fix: try/except in _scan_component, serialize_finding to prevent data injection, DRY LLM template, SUPPORTED_ECOSYSTEMS constant

2026-05-11 19:45:49 +03:00
parent 6743321463
commit a6cd20e41c
8 changed files with 67 additions and 83 deletions
--- a/guarddog_nexus/web/templates/scan_detail.html
+++ b/guarddog_nexus/web/templates/scan_detail.html
@@ -53,24 +53,9 @@
            {% if f.report and f.report.status == "analyzing" %}
            {% include "_llm_spinner.html" %}
            {% elif f.report and f.report.verdict %}
-            <div class="llm-report llm-{{ f.report.verdict }}">
-                <div class="llm-header">
-                    <span class="llm-badge llm-badge-{{ f.report.verdict }}">{{ f.report.verdict }}</span>
-                    {% if f.report.severity_rating %}
-                    <span class="llm-severity">{{ f.report.severity_rating }}</span>
-                    {% endif %}
-                    {% if config.llm_enabled and not config.llm_auto_analyze %}
-                    <button class="llm-retry"
-                        hx-post="/api/v1/findings/{{ f.id }}/analyze?retry=1"
-                        hx-target="closest .llm-report"
-                        hx-swap="outerHTML"
-                        hx-indicator="closest .llm-report">{{ t('llm_retry', request.state.lang) }}</button>
-                    {% endif %}
-                </div>
-                <p class="llm-summary">{{ f.report.summary }}</p>
-                <p class="llm-analysis">{{ f.report.analysis }}</p>
-                <p class="llm-disclaimer">{{ t('llm_disclaimer', request.state.lang) }}</p>
-            </div>
+            {% with report=f.report, finding_id=f.id %}
+            {% include "_llm_report_fragment.html" %}
+            {% endwith %}
            {% elif config.llm_enabled and not config.llm_auto_analyze %}
            <div class="llm-actions" id="llm-{{ f.id }}">
                <button class="outline"