diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-131145.json b/shared-context/findings/hyperpolymath-hypatia/20260613-131145.json new file mode 100644 index 00000000..56f87d2c --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-131145.json @@ -0,0 +1,442 @@ +{ + "findings": [ + { + "reason": "Issue in governance.yml", + "type": "missing_timeout_minutes", + "file": "governance.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in hypatia-scan.yml", + "type": "missing_timeout_minutes", + "file": "hypatia-scan.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in mirror.yml", + "type": "missing_timeout_minutes", + "file": "mirror.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in scorecard.yml", + "type": "missing_timeout_minutes", + "file": "scorecard.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in secret-scanner.yml", + "type": "missing_timeout_minutes", + "file": "secret-scanner.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "secret-scanner.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "scorecard.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "mirror.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "hypatia-scan.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "governance.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "26 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "682c70090fefaed9cc79b5504257abe996b10b8d", + "submitted_at": "2026-06-13T13:11:46Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-131348.json b/shared-context/findings/hyperpolymath-hypatia/20260613-131348.json new file mode 100644 index 00000000..a1b9642e --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-131348.json @@ -0,0 +1,442 @@ +{ + "findings": [ + { + "reason": "Issue in governance.yml", + "type": "missing_timeout_minutes", + "file": "governance.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in hypatia-scan.yml", + "type": "missing_timeout_minutes", + "file": "hypatia-scan.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in mirror.yml", + "type": "missing_timeout_minutes", + "file": "mirror.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in scorecard.yml", + "type": "missing_timeout_minutes", + "file": "scorecard.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in secret-scanner.yml", + "type": "missing_timeout_minutes", + "file": "secret-scanner.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "secret-scanner.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "scorecard.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "mirror.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "hypatia-scan.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "governance.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "26 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "72946dc3d8259257874973f2714ce4e2057f273c", + "submitted_at": "2026-06-13T13:13:50Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-140516.json b/shared-context/findings/hyperpolymath-hypatia/20260613-140516.json new file mode 100644 index 00000000..3520a467 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-140516.json @@ -0,0 +1,442 @@ +{ + "findings": [ + { + "reason": "Issue in governance.yml", + "type": "missing_timeout_minutes", + "file": "governance.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in hypatia-scan.yml", + "type": "missing_timeout_minutes", + "file": "hypatia-scan.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in mirror.yml", + "type": "missing_timeout_minutes", + "file": "mirror.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in scorecard.yml", + "type": "missing_timeout_minutes", + "file": "scorecard.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in secret-scanner.yml", + "type": "missing_timeout_minutes", + "file": "secret-scanner.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "secret-scanner.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "scorecard.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "mirror.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "hypatia-scan.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "governance.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "26 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "dac40d146856cb4a91e77ca789b081bcabdb6a56", + "submitted_at": "2026-06-13T14:05:17Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-140934.json b/shared-context/findings/hyperpolymath-hypatia/20260613-140934.json new file mode 100644 index 00000000..0094feb1 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-140934.json @@ -0,0 +1,442 @@ +{ + "findings": [ + { + "reason": "Issue in governance.yml", + "type": "missing_timeout_minutes", + "file": "governance.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in hypatia-scan.yml", + "type": "missing_timeout_minutes", + "file": "hypatia-scan.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in mirror.yml", + "type": "missing_timeout_minutes", + "file": "mirror.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in scorecard.yml", + "type": "missing_timeout_minutes", + "file": "scorecard.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in secret-scanner.yml", + "type": "missing_timeout_minutes", + "file": "secret-scanner.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "secret-scanner.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "scorecard.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "mirror.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "hypatia-scan.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "governance.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "26 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "2f458f3b9ebd0b5c9ff3351ee83ba201895ef594", + "submitted_at": "2026-06-13T14:09:36Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-141640.json b/shared-context/findings/hyperpolymath-hypatia/20260613-141640.json new file mode 100644 index 00000000..23567912 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-141640.json @@ -0,0 +1,442 @@ +{ + "findings": [ + { + "reason": "Issue in governance.yml", + "type": "missing_timeout_minutes", + "file": "governance.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in hypatia-scan.yml", + "type": "missing_timeout_minutes", + "file": "hypatia-scan.