Home / path-traversal: src/devos/scanner.py:107
← Prev Next →

path-traversal: src/devos/scanner.py:107

scanned low scan sweep 2026-04-01 16:52

Next step: Evaluate this item to determine if it's worth fixing.

Location

src/devos/scanner.py:107 python
Pattern: Path join may allow traversal if input is user-controlled

Code Context

102 try:
103 for root, dirs, files in os.walk(project.path):
104 dirs[:] = [d for d in dirs if d not in SKIP_DIRS and not d.endswith(".egg-info")]
105
106 for fname in files:
107filepath = os.path.join(root, fname)
108 relpath = os.path.relpath(filepath, project.path)
109
110 if _should_skip(relpath):
111 continue
112

Evaluation

Click "Evaluate with Claude Code" to have an agent analyze this item.

Actions

Evaluate first to enable approval, or reject directly.

Reject Item