-
Notifications
You must be signed in to change notification settings - Fork 32
Pull requests: GenAI-Security-Project/finbot-ctf
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
Fix(systemutils): reject credential theft patterns in execute_script
#475
opened Apr 10, 2026 by
Jean-Regis-M
Contributor
Loading…
12 tasks done
Fix(finstripe): resolve duplicate payment on same invoice_id with idempotency guard
#474
opened Apr 10, 2026 by
Jean-Regis-M
Contributor
Loading…
Fix(chat): remove internal MCP tool name from VendorChatAssistant RULES
#473
opened Apr 10, 2026 by
Jean-Regis-M
Contributor
Loading…
14 tasks done
Fix(findrive): reject empty/whitespace content in upload_file before DB write
#472
opened Apr 10, 2026 by
Jean-Regis-M
Contributor
Loading…
8 tasks done
Improve profile settings validation feedback and social link validation
#470
opened Apr 8, 2026 by
nitinawari
Contributor
Loading…
feat(ctf): Shadow Architect — admin portal tool description poisoning challenge
#468
opened Apr 8, 2026 by
steadhac
Contributor
Loading…
5 tasks
feat(ctf): Shell Injection — run_diagnostics command injection challenge
#467
opened Apr 7, 2026 by
steadhac
Contributor
Loading…
4 tasks
fix(ctf): align profile/share hint-cost scoring with stats endpoint
#466
opened Apr 6, 2026 by
nitinawari
Contributor
Loading…
Fix(finstripe): reject non-positive amounts in create_transfer before DB insert
#464
opened Apr 5, 2026 by
Jean-Regis-M
Contributor
Loading…
8 tasks done
Fix(finstripe): resolve missing invoice amount validation in create_transfer
#463
opened Apr 5, 2026 by
Jean-Regis-M
Contributor
Loading…
8 tasks done
feat: Add CD001 - OrchestratorAgent Unit Tests (CD001, #27)
#461
opened Apr 4, 2026 by
steadhac
Contributor
Loading…
Fix(finstripe): validate vendor_account against registered bank account before transfer
#458
opened Apr 3, 2026 by
Jean-Regis-M
Contributor
Loading…
10 tasks done
Fix(chat): resolve response_complete event/DB inconsistency on attachments
#457
opened Apr 3, 2026 by
Jean-Regis-M
Contributor
Loading…
6 tasks done
feat: Add CHAT-ASSIST — VendorChatAssistant & CoPilotAssistant Unit Tests for for Chat Streaming Layer Summary
#456
opened Apr 3, 2026 by
steadhac
Contributor
Loading…
Fix(chat): resolve None vendor_id silently dispatched to orchestrator
#455
opened Apr 2, 2026 by
Jean-Regis-M
Contributor
Loading…
7 tasks done
Fix(findrive): reject empty/whitespace content in upload_file before DB write
#454
opened Apr 2, 2026 by
Jean-Regis-M
Contributor
Loading…
8 tasks done
fix:Make vendor CTF sidecar navigation fully clickable
#453
opened Apr 2, 2026 by
nitinawari
Contributor
Loading…
Fix(chat): resolve stale system-prompt date with explicit per-call evaluation
#451
opened Apr 1, 2026 by
Jean-Regis-M
Contributor
Loading…
4 tasks done
Fix(systemutils): resolve missing filepath allowlist validation in read_config
#450
opened Apr 1, 2026 by
Jean-Regis-M
Contributor
Loading…
7 tasks done
Fix(findrive): resolve missing negative-limit guard in search_files
#449
opened Apr 1, 2026 by
Jean-Regis-M
Contributor
Loading…
5 tasks done
Fix(chat): resolve missing None-guard in _call_start_workflow crashing on both fields absent
#448
opened Apr 1, 2026 by
Jean-Regis-M
Contributor
Loading…
10 tasks done
Fix(chat): resolve CAPABILITIES/RULES tool-name contradiction with minimal prompt patch
#447
opened Mar 31, 2026 by
Jean-Regis-M
Contributor
Loading…
Fix(finstripe): resolve missing cross-vendor ownership guard in create_transfer
#446
opened Mar 31, 2026 by
Jean-Regis-M
Contributor
Loading…
Fix(finstripe): validate invoice ownership against vendor_id before transfer
#445
opened Mar 31, 2026 by
Jean-Regis-M
Contributor
Loading…
6 tasks done
FIX: Handle None description in _call_start_workflow
#441
opened Mar 31, 2026 by
BhagyasriUddandam
Loading…
Previous Next
ProTip!
no:milestone will show everything without a milestone.