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in mirror.yml", + "type": "missing_timeout_minutes", + "file": "mirror.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in scorecard.yml", + "type": "missing_timeout_minutes", + "file": "scorecard.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in secret-scanner.yml", + "type": "missing_timeout_minutes", + "file": "secret-scanner.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 6 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "secret-scanner.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "scorecard.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "mirror.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "hypatia-scan.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "governance.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "26 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "9b170f39905beb644fcd315435d4aa27f33cba77", + "submitted_at": "2026-06-13T14:16:41Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-142611.json b/shared-context/findings/hyperpolymath-hypatia/20260613-142611.json new file mode 100644 index 00000000..76fa1ea1 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-142611.json @@ -0,0 +1,402 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 4 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "secret-scanner.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "scorecard.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "mirror.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "hypatia-scan.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 13 day(s) old", + "type": "CSA001", + "file": "governance.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "26 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "f53f5efe44d3f8d8fa404be8725297222100c3dd", + "submitted_at": "2026-06-13T14:26:14Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-142626.json b/shared-context/findings/hyperpolymath-hypatia/20260613-142626.json new file mode 100644 index 00000000..da066ca7 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-142626.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "ec552be432a8db33ec349d590177e3b2ec9bd0d1", + "submitted_at": "2026-06-13T14:26:28Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-143144.json b/shared-context/findings/hyperpolymath-hypatia/20260613-143144.json new file mode 100644 index 00000000..485a9ea2 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-143144.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "d7b1ca7218a80d303f9f5e52202505a82c886cea", + "submitted_at": "2026-06-13T14:31:45Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-144459.json b/shared-context/findings/hyperpolymath-hypatia/20260613-144459.json new file mode 100644 index 00000000..00b42af6 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-144459.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "2aea4d44ceb75ede3a71d1e4c982c7762b585498", + "submitted_at": "2026-06-13T14:45:01Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-144655.json b/shared-context/findings/hyperpolymath-hypatia/20260613-144655.json new file mode 100644 index 00000000..5d5cf537 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-144655.json @@ -0,0 +1,388 @@ +{ + "findings": [ + { + "reason": "Action actions/add-to-project@v1.0.2 needs attention", + "type": "unpinned_action", + "file": "add-to-roadmap.yml", + "action": "pin_sha", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "1 workflow(s) with tag-pinned (not SHA-pinned) actions in hypatia", + "type": "DependencyPinning", + "file": "/home/runner/work/hypatia/hypatia", + "action": "auto_fix", + "rule_module": "scorecard", + "severity": "medium", + "remediation": "Pin GitHub Actions and Docker base images by SHA hash.", + "scorecard_check": "Pinned-Dependencies" + }, + { + "reason": "Repository has 6 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "b9d8a97428698bd8877d116ae2c20eb438453046", + "submitted_at": "2026-06-13T14:46:56Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-145200.json b/shared-context/findings/hyperpolymath-hypatia/20260613-145200.json new file mode 100644 index 00000000..63307974 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-145200.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 6 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "7cf804b81d9a479d73e19f25ce9d633ec7f680bc", + "submitted_at": "2026-06-13T14:52:02Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-145336.json b/shared-context/findings/hyperpolymath-hypatia/20260613-145336.json new file mode 100644 index 00000000..9258b70f --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-145336.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 4 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "c0dc00581791fa82dea87a6bff475cde7e3e8a78", + "submitted_at": "2026-06-13T14:53:37Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-145406.json b/shared-context/findings/hyperpolymath-hypatia/20260613-145406.json new file mode 100644 index 00000000..3034bdde --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-145406.json @@ -0,0 +1,388 @@ +{ + "findings": [ + { + "reason": "Action actions/add-to-project@v1.0.2 needs attention", + "type": "unpinned_action", + "file": "add-to-roadmap.yml", + "action": "pin_sha", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "1 workflow(s) with tag-pinned (not SHA-pinned) actions in hypatia", + "type": "DependencyPinning", + "file": "/home/runner/work/hypatia/hypatia", + "action": "auto_fix", + "rule_module": "scorecard", + "severity": "medium", + "remediation": "Pin GitHub Actions and Docker base images by SHA hash.", + "scorecard_check": "Pinned-Dependencies" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "ed5267fca6e089dab9973eba2095042d74cf8014", + "submitted_at": "2026-06-13T14:54:07Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-150502.json b/shared-context/findings/hyperpolymath-hypatia/20260613-150502.json new file mode 100644 index 00000000..5f0a852d --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-150502.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 6 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "0988aa4507f02205e27918225bd76e76c6c8d938", + "submitted_at": "2026-06-13T15:05:03Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-151807.json b/shared-context/findings/hyperpolymath-hypatia/20260613-151807.json new file mode 100644 index 00000000..09aaf09e --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-151807.