Open Issues Need Help
View All on GitHub [ci-maintainer] CodeQL Analysis fails: go.mod needs tidy before build about 3 hours ago
help wanted ci
help wanted ci
[ci-maintainer] build-test.yml: 200+ consecutive failures on main — 0 jobs, pre-job failure pattern about 5 hours ago
help wanted ci
help wanted security
[ci-maintainer] build-test.yml still failing after #413 — invalid golangci-lint-action SHA 1 day ago
help wanted ci
help wanted security
help wanted security
[sec-check] disabled workflow files retain pre-fix pwn-request patterns — delete or update 1 day ago
help wanted security
help wanted security
help wanted security
help wanted ci
help wanted security
help wanted security
[sec-check] pr-verifier.yml calls non-existent reusable-pr-verifier.yml — PR title check disabled 2 days ago
help wanted security
help wanted security
help wanted security
help wanted security
help wanted security
[sec-check] ValidateNamespace uses blocklist instead of allowlist — prompt injection bypass possible 4 days ago
help wanted security
help wanted security
help wanted security needs-admin
help wanted security
help wanted security
[sec-check] Token-Permissions: 5 Scorecard alerts for over-permissive GITHUB_TOKEN in workflows 6 days ago
help wanted security
help wanted quality testing
help wanted security
[sec-check] Code-Review score 0 — 0/21 recent changesets had an approved review (Scorecard high) 6 days ago
help wanted security
[sec-check] Token-Permissions: copilot-automation.yml job-level write scopes (Scorecard high) 6 days ago
help wanted security
help wanted security
help wanted quality testing
help wanted quality testing
[quality] MCP Registry publish workflow lacks post-publish validation and binary verification 6 days ago
help wanted quality testing
[sec-check] Unpinned @main reusable workflow refs from kubestellar/infra (supply-chain risk) 7 days ago
help wanted security
help wanted security
help wanted security
help wanted security
[sec-check] Missing permissions block in copilot-dco.yml (not propagated from console fix) 9 days ago
help wanted security
help wanted security
help wanted security
help wanted security
help wanted security
[sec-check] 11 workflows use kubestellar/infra reusable workflows at @main (mutable ref) 14 days ago
help wanted security
[sec-check] copilot-automation.yml: pull_request_target with write permissions and no fork guard 14 days ago
help wanted security
help wanted ci
help wanted security
[sec-check] helm --set values not sanitized — comma in value injects extra key=value pairs 20 days ago
help wanted security
help wanted security
help wanted security
help wanted security
help wanted quality testing
help wanted quality testing
help wanted quality testing
help wanted quality testing
[quality] pkg/mcp/server/upgrades.go has critically low test coverage (10% test:source ratio) 21 days ago
help wanted quality testing
[quality] tools_kubectl.go handlers (handleDeleteResource, handleKubectlApply) lack unit tests 21 days ago
help wanted quality testing
help wanted security
help wanted security
[sec-check] HIGH: Branch protection not configured on main branch (Scorecard score 3/10) 22 days ago
help wanted security
[sec-check] HIGH: Code-Review score 4/10 — only 10 of 24 recent changesets reviewed (Scorecard #11) 22 days ago
help wanted security
help wanted security
help wanted quality testing
[quality] Missing unit tests for pkg/gitops/resource_mapping.go and pkg/mcp/server/tools_drift.go 22 days ago
help wanted quality testing
help wanted quality testing
help wanted quality testing
help wanted security
help wanted quality testing
[sec-check] MEDIUM: SSRF — validateHelmRepoURL allows http:// to private/cloud-metadata IPs 23 days ago
help wanted agent/sec-check
help wanted roadmap
[quality] pkg/mcp/server: tools_policy.go (672 lines, 6 functions) has zero test coverage 23 days ago
help wanted quality testing
[sec-check] LOW: Go builder image version drift — Dockerfile uses golang:1.26.3 vs console's 1.26.4 23 days ago
help wanted security
documentation help wanted
[architect] pkg/mcp/server is a 200KB monolithic package — decompose tool handlers into sub-packages 23 days ago
help wanted architecture tech-debt
[strategist] Submit kubestellar-mcp to modelcontextprotocol/servers and glama.ai MCP directories 23 days ago
help wanted roadmap
[strategist] release-gap: v0.9.0 stable release overdue — 10+ unreleased improvements including CVE patch 23 days ago
help wanted roadmap
help wanted architecture tech-debt
help wanted architecture tech-debt
help wanted quality testing
[sec-check] goreleaser.yml + scorecard.yml: workflow-level write permissions (TokenPermissions HIGH) 24 days ago
help wanted security
[sec-check] PR#186 removes security hardening: fork guards + SHA pins stripped from 11 workflows 25 days ago
help wanted security
help wanted security
help wanted security
help wanted security
help wanted security
help wanted security
help wanted roadmap
[sec-check] LOW: Code-Review not enforced + no Dependency-Update-Tool configured (Scorecard HIGH) 25 days ago
help wanted security
help wanted security
bug help wanted
bug help wanted
[architect] pkg/mcp/server/tools.go is a 65KB god-file — split by domain like deploy server 25 days ago
help wanted architecture tech-debt
[sec-check] Over-permissive GITHUB_TOKEN in 10 workflows — token-permissions hardening needed 25 days ago
help wanted security
help wanted security
[ci-maintainer] OpenSSF Scorecard fails — stale .worktrees/docs-61-62 submodule ref in git index 25 days ago
help wanted kind/bug
documentation help wanted
documentation help wanted
Bug: syncResource dry-run always reports "Would update" — false positive on unchanged resources 29 days ago
bug help wanted
[guide] commands/ directory lacks TEMPLATE.md — new command docs risk inconsistent format 29 days ago
documentation help wanted
documentation help wanted
documentation help wanted agent/scanner hive/hive-v1
bug help wanted security hive/hive-v1 agent/reviewer