pullrequests Search Results · language:Edge language:Python language:JavaScript language:JavaScript language:Python language:HTML
Filter by
177M results
本次PR说明
- 负责的环节: 安全整改(输入校验 + 路径安全)
- 涉及的模块: 成员代码/fengyongjia/watermarkLSB.py(改进的LSB图像隐写系统)
识别的主要安全风险
1. R-01 路径硬编码与路径穿越(中危):原代码 Image.open() 和 stego_img.save()
使用硬编码相对路径(buptgray.bmp、buptgraystego1.bmp),未做任何路径规范化校验。若将此函数暴露给外部调用(如 ...
lonelylongpoem
What why
Lets a sandboxed agent use non-HTTP credentialed CLIs (psql, DB-backed pytest) and credentialed MCP servers without the
secret entering the agent s ambient env or any file it can read. This ...
size/XL
HariKrishnan-PH
Swaps the PGUP AI P mark for the J-Bot B logo as the site brand mark and regenerates the derived icons so the favicon
matches.
Changed
- assets/logo.png → new J-Bot 512×512 mark (used in the header/footer ...
jingbof
Promotes dev integration branch to main. Triggers the dev URL deploy and gates prod behind the Production environment
approval.
billmj
Summary
- Adds a new optional step 5 to the questionnaire titled ** השראה לחתונה (אופציונלי) ** with a single URL field; the
user can skip it entirely or paste any valid link (Pinterest, Instagram, ...
lamarhashimeh
Summary
- Extracted common CSS (resets, variables, base styles, .crumb, footer) into a shared styles.css; each page now has
only page-specific rules
- Extracted inline EarnIt SVG icon to earnit/icon.svg ...
mikamartin
[!IMPORTANT] This is an automatic PR generated by Vercel to help you with patching efforts. We can t guarantee it s
comprehensive, and it may contain mistakes. Please review our guidance before merging ...
vercel[bot]
This is part of a migration to remove install.yml apps that are hardcoded in contentctl-ng s install.yml and move them
into the scope of the security_content repo for clarity and control.
pyth0n1c
mobbcitestjob8We ve been dealing with test failures (e.g. in #213) because the vcs_versioning module is not found in our distribution
package tests. This commit implements a hopefully-temporary hack of adding vcs-versioning ...
diazona