@memberjunction/ai-mcp-server

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    224:     // System API key from MJ_API_KEY environment variable
    225:     // Note: This may come from DEFAULT_SERVER_CONFIG, but initConfig() also reads
>>> 226:     // directly from process.env to handle cases where dotenv runs after MJServer import
    227:     apiKey: z.string().optional(),
    228: });

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    65: }
    66: else {
>>> 67:     console.log(`MCP Server: No .env file found, using existing environment variables`);
    68: }
    69: const explorer = cosmiconfigSync('mj', { searchStrategy: 'global' });

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    58:     return undefined;
    59: }
>>> 60: // Load .env file from repo root (searches upward like cosmiconfig does for mj.config.cjs)
    61: const envPath = findEnvFile();
    62: if (envPath) {

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    50:     const root = path.parse(currentDir).root;
    51:     while (currentDir !== root) {
>>> 52:         const envPath = path.join(currentDir, '.env');
    53:         if (fs.existsSync(envPath)) {
    54:             return envPath;

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    44:  * in the same location as mj.config.cjs (typically the repo root).
    45:  *
>>> 46:  * @returns Path to the .env file if found, undefined otherwise
    47:  */
    48: function findEnvFile() {

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    41: /**
    42:  * Searches upward from the current directory for a .env file.
>>> 43:  * This mimics cosmiconfig's search behavior so the .env file is found
    44:  * in the same location as mj.config.cjs (typically the repo root).
    45:  *

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    40:  */
    41: /**
>>> 42:  * Searches upward from the current directory for a .env file.
    43:  * This mimics cosmiconfig's search behavior so the .env file is found
    44:  * in the same location as mj.config.cjs (typically the repo root).

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    32:  * - Load dotenv first (above) which populates process.env with DB credentials from .env
    33:  * - Use dynamic import() inside initConfig() to load DEFAULT_SERVER_CONFIG AFTER dotenv runs
>>> 34:  * - This ensures process.env.DB_DATABASE, etc. are set when @memberjunction/server evaluates them
    35:  *
    36:  * Alternative approaches considered:

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    30:  *
    31:  * Solution:
>>> 32:  * - Load dotenv first (above) which populates process.env with DB credentials from .env
    33:  * - Use dynamic import() inside initConfig() to load DEFAULT_SERVER_CONFIG AFTER dotenv runs
    34:  * - This ensures process.env.DB_DATABASE, etc. are set when @memberjunction/server evaluates them

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    27:  * - ESM hoists all static imports, so they execute BEFORE any inline code in this file
    28:  * - If we use `import { DEFAULT_SERVER_CONFIG } from '@memberjunction/server'` at the top,
>>> 29:  *   it runs before our dotenv.config() call, and process.env is empty
    30:  *
    31:  * Solution:

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    2738: export async function listAvailableTools(filterOptions = {}) {
    2739:     try {
>>> 2740:         // Initialize configuration (loads .env and mj.config.cjs)
    2741:         _config = await initConfig();
    2742:         if (!_config.mcpServerSettings?.enableMCPServer) {

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    24:  *
    25:  * Problem:
>>> 26:  * - @memberjunction/server's config.ts reads process.env at module load time to create DEFAULT_SERVER_CONFIG
    27:  * - ESM hoists all static imports, so they execute BEFORE any inline code in this file
    28:  * - If we use `import { DEFAULT_SERVER_CONFIG } from '@memberjunction/server'` at the top,

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    3:  *
    4:  * Loads configuration from:
>>> 5:  * 1. Environment variables (.env file via dotenv - searches upward from cwd)
    6:  * 2. Configuration file (mj.config.cjs via cosmiconfig)
    7:  * 3. Default server configuration as fallback

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    859:  * This MUST be called before accessing any config values.
    860:  *
>>> 861:  * The dynamic import ensures dotenv has already populated process.env
    862:  * before @memberjunction/server reads environment variables.
    863:  */

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    3:  *
    4:  * Loads configuration from:
>>> 5:  * 1. Environment variables (.env file via dotenv - searches upward from cwd)
    6:  * 2. Configuration file (mj.config.cjs via cosmiconfig)
    7:  * 3. Default server configuration as fallback

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    17:  * ```typescript
    18:  * const issuer = createJWTIssuer({
>>> 19:  *   signingSecret: process.env.MCP_JWT_SECRET!,
    20:  *   expiresIn: '1h',
    21:  *   issuer: 'urn:mj:mcp-server',

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    41:  * ```typescript
    42:  * const issuer = createJWTIssuer({
>>> 43:  *   signingSecret: process.env.MCP_JWT_SECRET!,
    44:  *   expiresIn: '1h',
    45:  *   issuer: 'urn:mj:mcp-server',

