issues Search Results · language:Dune language:JavaScript language:JavaScript language:Python language:CSS language:Go
Filter by
48.1M results
Problem
/test-gate must not spin up servers and fan out test subagents for bundles that have no runtime-testable change (e.g.
ForgeDock dogfooding itself — markdown/spec-only). Without a triage gate, ...
enhancement
rapiercraft-forge[bot]
🤖 Автоматически обнаружена проблема
Файл: tasks/file_organizer.py
Тип: security
Серьёзность: high
Описание
The code uses shutil.move which can lead to a TOCTOU (Time-of-check-to-time-of-use) vulnerability ...
controller:security
priority:high
ivanm696
🤖 Автоматически обнаружена проблема
Файл: ml/pipeline.py
Тип: security
Серьёзность: high
Описание
The use of pickle for serialization is insecure as it can execute arbitrary Python code. This can lead ...
controller:security
priority:high
Final consolidation of the smaller cross-service copies.
- factory-secrets/factory-common: one canonical Bearer/secret pattern table + redact()/scan(), replacing AIFactory
security/scan_secrets.py ...
olafkfreund
- apps/backend/cfactory/store.py upsert_from_event (lines 283-420, 137 lines, deep nesting + embedded IntegrityError
retry): extract _apply_worker_progress, _apply_worker, _apply_terminal_or_scalar, ...
试了下重装插件,结果所有自定义面板图都空白了,找不到问题  ...
herijian1
Two god-files.
- apps/backend/cfactory/app.py (866 lines): create_app() (lines 227-863) is a ~640-line function inline-defining ~30
route handlers + CORS/key middleware + 7 dependency seams + 3 ...
Depends on the Factory status-taxonomy generation.
- Replace the 5 divergent status classifiers — store.py _TERMINAL_HINTS substring match (makes ready match already ,
lumps fail/error into terminal), ...
Security defect. apps/backend/cfactory/auth.py (KeyStore.authorize/scopes_for, lines 98-108) verifies API keys with a
plain dict lookup self._keys.get(key) — non-constant-time, timing-attack-exploitable ...
Depends on the Factory shared lint-config. CI (.github/workflows/test.yml) runs only pytest (backend) and tsc --noEmit +
vite build (frontend). There is NO ruff/mypy/pyproject.toml and NO ESLint anywhere ...
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.