wooo/awoooi

Files

History

OG T 78a8d3dfa5 fix(api): ansible 控制節點加白名單驗證，防環境變數繞過 (Re-Review Important)

首席架構師 Re-Review 指出: ANSIBLE_CONTROL_HOST 來自環境變數 (ConfigMap)，
若 ConfigMap 被篡改可繞過 SSH_TARGET_WHITELIST。
在 _execute_ansible() 開頭加 validate_ssh_target_host(host) 閉環。

Re-Review 評分: 91/100 ✅ 通過

Co-Authored-By: Claude Haiku 4.5 <noreply@anthropic.com>

2026-04-07 11:13:49 +08:00

..

apps/api/src/repositories

fix(api): 修復全部 lint 錯誤 (ruff --fix)

2026-03-26 16:06:20 +08:00

fix(phase26): 打通 Incident→DB→KM 完整鏈路 + namespace 修正

2026-04-06 11:46:05 +08:00

fix(e2e): 修正 HMAC Header 名稱 X-Webhook-Signature → X-Signature-256

2026-03-29 21:16:50 +08:00

fix(api): ansible 控制節點加白名單驗證，防環境變數繞過 (Re-Review Important)

2026-04-07 11:13:49 +08:00

fix(api): Sprint 3 P0-1/P0-2/P0-3/P0-4 Critical Security Fixes

2026-04-07 11:09:45 +08:00

.cd-trigger

chore: trigger CD deploy (warm-up + MinIO startup)

2026-04-05 01:00:31 +08:00

.env.example

feat: add all application source code

2026-03-22 18:57:44 +08:00

awoooi.db

feat: add all application source code

2026-03-22 18:57:44 +08:00

Dockerfile

ci(cd): 首席架構師 Review Phase 25 全批修正 (C1-C4 / S1-S4 / I1-I4)

2026-04-05 12:42:37 +08:00

k3s-prod.yaml

fix(api): 修復 34 個 Ruff lint 錯誤

2026-03-29 15:27:49 +08:00

models.json

fix(nvidia): timeout 60s→30s，NVIDIA 第一保免費，失敗轉 Gemini

2026-04-01 16:05:19 +08:00

pyproject.toml

fix(llmops): 鎖定 langfuse SDK v2.x (v3.x/v4.x 均已移除 client.trace() API)

2026-04-02 00:23:29 +08:00

README.md

feat: add all application source code

2026-03-22 18:57:44 +08:00

requirements.txt

fix(llmops): 鎖定 langfuse SDK v2.x (v3.x/v4.x 均已移除 client.trace() API)

2026-04-02 00:23:29 +08:00

README.md

AWOOOI API