issues Search Results · language:Dune language:Python language:JavaScript language:CSS language:JavaScript language:Python
Filter by
42.2M results
🟡 MEDIUM — Unguarded Access from Internet of GitHub Actions Build Pipeline by VaultNote Source Repository via Push to Pipeline
| Field | Value |
| --- | --- |
| Adjusted Score | 5.75/10 |
| Category | ...
security
severity: medium
threagile:unguarded-access-from-internet@-79446221
threat-model
Luv1881
비전 LLM 에 이미지를 첨부해 분석 → 프롬프트 추출. 추천안대로(단발+멀티턴, admin 토글 게이팅, 다중 이미지 최대 4, 멀티턴 첨부 저장).
흐름
업로드(imageId) → 백엔드가 base64 로 읽어(장변 1536 리사이즈) LLM 메시지에 비전 콘텐츠 주입 (OpenAI image_url / Gemini inline_data) → 분석 결과 ...
iceemperor-gcempire
🟡 MEDIUM — Unguarded Access from Internet of AWS ECR Container Registry by GitHub Actions Build Pipeline via Push Image to Registry
| Field | Value |
| --- | --- |
| Adjusted Score | 5.75/10 |
| Category ...
security
severity: medium
threagile:unguarded-access-from-internet@-4b0ed7c2
threat-model
reinoyk🟠 HIGH — Unguarded Access from Internet of API Server by AWS API Gateway via Route to ECS API
| Field | Value |
| --- | --- |
| Adjusted Score | 7.5/10 |
| Category | unguarded-access-from-internet | ...
security
severity: high
threagile:unguarded-access-from-internet@-a90b6563
threat-model
EHxuban11问题摘要
Hermes Agent 的 terminal 工具无法传递 OSC 1337 内联图像协议,导致无法在 iTerm2 等支持内联图像的终端中显示图片。
环境信息
- 操作系统: macOS 26.5
- 终端: iTerm2(支持 OSC 1337 / imgcat)
- imgcat 路径: /Applications/iTerm.app/Contents/Resources/utilities/imgcat ...
qige96
🟡 MEDIUM — Mixed Targets on Shared Runtime named Docker Host might enable attackers moving from one less valuable target to a more valuable one
| Field | Value |
| --- | --- |
| Adjusted Score | 5.25/10 ...
security
severity: medium
threagile:mixed-targets-on-shared-runtime-a0379e55
threat-model
Broken links report:
Error: Input URL required. Use --help for more options
Error: Input URL required. Use --help for more options
Error: Input URL required. Use --help for more options
github-actions[bot]
Project Name / Day Number
Wordle
Bug Description
There is a critical flaw in the keyboard and row transition logic. When a user presses the Enter key, the game fails to
properly transition the active ...
bug
Kazuma-Codes
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.