   error\njs/cors-misconfiguration-for-credentials           CORS misconfiguration for credentials transfer                              error\njs/cross-window-information-leak                   Cross-window communication with unrestricted target origin                  error\njs/disabling-certificate-validation                Disabling certificate validation                                            error\njs/disabling-electron-websecurity                  Disabling Electron webSecurity                                              error\njs/double-escaping                                 Double escaping or unescaping                                               warning\njs/enabling-electron-insecure-content              Enabling Electron allowRunningInsecureContent                               error\njs/exposure-of-private-files                       Exposure of private files                                                   warning\njs/file-access-to-http                             File data in outbound network request                                       warning\njs/hardcoded-credentials                           Hard-coded credentials                                                      warning\njs/hardcoded-data-interpreted-as-code              Hard-coded data interpreted as code                                         error\njs/host-header-forgery-in-email-generation         Host header poisoning in email generation                                   error\njs/html-constructed-from-input                     Unsafe HTML constructed from library input                                  error\njs/http-to-file-access                             Network data written to file                                                warning\njs/identity-replacement                            Replacement of a substring with itself                                      warning\njs/incomplete-hostname-regexp                      Incomplete regular expression for hostnames                                 warning\njs/incomplete-html-attribute-sanitization          Incomplete HTML attribute sanitization                                      warning\njs/incomplete-multi-character-sanitization         Incomplete multi-character sanitization                                     warning\njs/incomplete-sanitization                         Incomplete string escaping or encoding                                      warning\njs/incomplete-url-scheme-check                     Incomplete URL scheme check                                                 warning\njs/incomplete-url-substring-sanitization           Incomplete URL substring sanitization                                       warning\njs/incorrect-suffix-check                          Incorrect suffix check                                                      error\njs/indirect-command-line-injection                 Indirect uncontrolled command line                                          warning\njs/insecure-download                               Download of sensitive file through insecure connection                      error\njs/insecure-randomness                             Insecure randomness                                                         warning\njs/insufficient-key-size                           Use of a weak cryptographic key                                             warning\njs/insufficient-password-hash                      Use of password hash with insufficient computational effort                 warning\njs/log-injection                                   Log injection                                                               error\njs/loop-bound-injection                            Loop bound injection                                                        warning\njs/missing-rate-limiting                           Missing rate limiting                                                       error\njs/missing-token-validation                        Missing CSRF middleware                                                     error\njs/password-in-configuration-file                  Password in configuration file                                              warning\njs/path-injection                                  Uncontrolled data used in path expression                                   error\njs/polynomial-redos                                Polynomial regular expression used on uncontrolled data                     warning\njs/prototype-polluting-assignment                  Prototype-polluting assignment                                              warning\njs/prototype-pollution                             Prototype-polluting merge call                                              error\njs/prototype-pollution-utility                     Prototype-polluting function                                                warning\njs/redos                                           Inefficient regular expression                                              error\njs/reflected-xss                                   Reflected cross-site scripting                                              error\njs/regex-injection                                 Regular expression injection                                                error\njs/regex/missing-regexp-anchor                     Missing regular expression anchor                                           warning\njs/remote-property-injection                       Remote property injection                                                   warning\njs/request-forgery                                 Uncontrolled data used in network request                                   error\njs/resource-exhaustion-from-deep-object-traversal  Resources exhaustion from deep object traversal                             warning\njs/sensitive-get-query                             Sensitive data read from GET request                                        warning\njs/server-crash                                    Server crash                                                                warning\njs/server-side-unvalidated-url-redirection         Server-side URL redirect                                                    warning\njs/session-fixation                                Failure to abandon session                                                  warning\njs/shell-command-constructed-from-input            Unsafe shell command constructed from library input                         error\njs/shell-command-injection-from-environment        Shell command built from environment values                                 warning\njs/sql-injection                                   Database query built from user-controlled sources                           error\njs/stack-trace-exposure                            Information exposure through a stack trace                                  warning\njs/stored-xss                                      Stored cross-site scripting                                                 error\njs/summary/lines-of-code                           Total lines of JavaScript and TypeScript code in the database               warning\njs/summary/lines-of-user-code                      Total lines of user written JavaScript and TypeScript code in the database  warning\njs/tainted-format-string                           Use of externally-controlled format string                                  warning\njs/template-object-injection                       Template Object Injection                                                   error\njs/type-confusion-through-parameter-tampering      Type confusion through parameter tampering                                  error\njs/unnecessary-use-of-cat                          Unnecessary use of `cat` process                                            error\njs/unsafe-deserialization                          Deserialization of user-controlled data                                     warning\njs/unsafe-dynamic-method-access                    Unsafe dynamic method access                                                error\njs/unsafe-external-link                            Potentially unsafe external link                                            warning\njs/unsafe-html-expansion                           Unsafe expansion of self-closing HTML tag                                   warning\njs/unsafe-jquery-plugin                            Unsafe jQuery plugin                                                        warning\njs/unvalidated-dynamic-method-call                 Unvalidated dynamic method call                                             warning\njs/useless-regexp-character-escape                 Useless regular-expression character escape                                 error\njs/user-controlled-bypass                          User-controlled bypass of security check                                    error\njs/weak-cryptographic-algorithm                    Use of a broken or weak cryptographic algorithm                             warning\njs/xml-bomb                                        XML internal entity expansion                                               warning\njs/xpath-injection                                 XPath injection                                                             error\njs/xss                                             Client-side cross-site scripting                                            error\njs/xss-through-dom                                 DOM text reinterpreted as HTML                                              warning\njs/xss-through-exception                           Exception text reinterpreted as HTML                                        warning\njs/xxe                                             XML external entity expansion                                               error\njs/zipslip                                         Arbitrary file write during zip extraction (\"Zip Slip\")                     error\n\n================================================================\n\nCompleted\n\u003c/pre\u003e\n\n\u003c/p\u003e\n\u003c/details\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgeekmasher%2Fgh-csaudit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fgeekmasher%2Fgh-csaudit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgeekmasher%2Fgh-csaudit/lists"}