b9dfb86260
Security hardening release addressing CodeQL and Dependabot alerts: - Fix stack trace exposure in error responses - Add SSRF protection with DNS resolution checking - Implement proper URL hostname validation (replaces substring matching) - Add centralized path sanitization to prevent path traversal - Fix ReDoS vulnerability in email validation regex - Improve HTML sanitization in validation utilities - Fix capability wildcard matching in auth utilities - Update glob dependency to address CVE - Add CodeQL suppression comments for verified false positives 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
40 lines
860 B
Markdown
40 lines
860 B
Markdown
---
|
|
name: Bug Report
|
|
about: Report a bug to help us improve GT AI OS
|
|
title: '[Bug] '
|
|
labels: bug
|
|
assignees: ''
|
|
---
|
|
|
|
## Describe the Bug
|
|
A clear and concise description of what the bug is.
|
|
|
|
## Steps to Reproduce
|
|
1. Go to '...'
|
|
2. Click on '...'
|
|
3. See error
|
|
|
|
## Expected Behavior
|
|
A clear and concise description of what you expected to happen.
|
|
|
|
## Actual Behavior
|
|
What actually happened instead.
|
|
|
|
## Screenshots
|
|
If applicable, add screenshots to help explain your problem.
|
|
|
|
## Environment
|
|
- **OS:** [e.g., macOS 14.0, Ubuntu 22.04]
|
|
- **Architecture:** [e.g., ARM64/Apple Silicon, x86_64]
|
|
- **Docker Version:** [e.g., 24.0.0]
|
|
- **GT AI OS Version:** [e.g., v2.0.33]
|
|
|
|
## Container Logs
|
|
If relevant, include logs from the affected container:
|
|
```
|
|
docker compose logs <service-name> --tail=50
|
|
```
|
|
|
|
## Additional Context
|
|
Add any other context about the problem here.
|