admin/aiagent
1
0
Fork 0
Code Issues 14 Pull Requests Actions Packages Projects Releases Wiki Activity

[中] 飞书验证Token硬编码在源码中 #97

New Issue
Closed
opened 2026-05-10 18:39:21 +08:00 by admin · 0 comments
admin commented 2026-05-10 18:39:21 +08:00
Owner
Copy Link

问题描述

backend/app/core/config.py 第96行,FEISHU_VERIFICATION_TOKEN 硬编码在源码中。该 Token 用于验证飞书回调请求的真实性。

涉及文件

  • backend/app/core/config.py:96

修复建议

改为从环境变量读取,不留默认值。

严重程度

中 - 安全配置问题

## 问题描述 backend/app/core/config.py 第96行,FEISHU_VERIFICATION_TOKEN 硬编码在源码中。该 Token 用于验证飞书回调请求的真实性。 ## 涉及文件 - backend/app/core/config.py:96 ## 修复建议 改为从环境变量读取,不留默认值。 ## 严重程度 中 - 安全配置问题
admin closed this issue 2026-05-10 18:46:35 +08:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
admin
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: admin/aiagent#97
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?