critical
suspicious.exposed_resource_identifier
- Location
- references/ssrf.md:171
- Finding
- Plaintext HTTP endpoint targets a CGNAT/Tailscale-range address.
llm-sast-scanner
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
Detected: suspicious.exposed_resource_identifier, suspicious.exposed_secret_literal
Findings (4)
critical
suspicious.exposed_secret_literal
- Location
- references/brute_force.md:120
- Finding
- File appears to expose a hardcoded API secret or token.
critical
suspicious.exposed_secret_literal
- Location
- references/default_credentials.md:34
- Finding
- File appears to expose a hardcoded API secret or token.
critical
suspicious.exposed_secret_literal
- Location
- references/nosql_injection.md:60
- Finding
- File appears to expose a hardcoded API secret or token.