From 77b0f31e175cbc26c1b98bbb9fab0343b5a121c7 Mon Sep 17 00:00:00 2001
From: Commando-X <badmusbodunrin@gmail.com>
Date: Sat, 28 Feb 2026 16:37:32 +0100
Subject: [PATCH 1/9] user3

---
 badApi/account.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/badApi/account.js b/badApi/account.js
index 1f1c97c..9ef7770 100644
--- a/badApi/account.js
+++ b/badApi/account.js
@@ -4,7 +4,7 @@ const router = express.Router();
 // In-memory database for storing user information (including sensitive data)
 const usersInfo = [
   { username: 'user1', dob: '1990-01-01', address: '5, 3rd mainland Bridge', cardInfo: '1234-5678-9012-3456', children: ['Child1', 'Child2'], balance: 1000, role: 'user' },
-  { username: 'user2', dob: '1985-05-15', address: '7, Ghost street', cardInfo: '9876-5432-1098-7654', children: ['Child3'], balance: 500, role: 'user' },
+  { username: 'user3', dob: '1985-05-15', address: '7, Ghost street', cardInfo: '9876-5432-1098-7654', children: ['Child3'], balance: 500, role: 'user' },
 ];
 
 /**

From f17854b29ec8aeeffa0b68cf5412528ca4a574a7 Mon Sep 17 00:00:00 2001
From: Commando-X <badmusbodunrin@gmail.com>
Date: Sat, 28 Feb 2026 16:45:28 +0100
Subject: [PATCH 2/9] here we go

---
 .github/workflows/ai-security-review.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ai-security-review.yml b/.github/workflows/ai-security-review.yml
index adb8ff9..241b92a 100644
--- a/.github/workflows/ai-security-review.yml
+++ b/.github/workflows/ai-security-review.yml
@@ -18,7 +18,7 @@ jobs:
     permissions:
       contents: read
       pull-requests: write
-      id-token: write
+      # id-token: write
 
     steps:
       - name: Checkout PR

From 5c4bc5202f672ff9038341395887aac62aadd43b Mon Sep 17 00:00:00 2001
From: Commando-X <badmusbodunrin@gmail.com>
Date: Sat, 28 Feb 2026 16:48:39 +0100
Subject: [PATCH 3/9] here we go 2

---
 .github/workflows/ai-security-review.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ai-security-review.yml b/.github/workflows/ai-security-review.yml
index 241b92a..386ea24 100644
--- a/.github/workflows/ai-security-review.yml
+++ b/.github/workflows/ai-security-review.yml
@@ -18,7 +18,7 @@ jobs:
     permissions:
       contents: read
       pull-requests: write
-      # id-token: write
+      id-token: write
 
     steps:
       - name: Checkout PR
@@ -29,7 +29,7 @@ jobs:
       - name: Claude security review
         uses: anthropics/claude-code-action@v1
         with:
-          anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
+          # anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
           prompt: |
             REPO: ${{ github.repository }}
             PR NUMBER: ${{ github.event.pull_request.number }}

From 216a3e02605ed11a33710e554ebdd1dfefe3ca4b Mon Sep 17 00:00:00 2001
From: Commando-X <badmusbodunrin@gmail.com>
Date: Sat, 28 Feb 2026 16:56:31 +0100
Subject: [PATCH 4/9] loan

---
 badApi/loan.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/badApi/loan.js b/badApi/loan.js
index 15eb7fb..c1891b5 100644
--- a/badApi/loan.js
+++ b/badApi/loan.js
@@ -3,7 +3,7 @@ const router = express.Router();
 
 // In-memory database for loan applications
 let loanApplications = [
-  { username: 'user1', amount: 1000, status: 'pending' },
+  { username: 'user1', amount: 2000, status: 'pending' },
 ];
 
 /**

From 422dc35395b66e59d468de88a540cabcfe76537e Mon Sep 17 00:00:00 2001
From: Commando-X <badmusbodunrin@gmail.com>
Date: Sat, 28 Feb 2026 17:05:45 +0100
Subject: [PATCH 5/9] otp update

