wooo/awoooi
1
1
Fork 0
Code Issues 2 Pull Requests 1 Actions 6 Packages Projects Releases Wiki Activity
Files
2af4dffcc6beb813f7ceba0af7268b75ff75e6c9
awoooi/apps/api
History
OG T 2af4dffcc6 fix(security): Architecture Review 修復 5 項高信心問題 
安全修復 (P0):
1. ssh_provider: 新增 _validate_param() 白名單驗證,防止 command injection
   - container_name/service/filter_name: [a-zA-Z0-9._-]{1,128}
   - compose_dir: 必須以 /opt/ 或 /srv/ 開頭,禁止 ..
   - domain: FQDN 白名單
   - tail/port/lines: int() 轉換 + 上下限夾緊
2. ssh_provider: known_hosts=None 改為讀 SSH_MCP_KNOWN_HOSTS_FILE 環境變數
   - 預設仍 None(內網快速啟動),但啟動時寫入 warning log
   - 設定文件:ops/runbooks/ssh-mcp-setup.md (待補)

模組化修復 (P1):
3. km_conversion_service: 移除 import 時的 ALERT_EVENT_TYPES.update() 副作用
   - ADR-071 event types 移入 alert_operation_log_repository.py 靜態集合
4. telegram_gateway: create_task() 改為 await + try/except
   - 避免 DB session 關閉後的競爭條件
   - KM 轉換失敗記錄 warning log,不中斷主流程
5. km_conversion_service: 新增頂層 try/except,錯誤一律 error log 後 re-raise

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-11 02:50:26 +08:00
..
apps/api/src/repositories
fix(api): 修復全部 lint 錯誤 (ruff --fix)
2026-03-26 16:06:20 +08:00
migrations
feat(adr-071): 告警通知四類型第一批 B/C/E/F/G/H 全實作
2026-04-11 02:24:20 +08:00
scripts
fix(flywheel): 四階段系統性修復 AUTO_REPAIR NO_MATCH 斷層
2026-04-10 11:04:56 +08:00
src
fix(security): Architecture Review 修復 5 項高信心問題
2026-04-11 02:50:26 +08:00
tests
fix(ci): B5 整合測試加 ssl=disable — asyncpg 預設嘗試 SSL 被 container 拒絕
2026-04-10 11:40:40 +08:00
.cd-trigger
chore: trigger CD deploy (warm-up + MinIO startup)
2026-04-05 01:00:31 +08:00
.env.example
feat: add all application source code
2026-03-22 18:57:44 +08:00
alert_rules.yaml
fix(flywheel): 四階段系統性修復 AUTO_REPAIR NO_MATCH 斷層
2026-04-10 11:04:56 +08:00
awoooi.db
feat: add all application source code
2026-03-22 18:57:44 +08:00
CHANGELOG.md
chore(api): trigger CD — Sprint 3+4+F deploy
2026-04-07 16:00:12 +08:00
docker-compose.test.yml
fix(ci): B5 整合測試 DinD 修正 — 用 host bridge IP + published port
2026-04-10 13:03:25 +08:00
Dockerfile
feat(rag): Dockerfile 加入 docs/ + .agents/skills/ — RAG 索引來源
2026-04-10 09:16:51 +08:00
k3s-prod.yaml
fix(api): 修復 34 個 Ruff lint 錯誤
2026-03-29 15:27:49 +08:00
models.json
feat(models): models.json v1.3 — 加入 ADR-067 五大 Ollama 應用設定
2026-04-10 22:16:09 +08:00
pyproject.toml
fix(ci): 補 pyyaml 依賴 + 同步 Sprint 5.1 Pydantic → TypeScript 型別
2026-04-08 17:06:44 +08:00
README.md
feat: add all application source code
2026-03-22 18:57:44 +08:00
requirements.txt
fix(llmops): 鎖定 langfuse SDK v2.x (v3.x/v4.x 均已移除 client.trace() API)
2026-04-02 00:23:29 +08:00

README.md

AWOOOI API

Reference in New Issue View Git Blame Copy Permalink