Skip to content

issues Search Results · language:Dune language:TypeScript language:JavaScript language:JavaScript language:Java

Filter by

49.4M results  (679 ms)

49.4M results

decolua/9router
fix(stability): avoid temp directory cleanup race conditions (AUDIT-012)

Temp files and directories cleanup has race conditions that can trigger exceptions or fail. Location: bulk-accounts/core/browser.py.
  • itsramaa
  • 1
  • Opened 
    17 minutes ago
  • #1967

decolua/9router
fix(stability): cancel browser task on timeout (AUDIT-011)

Browser sessions / task not cancelled properly on timeout, causing resource leak. Location: bulk-accounts/core/worker.py.
  • itsramaa
  • 1
  • Opened 
    17 minutes ago
  • #1966

decolua/9router
fix(security): resolve race condition in retry process tracking (AUDIT-001)

Unsynchronized retry_procs and retry_tasks list access causes potential zombie processes and memory leaks. Fix: Protect list access using an asyncio.Lock. Location: bulk-accounts/srv/state.py and bulk-accounts/srv/handlers.py. ...
  • itsramaa
  • Opened 
    17 minutes ago
  • #1965

decolua/9router
fix(security): resolve temp file race and predictable names (AUDIT-005)

Temp accounts file in bulk harvest has predictable name and can persist/leak. Fix: Use random secrets.token_hex names and delay cleanup until process terminates. Location: bulk-accounts/srv/handlers.py. ...
  • itsramaa
  • Opened 
    17 minutes ago
  • #1964

mateaix/mateclaw
[警示] 就像往气球里灌水

刷 Star 就像往气球里灌水——看起来越来越大,但里面没有空气(真实价值),而且随时可能炸掉。 Star 从 516 涨到 5468 只用了 7 天。用户名是字母加数字的固定格式。 你的气球已经被戳破了一个洞。建议趁还没有完全爆掉之前,主动放掉里面的水(清理假 Star),换成真正的空气(真实用户)。 但愿我的话没有白说。 违规事实成立后,举报随即送达 GitHub,违规人气流量将被清空,项目访问将被关停。 ...
  • hjhuang123
  • Opened 
    17 minutes ago
  • #397

nalietha/CupCheck
slideshow

A vaultstein show with filters from creators, artists, favorites et cetera
  • nalietha
  • Opened 
    17 minutes ago
  • #76

FGA0138-MDS-Ajax/2026.1-T03-Parnas
Tarefa 4 — Criar tela de validação de PIN do admin

Página sugerida: /admin/pin Fluxo: Login como admin ↓ Redireciona para /admin/pin ↓ Admin informa PIN ↓ Se correto, acessa /admin Critérios de aceite: - [ ] Admin precisa ...
frontend
  • arthur-mariani
  • Opened 
    17 minutes ago
  • #183

decolua/9router
fix(security): prevent TOCTOU race in daemon lock file (AUDIT-004)

Multiple harvest instances can run simultaneously due to TOCTOU vulnerability in lock file handling. Fix: Use atomic file creation flags (O_EXCL). Location: bulk-accounts/run.py.
  • itsramaa
  • Opened 
    17 minutes ago
  • #1963

yuanzhongqiao/printfilm
离谱到不知从何说起

本人是安全工程师,同事在群里分享了这个项目的链接,说发现了个好东西。 我反复确认了好几次,甚至以为是 GitHub 出了什么 bug。但不是的,那些空壳号是真实存在的,而且数量多得令人发指。 具体数据:这些账号的创建时间集中在 8 天内。每个账号唯一的活动就是给这个仓库点了颗星。 我之所以这么震惊,是因为这个项目看起来并不是完全没有价值的。为什么要用这种方式毁掉自己的信誉?明明可以靠时间和内容慢慢积累,偏偏选了一条最短也最危险的路。 ...
  • blueibia
  • Opened 
    17 minutes ago
  • #21

decolua/9router
fix(security): strip passwords from WebSocket broadcasts (AUDIT-002)

Account passwords could leak via WebSocket or API responses. Create SafeAccount type and strip passwords. Location: bulk-accounts/srv/handlers.py and bulk-accounts/core/safe_types.py.
  • itsramaa
  • Opened 
    17 minutes ago
  • #1962
Issue origami icon

Learn how you can use GitHub Issues to plan and track your work.

Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub Issues
ProTip! Restrict your search to the title by using the in:title qualifier.
Issue origami icon

Learn how you can use GitHub Issues to plan and track your work.

Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub Issues
ProTip! Restrict your search to the title by using the in:title qualifier.