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 6 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "78479983c8842208d88f6df456891c75d4265ff5", + "submitted_at": "2026-06-13T15:18:08Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-153313.json b/shared-context/findings/hyperpolymath-hypatia/20260613-153313.json new file mode 100644 index 00000000..87a76a6c --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-153313.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 6 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "213d4c14767f13a74ca09e853d8ae0d8e8ca432e", + "submitted_at": "2026-06-13T15:33:15Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-153827.json b/shared-context/findings/hyperpolymath-hypatia/20260613-153827.json new file mode 100644 index 00000000..18933d4b --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-153827.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 4 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "759a789661e872cf0fe1e70fcf585f700f225dd7", + "submitted_at": "2026-06-13T15:38:28Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-162640.json b/shared-context/findings/hyperpolymath-hypatia/20260613-162640.json new file mode 100644 index 00000000..9e815fc1 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-162640.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 6 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "de87243a661aa32af6874c9f78e1984567c9b7ce", + "submitted_at": "2026-06-13T16:26:42Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-162745.json b/shared-context/findings/hyperpolymath-hypatia/20260613-162745.json new file mode 100644 index 00000000..0280e066 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-162745.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 4 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "79e356dda25a65007ab0255bd187c4fa5af5f940", + "submitted_at": "2026-06-13T16:27:47Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-163722.json b/shared-context/findings/hyperpolymath-hypatia/20260613-163722.json new file mode 100644 index 00000000..aeca5f2e --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-163722.json @@ -0,0 +1,388 @@ +{ + "findings": [ + { + "reason": "Action actions/add-to-project@v1.0.2 needs attention", + "type": "unpinned_action", + "file": "add-to-roadmap.yml", + "action": "pin_sha", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "1 workflow(s) with tag-pinned (not SHA-pinned) actions in hypatia", + "type": "DependencyPinning", + "file": "/home/runner/work/hypatia/hypatia", + "action": "auto_fix", + "rule_module": "scorecard", + "severity": "medium", + "remediation": "Pin GitHub Actions and Docker base images by SHA hash.", + "scorecard_check": "Pinned-Dependencies" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "4eb47b78ccf358da10679c52e4362ba62b18c0da", + "submitted_at": "2026-06-13T16:37:23Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-164229.json b/shared-context/findings/hyperpolymath-hypatia/20260613-164229.json new file mode 100644 index 00000000..fc2b3106 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-164229.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 6 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "c557cb7dd1aa76bb9fd750496a941833f81c143e", + "submitted_at": "2026-06-13T16:42:30Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-170352.json b/shared-context/findings/hyperpolymath-hypatia/20260613-170352.json new file mode 100644 index 00000000..81b00594 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-170352.json @@ -0,0 +1,388 @@ +{ + "findings": [ + { + "reason": "Action actions/add-to-project@v1.0.2 needs attention", + "type": "unpinned_action", + "file": "add-to-roadmap.yml", + "action": "pin_sha", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "1 workflow(s) with tag-pinned (not SHA-pinned) actions in hypatia", + "type": "DependencyPinning", + "file": "/home/runner/work/hypatia/hypatia", + "action": "auto_fix", + "rule_module": "scorecard", + "severity": "medium", + "remediation": "Pin GitHub Actions and Docker base images by SHA hash.", + "scorecard_check": "Pinned-Dependencies" + }, + { + "reason": "Repository has 6 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "c768fcafda85f556a3b33ab753e95f00eb84cc85", + "submitted_at": "2026-06-13T17:03:53Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-170402.json b/shared-context/findings/hyperpolymath-hypatia/20260613-170402.json new file mode 100644 index 00000000..f505f911 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-170402.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 6 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "76241bd3c775bcd40b0117946cd99af63576d885", + "submitted_at": "2026-06-13T17:04:04Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-170643.json b/shared-context/findings/hyperpolymath-hypatia/20260613-170643.json new file mode 100644 index 00000000..5c63738b --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-170643.json @@ -0,0 +1,388 @@ +{ + "findings": [ + { + "reason": "Action actions/add-to-project@v1.0.2 needs attention", + "type": "unpinned_action", + "file": "add-to-roadmap.yml", + "action": "pin_sha", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in codeql.yml", + "type": "codeql_missing_actions_language", + "file": "codeql.