| File | src/supervisor/evaluator.py |
| Line | 20 |
| Language | python |
| Pattern | compile() may execute dynamic code |
medium code-injection
Finding 332b7f7ebdd4 | Stage: scanned | Project: supervisor | Created: 2026-03-31 17:21 | Updated: 2026-03-31 17:21
15
16# ── Pattern tiers ───────────────────────────────────────────────
17
18# Critical: something is actively broken or dangerous
19_CRITICAL_PATTERNS = [
20re.compile(r"\b(critical|failure|down|outage|data.?loss|breach|compromised|emergency)\b", re.I),
21 re.compile(r"\b(not running|service.+failed|connection refused|permission denied)\b", re.I),
22 re.compile(r"\b(disk|storage).{0,30}(100|9[5-9])%", re.I),
23 re.compile(r"\bstatus:\s*\*?\*?critical\*?\*?", re.I),
24 re.compile(r"\b(cannot|unable to|failed to)\s+(connect|start|reach|resolve)\b", re.I),
25 re.compile(r"\b(OOM|out of memory|killed by signal|segfault|core dump)\b", re.I),
Evaluation
Not yet evaluated. Generate an eval prompt to assess this finding with an LLM.
Implementation Prompt
Approve this finding first to generate an implementation prompt.