Kajeet
Kajeet AgentOps Console
Agent operations trust console

Kajeet AgentOps Console

Developer operations, security evidence, and agent-run engineering work in one durable system of record.

Reset
Runs
2
all recorded agent executions
Open findings
21
active security and review items
High risk
6
critical/high findings still open
Repositories
1
tracked codebases
Mean runtime
3m 19s
average completed job

Latest Jobs

Showing the last 10 matching jobs. Use All Jobs for the full run history.

All Jobs
Job
Type
Repository
Agent
Status
Model
Findings
Time
Full-environment Composer code review for kdevfull-env-code-review · run-70eb500c-916a-4da9-82b7-5b0a168d3c42
Code Review
kdevhttps://github.com/kajeet-innovation/kdev.git
Elara
finished
composer-latest
11 total
2m 31s
Full-environment Cursor security scan for kdevfull-env · run-c6d6e415-1b5f-4eee-b8dc-b469b8d01636
Security Scan
kdevhttps://github.com/kajeet-innovation/kdev.git
Elara
finished
composer-latest
10 total
4m 7s

Risk Mix

Open finding distribution by severity.

high
6
medium
12
low
3

Repository Readiness

Track scan coverage, risk, and full-env readiness per codebase.

kdevhttps://github.com/kajeet-innovation/kdev.git
high6 highMay 24, 7:16 PM

Open Findings

Closed by default; expand when triaging active risk.

highdeploymentLinear: N/A

claim_available_corp RPC not in versioned migrations

kdev · src/lib/corpPool.ts:18-28, drizzle/0000_init.sql
highbugLinear: N/A

Dashboard/usage/device APIs ignore child device groups (trial/devkit accounts)

kdev · src/app/api/dashboard/route.ts:119-151, src/app/api/usage/route.ts:238-240
highcorrectnessLinear: N/A

Unauthenticated /api/playground/proxy relays arbitrary API keys to Sentinel

kdev · src/app/api/playground/proxy/route.ts:77-148
highsecurityLinear: N/A

Site-gate cookie encodes gate credentials (reversible)

kdev · src/lib/siteGateToken.ts, src/app/api/site-gate/route.ts
highsecurityLinear: N/A

Password-reset bearer tokens logged during signup finalization

kdev · src/lib/sentinelMaster.ts
highsecurityLinear: N/A

Signup verification codes logged in plaintext

kdev · src/lib/signupEmail.ts
mediumbugLinear: N/A

/api/contact-sales is unauthenticated and unrated

kdev · src/app/api/contact-sales/route.ts:79-127
mediumbugLinear: N/A

MCP client uses raw JWT cookie without proactive refresh

kdev · src/lib/mcp.ts:53-74, src/lib/sentinel.ts:130-145
mediumperformanceLinear: N/A

In-memory rate limits are per-instance only

kdev · src/lib/rateLimit.ts:4-8, src/app/api/auth/signup/route.ts:27-28
mediumcorrectnessLinear: N/A

Signup verify can leave Sentinel active while DB signup row stays unverified

kdev · src/app/api/auth/signup/verify/route.ts:268-347
mediumdeploymentLinear: N/A

ESLint fails with 16 errors

kdev · package.json:9, src/components/auth/auth-provider.tsx:104-106
mediumruntimeLinear: N/A

/api/debug/hourly shipped without dev-only guard

kdev · src/app/api/debug/hourly/route.ts:14-59
mediumdeploymentLinear: N/A

Inconsistent SENTINEL_BASE_URL defaults across server modules

kdev · src/lib/sentinel.ts:9, src/app/api/playground/proxy/route.ts:6-7
mediumsecurityLinear: N/A

Authorization context taken from unsigned kdev_user cookie

kdev · src/lib/sentinel.ts, src/app/api/devices/[mdn]/route.ts
mediumsecurityLinear: N/A

Debug API exposes raw Sentinel responses in production

kdev · src/app/api/debug/hourly/route.ts
mediumsecurityLinear: N/A

Rate limits trust spoofable X-Forwarded-For

kdev · src/lib/rateLimit.ts

Auditor Ready

Each run keeps evidence, artifacts, model/profile metadata, and immutable audit events.

Cost Aware

Designed to store model, token, duration, and cost fields for profile comparisons.

Agent Native

KAIT, Cursor Broker, CI jobs, and future agents post to a single ingestion API.