SiteShadow
Back to vulnerability library
Detected byEngineering-practice checks (QP)Pro

QP06 Style Guides Practices

What this means

SiteShadow flagged signals that style/lint enforcement may be missing or disabled. This is a quality issue that becomes a security issue when inconsistent code makes review and safe refactoring harder.

Why it matters

Consistent style reduces defects and improves maintainability.

Safer examples

1) Enforce formatting and linting in CI

Use Prettier/ESLint, Black/Ruff, gofmt, etc. Fail the build on violations.

2) Use an .editorconfig

Keep indentation/line endings consistent across editors.

3) Keep rules pragmatic

Prefer a small, consistent ruleset over a brittle one nobody follows.

How SiteShadow detects it (high level)

References

---

← Back to Vulnerability Library

Catch this with SiteShadow Pro.

This vulnerability class is detected by SiteShadow's Pro-tier engines, two-pass interprocedural taint analysis, heuristic flow checks, AI-context scanning, and cross-file detection. The free tier catches OWASP Top 10 single-file patterns; Pro adds the data-flow depth that finds this class of bug.