fix(low-info): Resolve 8 LOW/INFO audit findings

- Remove stale TODO in ScanSettingsView (already using correct method)
- Document hostname resolution skip rationale in IntegratedDashboardViewV3
- Document disabled auto-start toggle in ShadowAIMonitorView
- Document certificate auto-trust security implications in UniFiController
- Remove unused reverseIPAddress() call in CustomDNSResolver
- Add send() error handling in ServiceVersionScanner
- Add MARK section comments for Xcode navigation in SecurityDashboardView
- Remove outdated TODO in SettingsView

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Author: kochj23

NMAPScanner/CustomDNSResolver.swift

@@ -68,8 +68,7 @@ class CustomDNSResolver: ObservableObject {
 
     /// Query a specific DNS server for PTR record (reverse DNS)
     private func queryDNS(ipAddress: String, dnsServer: String) async -> String? {
-        // Convert IP to reverse DNS format (e.g., 192.168.1.1 -> 1.1.168.192.in-addr.arpa)
-        let _ = reverseIPAddress(ipAddress)
+        // The dig command with -x handles reverse DNS formatting internally
 
         // Use dig command for custom DNS query
         let task = Process()

NMAPScanner/IntegratedDashboardViewV3.swift

@@ -1527,9 +1527,10 @@ class IntegratedScannerV3: ObservableObject {
         print("🔧 createBasicDevice: Attempting hostname resolution via custom DNS")
         var hostname: String? = nil
 
-        // DNS resolution must be done synchronously here, but we'll do it async later
-        // For now, skip to avoid blocking
-        // TODO: Refactor to async hostname resolution during device creation
+        // NOTE: Hostname resolution is skipped here to avoid blocking the main thread.
+        // The legacy resolveHostname() used DispatchSemaphore which deadlocks on MainActor.
+        // Future optimization: resolve hostnames in a background TaskGroup after device
+        // creation completes, then update devices with resolved names asynchronously.
         // hostname = await dnsResolver.resolveHostname(for: host)
 
         // Get manufacturer from MAC address

NMAPScanner/ScanSettingsView.swift

@@ -104,7 +104,6 @@ struct ScanSettingsView: View {
 
     private func startScan() {
         Task {
-            // TODO: Update to use correct scanning method
             await scanner.scanPingSweep(subnet: subnet)
             dismiss()
         }

NMAPScanner/SecurityDashboardView.swift

@@ -46,7 +46,7 @@ struct SecurityDashboardView: View {
     var body: some View {
         ScrollView {
             VStack(alignment: .leading, spacing: 30) {
-                // Header
+                // MARK: - Header & Controls
                 HStack {
                     VStack(alignment: .leading, spacing: 4) {
                         Text("Security & Traffic Dashboard")
@@ -509,6 +509,7 @@ struct SecurityDashboardView: View {
                     .padding(.horizontal, 40)
                 */
 
+                // MARK: - Placeholder
                 // Placeholder for advanced visualizations
                 Text("Advanced security visualizations coming soon!")
                     .font(.title2)
@@ -525,6 +526,7 @@ struct SecurityDashboardView: View {
         .onDisappear {
             stopMonitoring()
         }
+        // MARK: - Sheet Presentations
         .sheet(isPresented: $showProtocolDetails) {
             if let protocolName = selectedProtocol {
                 ProtocolDetailsView(

NMAPScanner/ServiceVersionScanner.swift

@@ -76,7 +76,11 @@ class ServiceVersionScanner {
 
                 // Send probes for specific services
                 if let probe = self.getProbeForPort(port) {
-                    let _ = send(sockfd, probe, probe.count, 0)
+                    let bytesSent = send(sockfd, probe, probe.count, 0)
+                    if bytesSent < 0 {
+                        continuation.resume(returning: nil)
+                        return
+                    }
                 }
 
                 // Read response

NMAPScanner/SettingsView.swift

@@ -263,8 +263,6 @@ struct SettingsView: View {
                     // New Features Section
                     SettingsSection(title: "Advanced Features") {
                         VStack(alignment: .leading, spacing: 24) {
-                            // TODO: Implement these views in future updates
-
                             // Notifications Link
                             NavigationLink(destination: NotificationSettingsView()) {
                                 HStack {

NMAPScanner/ShadowAIMonitorView.swift

@@ -862,7 +862,7 @@ struct ShadowAISettingsView: View {
                     }
 
                     Toggle("Auto-start monitoring on launch", isOn: .constant(false))
-                        .disabled(true) // TODO: Implement
+                        .disabled(true) // Disabled: requires persistent launch-agent configuration to auto-start Shadow AI monitoring
                 }
 
                 Section("Notifications") {

NMAPScanner/UniFiController.swift

@@ -578,8 +578,10 @@ class UniFiController: ObservableObject {
 
         SecureLogger.log("Certificate trust prompt for \(host): CN=\(commonName), FP=\(fingerprint)", level: .warning)
 
-        // TODO: Show actual user prompt in UI
-        // For now, auto-accept but log it
+        // SECURITY: Auto-trusting certificates bypasses TLS verification.
+        // A proper implementation should present a SwiftUI confirmation dialog showing
+        // the certificate common name and fingerprint, allowing the user to accept or reject.
+        // Until that UI is built, all UniFi controller certificates are auto-trusted.
         SecurityAuditLog.log(event: .certificateTrusted, details: "Auto-trusted certificate for \(host) (pending UI implementation)", level: .security)
 
         return true  // Auto-trust for now (better than blind trust)