Add master roadmap and technical plan for Sentinel AI Governance Dashboard#136
Codeac Code Quality
This PR contains 3555 errors and 3287 warnings.
Annotations
Check warning on line 11 in frontend/Dockerfile
codeac-io / Codeac Code Quality
DL3018
Pin versions in apk add. Instead of `apk add <package>` use `apk add <package>=<version>`
Check warning on line 45 in frontend/Dockerfile
codeac-io / Codeac Code Quality
DL3018
Pin versions in apk add. Instead of `apk add <package>` use `apk add <package>=<version>`
Check warning on line 15 in backend/Dockerfile
codeac-io / Codeac Code Quality
DL3018
Pin versions in apk add. Instead of `apk add <package>` use `apk add <package>=<version>`
Check warning on line 37 in backend/Dockerfile
codeac-io / Codeac Code Quality
DL3018
Pin versions in apk add. Instead of `apk add <package>` use `apk add <package>=<version>`
Check failure on line 9 in governance_blueprint/confidential_enclave_deployment.tf
codeac-io / Codeac Code Quality
tfsec-error
Invalid single-argument block definition; Single-line block syntax can include only one argument definition. To define multiple arguments, use the multi-line block syntax with one argument definition per line., and 2 other diagnostic(s)
Check warning on line 40 in tee_tpm_attestation.go
codeac-io / Codeac Code Quality
package-comments
should have a package comment
Check warning on line 13 in tee_tpm_attestation.go
codeac-io / Codeac Code Quality
exported
exported type AttestationProvider should have comment or be unexported
Check warning on line 24 in tee_tpm_attestation.go
codeac-io / Codeac Code Quality
exported
exported method AttestationProvider.VerifyPCRMatch should have comment or be unexported
Check warning on line 1 in backend/package.json
codeac-io / Codeac Code Quality
NPM Vulnerability Warning
Artifact "@babel/core" 7.28.3 is vulnerable to CVE-2026-49356 - @babel/core: Arbitrary File Read via sourceMappingURL Comment. Vulnerability score: 3.2 (low).
Check failure on line 1 in backend/package.json
codeac-io / Codeac Code Quality
NPM Vulnerability Error
Artifact "ajv" 6.12.6 is vulnerable to CVE-2025-69873 - ajv has ReDoS when using `$data` option.
Check warning on line 31 in tests/governance/test_governance_artifacts.py
codeac-io / Codeac Code Quality
B101
Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.
Check warning on line 165 in tests/test_governance_validator.py
codeac-io / Codeac Code Quality
B101
Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.
Check warning on line 21 in docs/schemas/test_validate_evidence_manifest.py
codeac-io / Codeac Code Quality
B603
subprocess call - check for execution of untrusted input.
Check warning on line 136 in tests/test_run_blueprint_artifact_checks.py
codeac-io / Codeac Code Quality
B603
subprocess call - check for execution of untrusted input.
Check warning on line 131 in tools/validate_governance_artifacts.py
codeac-io / Codeac Code Quality
B101
Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.
Check warning on line 1 in backend/package.json
codeac-io / Codeac Code Quality
NPM Vulnerability Warning
Artifact "brace-expansion" 1.1.12 is vulnerable to CVE-2026-33750 - brace-expansion: Zero-step sequence causes process hang and memory exhaustion. Vulnerability score: 6.5 (medium).
Check warning on line 32 in tests/governance/test_governance_artifacts.py
codeac-io / Codeac Code Quality
B101
Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.
Check warning on line 166 in tests/test_governance_validator.py
codeac-io / Codeac Code Quality
B101
Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.
Check warning on line 29 in docs/schemas/test_validate_evidence_manifest.py
codeac-io / Codeac Code Quality
B603
subprocess call - check for execution of untrusted input.
Check warning on line 59 in omni_sentinel_cli.py
codeac-io / Codeac Code Quality
B105
Possible hardcoded password: '<REDACTED_SECRET>'
Check warning on line 132 in tools/validate_governance_artifacts.py
codeac-io / Codeac Code Quality
B101
Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.
Check warning on line 137 in tests/test_run_blueprint_artifact_checks.py
codeac-io / Codeac Code Quality
B101
Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.
Check warning on line 165 in tests/test_validate_blueprint_artifacts.py
codeac-io / Codeac Code Quality
B101
Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.
Check failure on line 57 in backend/package.json
codeac-io / Codeac Code Quality
NPM Vulnerability Error
Artifact "dompurify" 3.3.2 is vulnerable to GHSA-39q2-94rc-95cp - DOMPurify's ADD_TAGS function form bypasses FORBID_TAGS due to short-circuit evaluation.
Check warning on line 30 in test_run_gsifi_governance_checks.py
codeac-io / Codeac Code Quality
B101
Use of assert detected. The enclosed code will be removed when compiling to optimised byte code.