6de10cb073
Some checks failed
CD Pipeline / build-and-deploy (push) Has been cancelled
確認 critic + debugger + vuln-verifier 報告中尚未驗收的 4 修復都已實裝在 production, 並補對應 dedicated tests: vuln #4 — fusion prompt injection 防禦: - score_with_elephant 內 _sanitize 剔除控制字元 + 截長至 max_len - alert_name(100) / evidence(...) / proposal(300) 三層 sanitize - 驗證:1000 個 'A' 攻擊 payload → prompt 內 'A' < 200,控制字元 \\x00\\x1b\\x02 全剔除 debugger B14 — Gemini quota fail-closed: - ollama_failover_manager._check_gemini_quota except branch - Redis 異常時 return False(非 fail-open),費用安全 > 服務可用性 - best-effort 呼叫 alert_gemini_quota_exceeded 通知運維 debugger B25/B26 — auto_repair drain_pending_tasks: - AutoRepairService._pending_tasks (set) + drain_pending_tasks(timeout=60.0) - main.py shutdown 已接 _repair_svc.drain_pending_tasks() 呼叫 - K8s rolling restart 時 fire-and-forget tasks 不丟失 debugger B8 — governance ≥3 failures alert: - run_self_check 後聚合 failed_checks - ≥3 項失敗 → self._alert("governance_self_failure", ...) 觸發 - payload 含 failed_checks list + total_checks=4 + errors dict Tests: 10/10 PASSED (vuln 3 + B14 2 + drain 2 + governance 3) Note: 此 commit 純補測,所有 4 修復代碼上 commit 已 in production 仍待: 1167+ CD runs 確認 deploy 成功 Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>