issues Search Results · language:Dune language:Python language:Python language:JavaScript linked:pr language:Java
Filter by
5.9M results
現象
FakerStrategy(deterministic=True) のデフォルト構成で、salt がソース公開の固定文字列 fuseji-default-salt-please-override のままになる。決定モードでは surface
→ fake が sha256(salt + : + surface) で完全に決まるため、利用者が salt を上書きしないと攻撃者は『fake 値 ...
bug
security
sserada
現象
Entity は @dataclass(frozen=True, slots=True) で自動 repr が text フィールド(生 PII)をそのまま文字列化する。MaskResult.entities は tuple[Entity,
...] のため、利用者が logger.info( result=%s , result) / FastAPI の 500 エラー時 stack trace ...
bug
core
security
現象
POST /detect の DetectResponse.entities[].text に検出した PII surface(メール / 電話 / マイナンバー疑い等)が平文で含まれて返る。fuseji の設計原則『detect,
never retain』『in-flight masking』に正面から反する経路で、ログ集約 / APM / Web プロキシ / クライアント devtools ...
bug
security
server
現象
FakerStrategy._build_faker(surface) は呼ばれるたびに Faker(self.locale) を新規構築し seed_instance する。Faker の locale ロード(ja_JP
provider 一式の import + provider registry 構築)は数 ms 〜十数 ms 単位で、PERSON / EMAIL 検出のたびに発生する。 ...
bug
performance
Objective
Create a secure global intelligence exchange framework for cross-border and cross-industry collaboration.
Problem Statement
Threats operate globally, while intelligence remains fragmented ...
type:security
saidai-bhuvanesh
概要
JpAddressRecognizer._ADDRESS_PATTERN で _CITY_PATTERN = [一-鿿...]+(?:市|区|町|村|郡) と _PLACE_NAME_PATTERN = [一-鿿...]*
が同じ文字クラスを連続 greedy 消費するため、『都道府県 + 市/区/町/村/郡 が現れない長い漢字列』のような pathological 入力で finditer ...
performance
recognizer
security
Objective
Build a marketplace where organizations can publish, discover, subscribe to, and exchange intelligence assets.
Problem Statement
Organizations repeatedly create intelligence assets that could ...
triage
現象
JpAddressRecognizer._ADDRESS_PATTERN の末尾 _PLACE_NAME_PATTERN(漢字/かなのゼロ以上)が greedy で、住所の直後に続く漢字テキストを Entity
に呑み込む。Entity.end が文末まで伸び、無関係な後続テキストが住所として誤マスクされる。
再現手順
1. main HEAD で
2. 下記の再現コードを実行
3. ...
bug
recognizer
Objective
Unify SOC, Fraud, AML, Risk, Compliance, and Governance operations into a single collaborative operational environment.
Problem Statement
Operational teams currently work in isolated systems ...
type:security
Problem
MarkdownHeaderTextSplitter can preserve Markdown header hierarchy in Document.metadata, but chunks do not currently
carry their source line range. This makes it harder for downstream RAG applications ...
external
gyx09212214-prog
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.