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "1 workflow(s) with tag-pinned (not SHA-pinned) actions in hypatia", + "type": "DependencyPinning", + "file": "/home/runner/work/hypatia/hypatia", + "action": "auto_fix", + "rule_module": "scorecard", + "severity": "medium", + "remediation": "Pin GitHub Actions and Docker base images by SHA hash.", + "scorecard_check": "Pinned-Dependencies" + }, + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "5168aac6cdfef42058ad56b5844222e0e85cc05a", + "submitted_at": "2026-06-13T17:06:44Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-174458.json b/shared-context/findings/hyperpolymath-hypatia/20260613-174458.json new file mode 100644 index 00000000..71c9ac66 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-174458.json @@ -0,0 +1,396 @@ +{ + "findings": [ + { + "reason": "Action actions/add-to-project@v1.0.2 needs attention", + "type": "unpinned_action", + "file": "add-to-roadmap.yml", + "action": "pin_sha", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "1 workflow(s) with tag-pinned (not SHA-pinned) actions in hypatia", + "type": "DependencyPinning", + "file": "/home/runner/work/hypatia/hypatia", + "action": "auto_fix", + "rule_module": "scorecard", + "severity": "medium", + "remediation": "Pin GitHub Actions and Docker base images by SHA hash.", + "scorecard_check": "Pinned-Dependencies" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/unpinned_action -- Hypatia workflow_audit: unpinned_action -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "23 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "bd9cc6bb86018c6c8586e7244fa1649e0835cc8e", + "submitted_at": "2026-06-13T17:45:00Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-174728.json b/shared-context/findings/hyperpolymath-hypatia/20260613-174728.json new file mode 100644 index 00000000..265e7d87 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-174728.json @@ -0,0 +1,396 @@ +{ + "findings": [ + { + "reason": "Action actions/add-to-project@v1.0.2 needs attention", + "type": "unpinned_action", + "file": "add-to-roadmap.yml", + "action": "pin_sha", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "1 workflow(s) with tag-pinned (not SHA-pinned) actions in hypatia", + "type": "DependencyPinning", + "file": "/home/runner/work/hypatia/hypatia", + "action": "auto_fix", + "rule_module": "scorecard", + "severity": "medium", + "remediation": "Pin GitHub Actions and Docker base images by SHA hash.", + "scorecard_check": "Pinned-Dependencies" + }, + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/unpinned_action -- Hypatia workflow_audit: unpinned_action -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/codeql_missing_actions_language -- Hypatia workflow_audit: codeql_missing_actions_language -- 13 day(s) old", + "type": "CSA001", + "file": "codeql.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "23 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "fe88a689258cbbcb18597277c09fd68d703a48ee", + "submitted_at": "2026-06-13T17:47:29Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-180029.json b/shared-context/findings/hyperpolymath-hypatia/20260613-180029.json new file mode 100644 index 00000000..3cff71b7 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-180029.json @@ -0,0 +1,370 @@ +{ + "findings": [ + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/unpinned_action -- Hypatia workflow_audit: unpinned_action -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "22 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "e47f8ae51fe4081e444d3b31519a8a2603d8b8e1", + "submitted_at": "2026-06-13T18:00:30Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-190017.json b/shared-context/findings/hyperpolymath-hypatia/20260613-190017.json new file mode 100644 index 00000000..0a741ad4 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-190017.json @@ -0,0 +1,370 @@ +{ + "findings": [ + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/unpinned_action -- Hypatia workflow_audit: unpinned_action -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "22 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "d042f7eedf35cc410beb139e45e7be212881fd54", + "submitted_at": "2026-06-13T19:00:19Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-191128.json b/shared-context/findings/hyperpolymath-hypatia/20260613-191128.json new file mode 100644 index 00000000..c521bf83 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-191128.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "8cbd0810d258b23f7d0faaaab97cbf8669e76cbc", + "submitted_at": "2026-06-13T19:11:29Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-191406.json b/shared-context/findings/hyperpolymath-hypatia/20260613-191406.json new file mode 100644 index 00000000..cc99f87c --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-191406.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 10 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "d985e57d276e33d10e2f65c86f0e50c19c0ff60d", + "submitted_at": "2026-06-13T19:14:07Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-200448.json b/shared-context/findings/hyperpolymath-hypatia/20260613-200448.json new file mode 100644 index 00000000..a97e0fc7 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-200448.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "141a2a376b9f89d7564b963791fb608c1c4bce2f", + "submitted_at": "2026-06-13T20:04:49Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-202903.json b/shared-context/findings/hyperpolymath-hypatia/20260613-202903.json new file mode 100644 index 00000000..86a75283 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-202903.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "877a5301287b43221dba6c2ac72ff56bb07db069", + "submitted_at": "2026-06-13T20:29:05Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-203040.json b/shared-context/findings/hyperpolymath-hypatia/20260613-203040.json new file mode 100644 index 00000000..76d6ba49 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-203040.json @@ -0,0 +1,362 @@ +{ + "findings": [ + { + "reason": "Issue in add-to-roadmap.yml", + "type": "missing_timeout_minutes", + "file": "add-to-roadmap.yml", + "action": "flag", + "rule_module": "workflow_audit", + "severity": "medium" + }, + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "4f98373186afd7249dbd7ded457edbb80959b8f9", + "submitted_at": "2026-06-13T20:30:42Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-234652.json b/shared-context/findings/hyperpolymath-hypatia/20260613-234652.json new file mode 100644 index 00000000..583d9126 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-234652.json @@ -0,0 +1,354 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "e739f58a45e03776a56a21dbab9e9b61892fafb1", + "submitted_at": "2026-06-13T23:46:53Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260613-235026.json b/shared-context/findings/hyperpolymath-hypatia/20260613-235026.json new file mode 100644 index 00000000..c1b876d1 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260613-235026.json @@ -0,0 +1,354 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/workflow_audit/missing_timeout_minutes -- Hypatia workflow_audit: missing_timeout_minutes -- 0 day(s) old", + "type": "CSA001", + "file": "add-to-roadmap.yml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "21 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "0a1bb3475415fb5f39944326b4830ff99d10e195", + "submitted_at": "2026-06-13T23:50:28Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-024840.json b/shared-context/findings/hyperpolymath-hypatia/20260614-024840.json new file mode 100644 index 00000000..5e34cd36 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-024840.