yangdx 60777d535b fix: prevent Path Traversal vulnerability in upload endpoint ...

- Add sanitize_filename() function to validate and clean uploaded filenames
- Remove path separators, traversal sequences, and control characters
- Verify final paths stay within input directory using Path.resolve()
- Return HTTP 400 errors for unsafe filenames
- Prevents directory traversal attacks like ../../../etc/passwd

2025-06-27 02:33:05 +08:00

..

api

fix: prevent Path Traversal vulnerability in upload endpoint

2025-06-27 02:33:05 +08:00

kg

Fix edge_degree to handle non-existent nodes

2025-06-27 01:37:10 +08:00

llm

Merge pull request #1654 from a-bruhn/azure-env-vars

2025-06-26 19:11:20 +08:00

tools

Revert "Cleanup of code"

2025-02-20 15:09:43 +01:00

__init__.py

Bump core version to 1.3.10

2025-06-25 12:39:57 +08:00

base.py

Feat: Add delete upload file option to document deletion

2025-06-25 19:02:46 +08:00

constants.py

feat: Optimize document deletion performance

2025-06-25 12:37:57 +08:00

exceptions.py

improved typing

2025-02-15 22:37:12 +01:00

lightrag.py

Refac: pipelinge message

2025-06-26 01:00:54 +08:00

llm.py

improved typing

2025-02-15 22:37:12 +01:00

namespace.py

improved typing

2025-02-15 22:37:12 +01:00

operate.py

Improve the pipeline status message for document deletetion

2025-06-25 15:46:58 +08:00

prompt.py

feat: Optimize document deletion performance

2025-06-25 12:37:57 +08:00

types.py

Add is_truncated to graph query for NetworkX graph db

2025-04-02 22:12:20 +08:00

utils_graph.py

Add retrun status to entity and relation delete operations

2025-06-23 21:39:45 +08:00

utils.py

update delete_by_doc_id

2025-06-09 18:52:34 +08:00