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    263:     console.log(`[Config] apiKey sources: configInfo.apiKey=${configInfo.apiKey ? `"${configInfo.apiKey.substring(0, 10)}..." (${configInfo.apiKey.length} chars)` : 'undefined'}, process.env.MJ_API_KEY=${envApiKey ? `"${envApiKey.substring(0, 10)}..." (${envApiKey.length} chars)` : 'undefined'}`);
    264:     if (!configInfo.apiKey && envApiKey) {
>>> 265:         console.log('[Config] Using MJ_API_KEY from process.env (DEFAULT_SERVER_CONFIG was stale)');
    266:         configInfo.apiKey = envApiKey;
    267:     }

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    261:     // was imported elsewhere first
    262:     const envApiKey = process.env.MJ_API_KEY;
>>> 263:     console.log(`[Config] apiKey sources: configInfo.apiKey=${configInfo.apiKey ? `"${configInfo.apiKey.substring(0, 10)}..." (${configInfo.apiKey.length} chars)` : 'undefined'}, process.env.MJ_API_KEY=${envApiKey ? `"${envApiKey.substring(0, 10)}..." (${envApiKey.length} chars)` : 'undefined'}`);
    264:     if (!configInfo.apiKey && envApiKey) {
    265:         console.log('[Config] Using MJ_API_KEY from process.env (DEFAULT_SERVER_CONFIG was stale)');

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    795:                         // Falls back to MCP_JWT_SECRET env var if not configured in mj.config.cjs
    796:                         const proxySettings = _config.mcpServerSettings?.auth?.proxy;
>>> 797:                         const jwtSigningSecret = proxySettings?.jwtSigningSecret ?? process.env.MCP_JWT_SECRET;
    798:                         const jwtConfig = jwtSigningSecret ? {
    799:                             signingSecret: jwtSigningSecret,

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    776:                         // (same technique as MJExplorer SPA), so no secret is required
    777:                         const upstreamClientId = provider.clientId || process.env.WEB_CLIENT_ID || provider.audience || '';
>>> 778:                         const upstreamClientSecret = process.env.WEB_CLIENT_SECRET || undefined;
    779:                         // Log warning if no valid client_id found
    780:                         if (!upstreamClientId) {

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    775:                         // Client secret is OPTIONAL - the proxy uses PKCE for upstream token exchange
    776:                         // (same technique as MJExplorer SPA), so no secret is required
>>> 777:                         const upstreamClientId = provider.clientId || process.env.WEB_CLIENT_ID || provider.audience || '';
    778:                         const upstreamClientSecret = process.env.WEB_CLIENT_SECRET || undefined;
    779:                         // Log warning if no valid client_id found

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    612: export async function initializeServer(filterOptions = {}) {
    613:     try {
>>> 614:         // Initialize configuration (loads .env and mj.config.cjs)
    615:         _config = await initConfig();
    616:         mcpServerPort = _config.mcpServerSettings?.port || 3100;

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    260:     // DEFAULT_SERVER_CONFIG.apiKey may have been evaluated before dotenv ran if @memberjunction/server
    261:     // was imported elsewhere first
>>> 262:     const envApiKey = process.env.MJ_API_KEY;
    263:     console.log(`[Config] apiKey sources: configInfo.apiKey=${configInfo.apiKey ? `"${configInfo.apiKey.substring(0, 10)}..." (${configInfo.apiKey.length} chars)` : 'undefined'}, process.env.MJ_API_KEY=${envApiKey ? `"${envApiKey.substring(0, 10)}..." (${envApiKey.length} chars)` : 'undefined'}`);
    264:     if (!configInfo.apiKey && envApiKey) {

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    257:     const { DEFAULT_SERVER_CONFIG } = await import('@memberjunction/server');
    258:     configInfo = loadConfig(DEFAULT_SERVER_CONFIG);
>>> 259:     // Ensure apiKey is read directly from process.env (dotenv has definitely run by now)
    260:     // DEFAULT_SERVER_CONFIG.apiKey may have been evaluated before dotenv ran if @memberjunction/server
    261:     // was imported elsewhere first

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    247:  * This MUST be called before accessing any config values.
    248:  *
>>> 249:  * The dynamic import ensures dotenv has already populated process.env
    250:  * before @memberjunction/server reads environment variables.
    251:  */

Decoded base64 content: ��bu�^'R� ��r��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: j�a���jب�'����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: j�a���jب�'����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ���jf����j{)��l

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ���jf����j{)��l

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ���jf����j{)��l

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ���jf����j{)��l

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ���jf����j{)��l

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: i�@rب�L^r�^N�%

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: i�@rب�L^r�^N�%

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: r��z��*'1�,j�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��"�׫y� z{S��Mjg�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��"�׫y� z{S��Mjg�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��"�׫y� z{S��Mjg�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: r��z��*'1�,j�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: i�D�ح��V'�N�%

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: i�D�ح��V'�N�%

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��D�ح���jc���-

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��D�ح���jc���-

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �w%�בzV�y�'�+r �Z

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��D�ح���jc���-

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��n�$I��z�����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �+-�x�[^��m���

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �����:(��h����)�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �+-�x�[^��m���

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �+-�x�[^��m���

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �+-�x�[^��m���

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �+-�x�[^��m���

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �+-�x�[^��m���

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �+-�x�[^��m���

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �����:(��h����)�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��@��h�,ڶ*' �^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��@��h�,ڶ*' �^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: r���ਞǧ����-

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: r��z{Qz����zj/y߾

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �֭xƧj�"{-jw

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��@��h�,ڶ*'J֭xƧj�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �֭xƧj�"{-jw

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �֭xƧj�"{-jw

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �֭xƧj�"{-jw

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �֭xƧj�"{-jw

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �֭xƧj�"{-jw

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �֭xƧj�"{-jw

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ���z�ں�8�����$h�׫

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: n�t����ͫb�t����1�Zu�Z

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��@��h�,ڶ*'J֭xƧj�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��ޭ�^ �^U��~'�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��@��h�,ڶ*'J֭xƧj�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��ݕ䜢��wi�)�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��ݕ឴*'���wi�)�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: n�t����ͫb�t����1�Zu�Z

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��-�� �^U��~'�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��ޭ�^ �^U��~'�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��-�� �^U��~'�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��-�� �^U��~'�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: {!jxR�-�� �^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��-�� �^U��~'�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��bu�^R�-��Rǫ

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: r���ਞǧ����-

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: {ki�B�'��*�u�퉩l

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��bu�^ X��Ԟr��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��ݕ�.�+�6���¡׆���

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��ݕ�.�+�6���¡׆���

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��@��h�,ڶ*' �^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ���z�T��ky���G�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��bu�^R�-��Rǫ

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: {!jxR�-�� �^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ���z�T��ky���G�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��bu�^R�-��Rǫ

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: {ki�B�'��*�u�퉩l

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��ݕ䜢��wi�)�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��ݕ឴*'���wi�)�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ޭ��$�R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ެ*&���q�b�t�R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ެ���R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �������$��ا�Ĝ��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: u���Rz�ެ'��'�q�^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: u���Rz�ެ'��'�q�^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: u���Rz�ެ'��'�q�^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �Zm�I�m�x,"w�

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ެ���R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ޭ��$�R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ެ*&���q�b�t�R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �������$��ا�Ĝ��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: u���Rz�ެ'��'�q�^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ޭ��$�R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ެ*&���q�b�t�R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ެ���R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �������$��ا�Ĝ��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: �������$��ا�Ĝ��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ެ���R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ޭ��$�R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��Rz�ެ*&���q�b�t�R'~����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: u���Rz�ެ'��'�q�^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: u���Rz�ެ'��'�q�^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: u���Rz�ެ'��'�q�^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: u���Rz�ެ'��'�q�^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��bu�^'R� ��r��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��-�� X��Ԟr��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��-�� X��Ԟr��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��-�� X��Ԟr��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��n�$I��z�����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��z���b��[���

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��������ƭy���-

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��������jX�j�+

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: u���Rz�ެ'��'�q�^

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: {ki�@<���Z����-

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��������ƭy���-

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��������ƭy���-

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��n�$I��z�����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��-��>�/�׫5��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��-��>�/�׫5��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��-��>�/�׫5��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: ��-��>�/�׫5��

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Decoded base64 content: j�a���jب�'����

Detected by automated pattern matching (rule DO-BAS) with medium confidence. May be a false positive.

Python requests library HTTP call

Detected by automated pattern matching (rule NS-001) with medium confidence. May be a false positive.

    197:      */
    198:     getConsentRequest(requestId) {
>>> 199:         const request = this.consentRequests.get(requestId);
    200:         if (!request) {
    201:             return undefined;

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.7 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.7 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.7 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.7 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.7 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.7 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.8 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.9 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

JavaScript fetch() call

Detected by automated pattern matching (rule NS-003) with medium confidence. May be a false positive.

    557:         params.set('code_verifier', codeVerifier);
    558:     }
>>> 559:     const response = await fetch(config.upstream.tokenEndpoint, {
    560:         method: 'POST',
    561:         headers: {

JavaScript fetch() call

Detected by automated pattern matching (rule NS-003) with medium confidence. May be a false positive.

    599:     params.set('client_id', config.upstream.clientId);
    600:     // OAuth proxy uses PKCE - never send client_secret for public client flows
>>> 601:     const response = await fetch(config.upstream.tokenEndpoint, {
    602:         method: 'POST',
    603:         headers: {

High-entropy string (4.7 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.7 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.8 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.5 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.9 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.9 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (5.2 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (5.0 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.9 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.8 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.6 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.

High-entropy string (4.8 bits/char) — possible encoded payload

Detected by automated pattern matching (rule EN-001) with medium confidence. May be a false positive.