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "9d3a8a4d84ee2cea6f9d8fb113e86f8ded666244", + "submitted_at": "2026-06-14T02:48:41Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-024948.json b/shared-context/findings/hyperpolymath-hypatia/20260614-024948.json new file mode 100644 index 00000000..8c950876 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-024948.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "a22daea46b038353458585b6e2c0d627ddfeee2a", + "submitted_at": "2026-06-14T02:49:49Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-031526.json b/shared-context/findings/hyperpolymath-hypatia/20260614-031526.json new file mode 100644 index 00000000..a33e282e --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-031526.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "2c7a0601f89a8106acd2e91b828e86f833f25a64", + "submitted_at": "2026-06-14T03:15:28Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-032057.json b/shared-context/findings/hyperpolymath-hypatia/20260614-032057.json new file mode 100644 index 00000000..4fd72484 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-032057.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "ab27fadd926fafae8022308a5e5f619ad68f27ed", + "submitted_at": "2026-06-14T03:20:59Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-032558.json b/shared-context/findings/hyperpolymath-hypatia/20260614-032558.json new file mode 100644 index 00000000..1f4cee95 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-032558.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "6fa58df54223ee32f49c8667815c77d8975be808", + "submitted_at": "2026-06-14T03:26:00Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-035132.json b/shared-context/findings/hyperpolymath-hypatia/20260614-035132.json new file mode 100644 index 00000000..278cabf7 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-035132.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "2b3c98e62ea02c0aee5f79eb5ba7bcb9173fc307", + "submitted_at": "2026-06-14T03:51:34Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-040002.json b/shared-context/findings/hyperpolymath-hypatia/20260614-040002.json new file mode 100644 index 00000000..d606c3d2 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-040002.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "8d8ba6dc8c7bf7344413aa0a2911f9412b8537e8", + "submitted_at": "2026-06-14T04:00:03Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-040320.json b/shared-context/findings/hyperpolymath-hypatia/20260614-040320.json new file mode 100644 index 00000000..1790c2ce --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-040320.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "d2595d40d8ac878736f34f6b81f29f990bd6fa44", + "submitted_at": "2026-06-14T04:03:21Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-041407.json b/shared-context/findings/hyperpolymath-hypatia/20260614-041407.json new file mode 100644 index 00000000..272e44c1 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-041407.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "491e27b5ada3b9fa8756578b17c76e76b5418751", + "submitted_at": "2026-06-14T04:14:08Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-041649.json b/shared-context/findings/hyperpolymath-hypatia/20260614-041649.json new file mode 100644 index 00000000..9e8d891a --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-041649.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "9c36bc2cbf048b1b41d5a863ff044e26f1fecd5f", + "submitted_at": "2026-06-14T04:16:50Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-042702.json b/shared-context/findings/hyperpolymath-hypatia/20260614-042702.json new file mode 100644 index 00000000..0f77824c --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-042702.json @@ -0,0 +1,354 @@ +{ + "findings": [ + { + "reason": "String.to_existing_atom with user input exhausts atom table -- use to_existing_atom (1 occurrences, CWE-400)", + "type": "elixir_atom_from_user", + "file": "/home/runner/work/hypatia/hypatia/lib/merge_orchestration/sensor.ex", + "action": "flag", + "rule_module": "code_safety", + "severity": "high" + }, + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "b661a5f17c3e18cda1d95c9b2ea886427c4ae6ac", + "submitted_at": "2026-06-14T04:27:03Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-043009.json b/shared-context/findings/hyperpolymath-hypatia/20260614-043009.json new file mode 100644 index 00000000..65036bc9 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-043009.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "eeb945b499c33c1294b147f9c291d7eeb59e2c1b", + "submitted_at": "2026-06-14T04:30:10Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-043115.json b/shared-context/findings/hyperpolymath-hypatia/20260614-043115.json new file mode 100644 index 00000000..cafb3393 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-043115.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "b98acbfbd020d7aa870d5ed078bfdf56c27aeb1c", + "submitted_at": "2026-06-14T04:31:17Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-044209.json b/shared-context/findings/hyperpolymath-hypatia/20260614-044209.json new file mode 100644 index 00000000..7858e3ba --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-044209.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "b98acbfbd020d7aa870d5ed078bfdf56c27aeb1c", + "submitted_at": "2026-06-14T04:42:10Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-102615.json b/shared-context/findings/hyperpolymath-hypatia/20260614-102615.json new file mode 100644 index 00000000..45fd379c --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-102615.