---
 badApi/otp.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/badApi/otp.js b/badApi/otp.js
index 7e76b7f..60cf6f6 100644
--- a/badApi/otp.js
+++ b/badApi/otp.js
@@ -25,7 +25,7 @@ const router = express.Router();
  *               properties:
  *                 otp:
  *                   type: integer
- *                   example: 123456
+ *                   example: 1234567
  *       500:
  *         description: Internal server error
  *         content:

From caafe2314930f9b58ed70be459ca45f47c94ab8c Mon Sep 17 00:00:00 2001
From: Badmus <badmusbodunrin@gmail.com>
Date: Sat, 28 Feb 2026 17:26:56 +0100
Subject: [PATCH 6/9] hmm

---
 .github/workflows/ai-security-review.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ai-security-review.yml b/.github/workflows/ai-security-review.yml
index 386ea24..241b92a 100644
--- a/.github/workflows/ai-security-review.yml
+++ b/.github/workflows/ai-security-review.yml
@@ -18,7 +18,7 @@ jobs:
     permissions:
       contents: read
       pull-requests: write
-      id-token: write
+      # id-token: write
 
     steps:
       - name: Checkout PR
@@ -29,7 +29,7 @@ jobs:
       - name: Claude security review
         uses: anthropics/claude-code-action@v1
         with:
-          # anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
+          anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
           prompt: |
             REPO: ${{ github.repository }}
             PR NUMBER: ${{ github.event.pull_request.number }}

From 2f96571c6959f5bbd2f8d23e013e14a30d6399fb Mon Sep 17 00:00:00 2001
From: Badmus <badmusbodunrin@gmail.com>
Date: Sat, 28 Feb 2026 17:41:08 +0100
Subject: [PATCH 7/9] pword

---
 badApi/db.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/badApi/db.js b/badApi/db.js
index 2e88a8a..8ad51ef 100644
--- a/badApi/db.js
+++ b/badApi/db.js
@@ -4,7 +4,7 @@ const mysql = require('mysql2');
 const connection = mysql.createConnection({
   host: 'localhost',
   user: 'ghost',
-  password: 'ghost_sec', //coming back here
+  password: 'ghost_sec1', //coming back here
   database: 'badapi_db2'
 });
 

From 58acb273804173f997ed4dafa0a52561095d7390 Mon Sep 17 00:00:00 2001
From: Badmus <badmusbodunrin@gmail.com>
Date: Sat, 28 Feb 2026 17:49:13 +0100
Subject: [PATCH 8/9] OKAY

---
 badApi/admin.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/badApi/admin.js b/badApi/admin.js
index 86dc9e2..3367cca 100644
--- a/badApi/admin.js
+++ b/badApi/admin.js
@@ -5,7 +5,7 @@ const router = express.Router();
 const users = []; // Simulated user storage for the sake of example
 const usersInfo = [
   { username: 'user1', dob: '1990-01-01', address: '5, 3rd mainland Bridge', cardInfo: '1234-5678-9012-3456', children: ['Child1', 'Child2'], balance: 1000, role: 'user' },
-  { username: 'user2', dob: '1985-05-15', address: '7, Ghost street', cardInfo: '9876-5432-1098-7654', children: ['Child3'], balance: 500, role: 'user' },
+  { username: 'user2', dob: '1985-05-17', address: '7, Ghost street', cardInfo: '9876-5432-1098-7654', children: ['Child3'], balance: 500, role: 'user' },
 ];
 
 /**

From 93403f1bcadeb2e1247373d23643358abc613fb3 Mon Sep 17 00:00:00 2001
From: Badmus <badmusbodunrin@gmail.com>
Date: Sat, 28 Feb 2026 17:50:37 +0100
Subject: [PATCH 9/9] no wonder

---
 .github/workflows/ai-security-review.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ai-security-review.yml b/.github/workflows/ai-security-review.yml
index 241b92a..386ea24 100644
--- a/.github/workflows/ai-security-review.yml
+++ b/.github/workflows/ai-security-review.yml
@@ -18,7 +18,7 @@ jobs:
     permissions:
       contents: read
       pull-requests: write
-      # id-token: write
+      id-token: write
 
     steps:
       - name: Checkout PR
@@ -29,7 +29,7 @@ jobs:
       - name: Claude security review
         uses: anthropics/claude-code-action@v1
         with:
-          anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
+          # anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
           prompt: |
             REPO: ${{ github.repository }}
             PR NUMBER: ${{ github.event.pull_request.number }}