issues Search Results · language:Dune language:TypeScript language:Python language:Java language:Python linked:pr
Filter by
7.5M results
Frontend Login and Bearer Auth
배경
백엔드가 /api/v1/wallets/**를 JWT 필수로 보호하면서 React 화면이 토큰 없이 호출해 401을 받는다. access token은 60분 만료되나 갱신 수단이 없다.
목표
- memberId 로그인으로 JWT를 발급받아 sessionStorage에 저장한다.
- wallet ...
enhancement
IMWoo94
End-User JWT Authentication and Wallet Ownership
배경
/api/v1/wallets/**가 인증 없이 열려 있고 서비스가 walletId만으로 동작해, 임의 사용자가 타인 지갑을 충전/송금/조회/원장조회할 수 있는 IDOR가 있었다. 엔드유저 인증 체계도 없었다.
목표
- memberId 기반 JWT로 엔드유저를 ...
enhancement
Summary
src/judge-smoke.ts mixed CLI wiring, scenario catalog, attachment parsing, evidence package building, validation, and
fixture execution.
Expected
Split judge smoke into focused modules while ...
huanghuoguoguo
This issue is created automatically to track contribution activity.
Updation
PareekshithPalat
Action: fix Target: Address HIGH severity review findings: (1) wire up auth_overwrite_role_on_login config flag in
federated login path so it actually controls role mutation on login, (2) change map_roles ...
kaizen:running
SevFle
Summary
CodeQL alert #98 (js/missing-rate-limiting, high severity) flags GET /api/kg/chat/history in
src/channels/http/routes/kg.ts: it performs a database read (SELECT ... FROM working_memory) but is ...
resilience
security
size:XS
josephfung
Parent: #923 (Epic #912 P2 E2) 선행 PR: #935 (infra+baseline) → #952 (3 cell 1차) → #983 (3 cell 2차) → #996 (3 cell 3차)
Why
PR #996 머지 후 매트릭스에는 10 cell이 등록된 상태. README 후속 큐에서 가장 임팩트 있는 미커버 cell 3건을 데이터 ...
test
handokei
Summary
The central:policy translation silently mistranslates AOS 8 web-cc-category session-ACL rules. A rule like user any
web-cc-category malware-sites deny is translated to a blanket RULE_ANY (any→any) ...
nowireless4u
概要
既存の Realtime 音声チャット(gpt-realtime / Foundry GA /openai/v1/realtime)に function calling(tool 呼び出し)連携を追加する。第一弾として
知識検索(knowledge search)ツール1つのみを音声エージェントから呼べるようにし、検索結果を踏まえた音声応答を実現する。
動機・背景
Concierge Chat ...
ks6088ts
Action: fix Target: Replace regex-based HTML sanitizer in src/lib/templates/sanitize.ts with DOMPurify — install
isomorphic-dompurify, rewrite sanitizeHtml to use DOMPurify.sanitize() with ALLOWED_TAGS/ALLOWED_ATTR/ALLOWED_URI_REGEXP ...
kaizen:running
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.