issues Search Results · language:Dune language:JavaScript language:Python language:JavaScript language:JavaScript linked:pr
Filter by
4.5M results
Context (from a real onboarding + first-use session): Set up my chief of staff installed the skill only as a personal
Claude Code skill in ~/.claude/skills/. The user later opened Cowork and it reported ...
kanmwangi2
Why
A storage object GET with a path-traversal key (../../etc/passwd, URL-encoded) returns 502 rather than a clean 400/404.
No data is leaked (no escape), but a 5xx for malicious client input is an error-handling ...
bug
cap:storage
openspec
P2
andrea-mucci
Why
The live workspace environment catalog is dev | staging | prod | sandbox | preview, but the published OpenAPI
WorkspaceEnvironment enum is dev | sandbox | staging | prod (no preview). A client generated ...
bug
cap:openapi-sdk
cap:tenant-provisioning
openspec
P2
Why
FLOW_TRIGGER_SECRET_KEY defaults to the hardcoded constant flow-trigger-dev-master-key when unset
(flow-trigger-registry.mjs:401). This key AES-256-GCM-encrypts webhook-trigger HMAC secrets at rest. ...
bug
cap:secrets
cap:workflows
openspec
P2
security
Why
The only BYOK surface (per-workspace embedding provider) has no working public route. PUT/GET
/v1/workspaces/{id}/embedding-provider return 404 NO_ROUTE. The handler exists in the executor
(apps/control-plane/src/runtime/server.mjs:401) ...
bug
cap:database
cap:gateway
openspec
P2
Why
Two concurrent POST /v1/tenants/{id}/workspaces with the same slug race: exactly one succeeds (good — atomicity
preserved by a unique constraint) but the loser returns 500 with the raw Postgres error ...
bug
cap:openapi-sdk
cap:tenant-provisioning
openspec
P2
Why
The per-execution flow auth token (an HMAC bearer credential the worker validates to authorize data-plane activities) is
written into the Temporal workflow memo with encoding json/plain — i.e. unencrypted. ...
bug
cap:secrets
cap:workflows
openspec
P2
security
Why
The FerretDB/document data plane isolates documents by tenantId only, never by workspaceId. Two workspaces
(projects/stages — e.g. dev vs prod) of the same tenant that use the same database+collection ...
bug
cap:document-store
cap:tenant-isolation
openspec
P1
security
tenant-isolation
What to build
On the History detail page, change how a Well s two Channel Calls aggregate into a single result. Two behaviour changes,
both in aquila_web/static/history_detail.js:
1. Well Verdict precedence ...
enhancement
ready-for-agent
jackhu23
Was comparing the balance and price submission paths and noticed an inconsistency.
RocketNetworkBalances.submitBalances checks the submit frequency from getSubmitBalancesFrequency() before allowing an ...
Sertug17
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.