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "f34f255992939e4c6768001d2d08f2c5f7705047", + "submitted_at": "2026-06-14T10:26:16Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-105330.json b/shared-context/findings/hyperpolymath-hypatia/20260614-105330.json new file mode 100644 index 00000000..212a630c --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-105330.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "37c241de42096d8ac490b2ea9e9cd8a9a87219a7", + "submitted_at": "2026-06-14T10:53:32Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-123724.json b/shared-context/findings/hyperpolymath-hypatia/20260614-123724.json new file mode 100644 index 00000000..48d45ec9 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-123724.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "3cb0494c6ea5bf35cbcd05e56f275271b6ba98d9", + "submitted_at": "2026-06-14T12:37:25Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-123835.json b/shared-context/findings/hyperpolymath-hypatia/20260614-123835.json new file mode 100644 index 00000000..02815906 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-123835.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "32da8f2f52dd9dfe94370a7a2d674b8bf98abfca", + "submitted_at": "2026-06-14T12:38:37Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-124721.json b/shared-context/findings/hyperpolymath-hypatia/20260614-124721.json new file mode 100644 index 00000000..4a578dd5 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-124721.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "bacb4750586ff299ac48407bae0497f633ab1cbb", + "submitted_at": "2026-06-14T12:47:22Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-124752.json b/shared-context/findings/hyperpolymath-hypatia/20260614-124752.json new file mode 100644 index 00000000..a894aca0 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-124752.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "61fa135522188053e6048acd9d1fc00651714e6c", + "submitted_at": "2026-06-14T12:47:53Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-130203.json b/shared-context/findings/hyperpolymath-hypatia/20260614-130203.json new file mode 100644 index 00000000..95bf5c5a --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-130203.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "37c6a8574070fdf2b2dc47f7cedd8582264e26a4", + "submitted_at": "2026-06-14T13:02:04Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-140808.json b/shared-context/findings/hyperpolymath-hypatia/20260614-140808.json new file mode 100644 index 00000000..7468f3c6 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-140808.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "39167dc4f276603d5861ec32fcfdaad51008ca74", + "submitted_at": "2026-06-14T14:08:10Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-142202.json b/shared-context/findings/hyperpolymath-hypatia/20260614-142202.json new file mode 100644 index 00000000..81d15580 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-142202.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "75fa5c9db6050c44137e1969f9090c4c65009484", + "submitted_at": "2026-06-14T14:22:03Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-143220.json b/shared-context/findings/hyperpolymath-hypatia/20260614-143220.json new file mode 100644 index 00000000..fe100c8e --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-143220.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "d7b24b39a7fd4901ef8b0e5728d9f31f4b1c6f81", + "submitted_at": "2026-06-14T14:32:22Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-143859.json b/shared-context/findings/hyperpolymath-hypatia/20260614-143859.json new file mode 100644 index 00000000..459a3fcf --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-143859.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "f9b95c1a554b01b433eeb53d10c4d0891ded8328", + "submitted_at": "2026-06-14T14:39:00Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-144015.json b/shared-context/findings/hyperpolymath-hypatia/20260614-144015.json new file mode 100644 index 00000000..6f54d1df --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-144015.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "e05a43d799457ba766fe114589a0a004ac28c6da", + "submitted_at": "2026-06-14T14:40:16Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-144918.json b/shared-context/findings/hyperpolymath-hypatia/20260614-144918.json new file mode 100644 index 00000000..afaac592 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-144918.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "98d65decb49325f8c9309ded6582164fac479615", + "submitted_at": "2026-06-14T14:49:20Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-145037.json b/shared-context/findings/hyperpolymath-hypatia/20260614-145037.json new file mode 100644 index 00000000..480e2976 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-145037.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "c1708656f91b504e19fac0953d84034743e47c53", + "submitted_at": "2026-06-14T14:50:39Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-153922.json b/shared-context/findings/hyperpolymath-hypatia/20260614-153922.json new file mode 100644 index 00000000..6ca9a535 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-153922.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "adcc6bf62149d4ad769c92a4b7d349da2a77a3b4", + "submitted_at": "2026-06-14T15:39:24Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-154304.json b/shared-context/findings/hyperpolymath-hypatia/20260614-154304.json new file mode 100644 index 00000000..d8aba9f6 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-154304.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 4 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "9f4d07daced005bd9fd891c31f17358003ff5452", + "submitted_at": "2026-06-14T15:43:05Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-163433.json b/shared-context/findings/hyperpolymath-hypatia/20260614-163433.json new file mode 100644 index 00000000..a4c322ff --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-163433.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 4 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "0fe6cb3fd27ec4ff82888526dd0051f62de9db18", + "submitted_at": "2026-06-14T16:34:34Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260614-163447.json b/shared-context/findings/hyperpolymath-hypatia/20260614-163447.json new file mode 100644 index 00000000..2931c4c5 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260614-163447.