Add security_review_app.py and SECURITY_RISK_REPORT.md for account hygiene checks by umakarem82 · Pull Request #9 · umakarem82/didactic-robot

umakarem82 · 2026-05-10T07:51:21Z

Introduce a small security review utility and a written risk report to aid detection of account takeover, social-engineering, and privacy leakage risks observed in WhatsApp/Aalto-style contexts.
Provide a reusable patch-check scanner to flag suspicious/non-original code patterns such as dynamic execution and embedded secrets.

Add security_review_app.py, a CLI tool implementing two modes: interactive review questionnaire and non-interactive patch-check file scanner with a --json output option.
Implemented review templates for chrome, whatsapp, and aalto as weighted Question sets and risk grading via the grade function.
Added pattern-based detectors in SUSPICIOUS_PATTERNS, file discovery via files_to_scan, and a simple fingerprinting helper sha256_text to aid original-code tracking.
Add SECURITY_RISK_REPORT.md documenting scope, key findings, risk level, immediate actions, and usage guidance including the example python3 security_review_app.py patch-check . --json command.

Revise security tool with patch-check and WhatsApp risk report

0c1f7c5

umakarem82 added the codex label May 10, 2026 — with ChatGPT Codex Connector

Provide feedback