CompZ/test_scan.json at main · Compliledger/CompZ · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
{
  "repo_id": "test/repo",
  "commit_hash": "abc123",
  "frameworks": [
    "PCI-DSS"
  ],
  "control_evaluations": [
    {
      "control_id": "pci-3.2-forbidden-data",
      "framework": "PCI-DSS",
      "passed": false,
      "reason": "Detected patterns: \\b(cvv|cvc|cid|cav|csc)\\b, \\b(pin|pinblock|pin_block)\\b, \\b(track_?data|magnetic|mag_stripe)\\b",
      "severity": "critical"
    },
    {
      "control_id": "pci-3.5-private-key-protection",
      "framework": "PCI-DSS",
      "passed": false,
      "reason": "Detected secrets: \\b(seed\\s*(phrase|words)\\b)",
      "severity": "critical"
    },
    {
      "control_id": "pci-4.1-strong-cryptography",
      "framework": "PCI-DSS",
      "passed": false,
      "reason": "Weak crypto references: \\b(md5|sha-?1|crc32)\\b, \\b(rc4|des)(?!\\w)\\b",
      "severity": "high"
    },
    {
      "control_id": "pci-11.3.4-transaction-limits",
      "framework": "PCI-DSS",
      "passed": true,
      "reason": "Transaction limits detected (MAX/limit/threshold)",
      "severity": "medium"
    },
    {
      "control_id": "pci-12.3-rate-limiting",
      "framework": "PCI-DSS",
      "passed": true,
      "reason": "Rate limiting keywords detected",
      "severity": "medium"
    }
  ],
  "risk_score": 25.0,
  "timestamp": "2025-11-28T17:48:52.561213Z",
  "metadata": {
    "scanner": "compz-pci",
    "policy": "pci-dss-basic",
    "scanned_files": 670,
    "total_controls_evaluated": 5,
    "passed_controls": 2,
    "failed_controls": 3,
    "scan_duration_seconds": 16.13
  }
}