issues Search Results · language:Edge language:Python linked:pr language:PHP
Filter by
3.1M results
概要
診断 R2-6(多層防御 / secret 依存)。OrgGuardMiddleware は token の org クレームが null のとき role を確認せず cross-tenant を許可する。鍵漏洩時に
{role:admin, org:null} 等の偽造トークンが OrgGuard を素通りする余地。
対応
- org === null の免除を role === ...
hideyukiMORI
Summary
Two notes tools accept an enum-like string parameter but silently mishandle unsupported values instead of reporting an
error — so a caller that guesses the wrong value gets a wrong-but-silent ...
bug
michaelkrauty
Symptom
In the 2026-05-30 10:53 drain, every deferred PR (Talos #169-172, dispatch #123-127, patent-general #171) failed with
pytest errors traced through assemblyzero-tools-hxm2LnMb-py3.14 — AssemblyZero ...
martymcenroe
概要
診断 R2-3/R2-4/R2-5。
- 管理API RecordPaymentHandler が idempotency_key を読まず、再送で入金が二重計上される(実地で同一キー3回→payments +3)。
- 不正な paid_at 文字列で HTTP 500(未処理例外)。
- paid_at の未来日も受理(会計整合性)。
対応
- RecordPaymentUseCase ...
Goal
Assess Arena-Rosnav as a source-side learned-navigation benchmark stack before any Robot SF adapter or planner-import
work.
Background
Issue #1620 ranked Arena-Rosnav as the only uncovered external ...
evidence:proposal
priority: low
research
resource:external-data
type:analysis
ll7
Subtasks
- реализовать Base
- добавить:
- id
- created_at
- updated_at DoD
- все модели наследуются от Base
evgenijovchintsev
The Supported Models table in the chart README was generated from an obsolete models. name .serverType schema
assumption, so it emitted a spurious defaultEngine row per model under a bogus ### Unknown ...
Shield CI
vcankovicTT
kldaniil目的
フロントの「ロジックを持つが直接テストされていないユニット」に UT を追加。フォーム/ページ経由で間接的にしかカバーされていない純粋ロジックを直接固定する。意味の薄い presentational
primitives(Button/Input/Text/Stack/Spinner/Select)やフォーム hooks(フォームテストで網羅済み)は対象外。
対象
- entities/*/model: ...
Summary
PR #903 merged [mcp_servers.codex_apps] with startup_timeout_sec = 120 into the committed Codex config template. This
setting was deliberately removed in #871 (Closes #867) because it caused Codex ...
bug
codex
layer:p3-harness
threat:intel-needed
type:fix
tvna
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.