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 11 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "8a368d637342526bed01f38bbf51604915a0b82b", + "submitted_at": "2026-06-14T16:34:49Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260615-233759.json b/shared-context/findings/hyperpolymath-hypatia/20260615-233759.json new file mode 100644 index 00000000..fa4a091c --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260615-233759.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 4 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "1fb2e9cd6409b3b909fe86ea2f1c19227b8d54e7", + "submitted_at": "2026-06-15T23:38:01Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260615-233818.json b/shared-context/findings/hyperpolymath-hypatia/20260615-233818.json new file mode 100644 index 00000000..ee111dd2 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260615-233818.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "7a712581acd3b4648493358f57ca3e34bac55b50", + "submitted_at": "2026-06-15T23:38:19Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260616-171412.json b/shared-context/findings/hyperpolymath-hypatia/20260616-171412.json new file mode 100644 index 00000000..9a8953a0 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260616-171412.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "d9124f71b2e272cfc9168ef43bf4383e788ef7ea", + "submitted_at": "2026-06-16T17:14:14Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260616-172157.json b/shared-context/findings/hyperpolymath-hypatia/20260616-172157.json new file mode 100644 index 00000000..79771b86 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260616-172157.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 13 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "5a15dde05e2300212bc25f99a79478ce8cbe9323", + "submitted_at": "2026-06-16T17:21:59Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260617-024321.json b/shared-context/findings/hyperpolymath-hypatia/20260617-024321.json new file mode 100644 index 00000000..7c4dfe26 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260617-024321.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 14 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "c8a13753a458ef5ad4ead78b93c28bf04cdb9b3c", + "submitted_at": "2026-06-17T02:43:22Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260617-205446.json b/shared-context/findings/hyperpolymath-hypatia/20260617-205446.json new file mode 100644 index 00000000..a5785052 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260617-205446.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "3a28a203268db2dd8a1cf96e081b9065cf513b7d", + "submitted_at": "2026-06-17T20:54:48Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260617-211159.json b/shared-context/findings/hyperpolymath-hypatia/20260617-211159.json new file mode 100644 index 00000000..0c67194f --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260617-211159.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "a3aa2bbcf179dbcf37df460d59bbee1981622683", + "submitted_at": "2026-06-17T21:12:01Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260617-211254.json b/shared-context/findings/hyperpolymath-hypatia/20260617-211254.json new file mode 100644 index 00000000..1b169b11 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260617-211254.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 4 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "03f089092e13c755326d6a9dcc592534561a34bf", + "submitted_at": "2026-06-17T21:12:55Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260617-211326.json b/shared-context/findings/hyperpolymath-hypatia/20260617-211326.json new file mode 100644 index 00000000..d07ca4a2 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260617-211326.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "a4fc639c4476ec449d968ec442521c86fcfd279d", + "submitted_at": "2026-06-17T21:13:27Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260617-214218.json b/shared-context/findings/hyperpolymath-hypatia/20260617-214218.json new file mode 100644 index 00000000..8837001f --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260617-214218.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "64a44cf0e423d53bb25351da7be1fac81ebc2e5f", + "submitted_at": "2026-06-17T21:42:19Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260617-231007.json b/shared-context/findings/hyperpolymath-hypatia/20260617-231007.json new file mode 100644 index 00000000..0b534f29 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260617-231007.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "1e03bbf4b8bfc240f6039adf984cb404a5a10d1f", + "submitted_at": "2026-06-17T23:10:09Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260618-003144.json b/shared-context/findings/hyperpolymath-hypatia/20260618-003144.json new file mode 100644 index 00000000..5957defb --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260618-003144.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "95346e1e36d5ed92dadf6ba1e43e89b94850a421", + "submitted_at": "2026-06-18T00:31:46Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260618-004457.json b/shared-context/findings/hyperpolymath-hypatia/20260618-004457.json new file mode 100644 index 00000000..99864491 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260618-004457.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "6891a5f410561ebf5037884fdd6056221e794d53", + "submitted_at": "2026-06-18T00:44:59Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260618-173343.json b/shared-context/findings/hyperpolymath-hypatia/20260618-173343.json new file mode 100644 index 00000000..18b05e23 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260618-173343.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "e4f4b103ec0b2fe04fe25a9d98d789eec2e1c6df", + "submitted_at": "2026-06-18T17:33:44Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260618-175138.json b/shared-context/findings/hyperpolymath-hypatia/20260618-175138.json new file mode 100644 index 00000000..6a796bd9 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260618-175138.