feat(security): code security analysis scanner module #552

Closed
opened 2026-06-06 23:20:01 +00:00 by jmiller · 1 comment
Owner

Add a code scanner module that detects SQL injection, XSS, command injection, and path traversal patterns in source code.

Add a code scanner module that detects SQL injection, XSS, command injection, and path traversal patterns in source code.
Author
Owner

Implementation complete in PR #716 → dev.

  • New services/security/code_scanner.go — 22 rules across 7 CWE categories (SQL injection, XSS, command injection, path traversal, insecure deserialization, hardcoded credentials, weak cryptography)
  • Language-filtered scanning for Go, PHP, Python, JS/TS, Java, C#, Ruby
  • Wired into orchestrator via existing CodeScanner config toggle
  • API updated: code_scanner field in GET/PATCH security config endpoint
  • Web UI toggle already existed in settings template

Pending merge to dev, then release to main.

Implementation complete in PR #716 → dev. - New `services/security/code_scanner.go` — 22 rules across 7 CWE categories (SQL injection, XSS, command injection, path traversal, insecure deserialization, hardcoded credentials, weak cryptography) - Language-filtered scanning for Go, PHP, Python, JS/TS, Java, C#, Ruby - Wired into orchestrator via existing `CodeScanner` config toggle - API updated: `code_scanner` field in GET/PATCH security config endpoint - Web UI toggle already existed in settings template Pending merge to dev, then release to main.
Sign in to join this conversation.