Resolved in main commit 3c5d1d3 (security: rate-limit IP-keyed, fail-closed on empty key). Rate-limit now keys on IP + email; empty-key paths fail closed.
Resolved in commit c2d05b4 (security: Unicode-aware prompt-injection guard). NFKC normalisation + homoglyph folding applied before regex match in packages/api/src/lib/prompt-guard.ts.
Resolved in main commit 534945f (security: bound password inputs, configure pino redact, patch deps).
packages/api/src/router/user-procedure-support.ts:13,18 caps every password input at…
Resolved.
Part 1 — Proxy blocks all escape hatches (commit 1ff5c33, verified at packages/api/src/lib/read-only-prisma.ts:26-32):
$executeRaw$executeRawUnsafe$transaction-…
Resolved. packages/api/src/router/assistant-procedure-support.ts:49-77 now enforces:
content: z.string().max(10_000)per messagepageContext: z.string().max(2_000)- `conversationId:…
Full-Codebase Security Audit — 2026-04-16
Systematischer Audit des gesamten Source-Codes (nicht nur der CDP-Standard-Controls) hat 60 Findings ergeben, konsolidiert zu **23 actionable…
.max() audit — 202 unbounded z.string() sites