Skip to content

chore: update security baseline from 2026-04-11 sweep#97

Open
edictum-reviewer[bot] wants to merge 1 commit intomainfrom
chore/security-sweep-20260411
Open

chore: update security baseline from 2026-04-11 sweep#97
edictum-reviewer[bot] wants to merge 1 commit intomainfrom
chore/security-sweep-20260411

Conversation

@edictum-reviewer
Copy link
Copy Markdown
Contributor

@edictum-reviewer edictum-reviewer bot commented Apr 11, 2026

Automated update from weekly security sweep.

9 new findings added to baseline.json (SWEEP-009 through SWEEP-017). See issue #96 for full report.

No regressions detected in previously fixed findings.

@github-actions @claude
chore: update security baseline from 2026-04-11 weekly sweep
52ea095 
9 new findings added (SWEEP-009 through SWEEP-017):
- SWEEP-009: Notification config dict unbounded (medium)
- SWEEP-010: Approval tool_args unbounded (medium)
- SWEEP-011: EventPayload.payload inner dict unbounded (low)
- SWEEP-012: EvaluateRequest.tool_args unbounded (low)
- SWEEP-013: Webhook URL exposed unredacted (low)
- SWEEP-014: Slack interactions all-tenant scan — DoS amplification (high)
- SWEEP-015: Discord interactions all-tenant scan (medium)
- SWEEP-016: No per-tenant SSE connection limit (low)
- SWEEP-017: PushManager set mutation latent hazard (low)

No regressions in previously fixed findings.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@edictum-reviewer edictum-reviewer bot added the security Security-related issues label Apr 11, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

security Security-related issues

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants