bot-bottle

didericis/bot-bottle

Fork 0

Commit Graph

Author	SHA1	Message	Date
didericis	ab528d9163	fix(types): replace assertIsNotNone with assert for pyright narrowing test / unit (push) Successful in 38s Details test / integration (push) Successful in 51s Details Update Quality Badges / update-badges (push) Successful in 1m11s Details lint / lint (push) Successful in 1m30s Details assertIsNotNone doesn't narrow Optional types; bare assert does. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-06-06 00:59:26 -04:00
didericis-claude	abcb336e7c	fix(dlp): rework naive injection to proximity-based disclosure+jailbreak lint / lint (push) Failing after 1m24s Details test / unit (pull_request) Successful in 30s Details test / integration (pull_request) Successful in 44s Details Token detection is already handled by the token_patterns detector running separately — calling it again from scan_naive_injection was redundant. New logic: - Warn on any disclosure phrase - Warn on any jailbreak phrase - Block when both appear within 500 chars of each other Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-06-05 20:34:21 +00:00
didericis-claude	726713d081	feat(egress): implement PRD 0053 — DLP addon with Gateway API matches lint / lint (push) Failing after 1m43s Details test / unit (pull_request) Successful in 40s Details test / integration (pull_request) Successful in 50s Details Replace path_allowlist with Gateway API HTTPRoute match vocabulary (paths, methods, headers with AND/OR semantics) and add DLP scanning to the egress proxy: - Token pattern detection (AWS, GitHub, Anthropic, OpenAI, Stripe, JWT) - Known secret detection (EGRESS_TOKEN_* with base64/URL/hex variants) - Naive prompt injection detection (disclosure + credential, jailbreak) - Per-route DLP configuration via manifest dlp block - Inbound response scanning with block/warn severity Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-06-05 19:53:23 +00:00

Author

SHA1

Message

Date

didericis

ab528d9163

fix(types): replace assertIsNotNone with assert for pyright narrowing

test / unit (push) Successful in 38s

Details

test / integration (push) Successful in 51s

Details

Update Quality Badges / update-badges (push) Successful in 1m11s

Details

lint / lint (push) Successful in 1m30s

Details

assertIsNotNone doesn't narrow Optional types; bare assert does.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-06-06 00:59:26 -04:00

didericis-claude

abcb336e7c

fix(dlp): rework naive injection to proximity-based disclosure+jailbreak

lint / lint (push) Failing after 1m24s

Details

test / unit (pull_request) Successful in 30s

Details

test / integration (pull_request) Successful in 44s

Details

Token detection is already handled by the token_patterns detector
running separately — calling it again from scan_naive_injection was
redundant. New logic:

- Warn on any disclosure phrase
- Warn on any jailbreak phrase
- Block when both appear within 500 chars of each other

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-06-05 20:34:21 +00:00

didericis-claude

726713d081

feat(egress): implement PRD 0053 — DLP addon with Gateway API matches

lint / lint (push) Failing after 1m43s

Details

test / unit (pull_request) Successful in 40s

Details

test / integration (pull_request) Successful in 50s

Details

Replace path_allowlist with Gateway API HTTPRoute match vocabulary
(paths, methods, headers with AND/OR semantics) and add DLP scanning
to the egress proxy:

- Token pattern detection (AWS, GitHub, Anthropic, OpenAI, Stripe, JWT)
- Known secret detection (EGRESS_TOKEN_* with base64/URL/hex variants)
- Naive prompt injection detection (disclosure + credential, jailbreak)
- Per-route DLP configuration via manifest dlp block
- Inbound response scanning with block/warn severity

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-06-05 19:53:23 +00:00

3 Commits