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "3e49e0dd0560418f9d9473f0e290b8b352b4ed0f", + "submitted_at": "2026-06-18T17:51:40Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260618-175417.json b/shared-context/findings/hyperpolymath-hypatia/20260618-175417.json new file mode 100644 index 00000000..fb905a5a --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260618-175417.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 5 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "d3170577daa5e0e6fa811f703e344febeeeb9408", + "submitted_at": "2026-06-18T17:54:19Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260618-175807.json b/shared-context/findings/hyperpolymath-hypatia/20260618-175807.json new file mode 100644 index 00000000..ec0fbd2e --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260618-175807.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 15 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "e30e7f005be0d266e773aa2fe79a01687fcbca15", + "submitted_at": "2026-06-18T17:58:09Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260619-063244.json b/shared-context/findings/hyperpolymath-hypatia/20260619-063244.json new file mode 100644 index 00000000..832a7d8b --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260619-063244.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 4 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "552baebd3175d22142f3ae3d5edc993f82a40835", + "submitted_at": "2026-06-19T06:32:46Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260619-063308.json b/shared-context/findings/hyperpolymath-hypatia/20260619-063308.json new file mode 100644 index 00000000..aaeb3375 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260619-063308.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 16 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "0a278c97b73b4ffa296ccd25c3c1d849a7066829", + "submitted_at": "2026-06-19T06:33:10Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/20260619-210658.json b/shared-context/findings/hyperpolymath-hypatia/20260619-210658.json new file mode 100644 index 00000000..b798ffd8 --- /dev/null +++ b/shared-context/findings/hyperpolymath-hypatia/20260619-210658.json @@ -0,0 +1,346 @@ +{ + "findings": [ + { + "reason": "Repository has 3 non-main remote branch(es). Policy: single main branch only.", + "type": "GS007", + "file": ".", + "action": "delete_remote_branches", + "rule_module": "git_state", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "src/ui/gossamer/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "scripts/ci-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "scripts/bench-tools/Cargo.toml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "ffi/zig/README.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "docs/integration/github-registry.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "docs/integration/a2ml-k9.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "docs/architecture/system-integration.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "docs/EXPLAINME.adoc", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": "0-AI-MANIFEST.a2ml", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "Code scanning (Hypatia): hypatia/structural_drift/SD022 -- Hypatia structural_drift: SD022 -- 17 day(s) old", + "type": "CSA001", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "20 total open code-scanning alert(s) -- security hygiene review", + "type": "CSA002", + "file": "hyperpolymath/hypatia", + "action": "review", + "rule_module": "code_scanning_alerts", + "severity": "medium" + }, + { + "reason": "doc references `src/lib/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/package-candidates/REPORT.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/SUMMARY.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/api/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/echidnabot.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/i18n/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/greetings/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": ".audittraining/security-errors/polyglot-i18n.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "0-AI-MANIFEST.a2ml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/interface/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/Burble/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/EXPLAINME.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bridges/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/boundary-design-options.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/auth/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/architecture/system-integration.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/rust/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/a2ml-k9.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/commands/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/registry/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/integration/github-registry.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/ci_simulation/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "docs/reports/audit/audit-2026-04-15-post.md", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/connectors/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "ffi/zig/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/bench-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/bin/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "scripts/ci-tools/Cargo.toml", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + }, + { + "reason": "doc references `src/core/` but no such directory exists in the tree (likely surviving a directory rename)", + "type": "SD022", + "file": "src/ui/gossamer/README.adoc", + "action": "rename_sweep", + "rule_module": "structural_drift", + "severity": "medium" + } + ], + "submission_metadata": { + "repo": "hyperpolymath/hypatia", + "commit": "9a638b24c87ad543562f2aadbce1392beadf6f58", + "submitted_at": "2026-06-19T21:07:01Z", + "scanner_version": "hypatia-v2" + } +} diff --git a/shared-context/findings/hyperpolymath-hypatia/latest.json b/shared-context/findings/hyperpolymath-hypatia/latest.json index 36e21b36..a9d8bb6b 120000 --- a/shared-context/findings/hyperpolymath-hypatia/latest.json +++ b/shared-context/findings/hyperpolymath-hypatia/latest.json @@ -1 +1 @@ -20260612-225823.json \ No newline at end of file +20260619-210658.json \ No newline at end of file