Reframe sweep M7-27 + capstone (AI drives git, lesson=theory, de-slop) (#93)
Sync course wiki / sync-wiki (push) Successful in 11s
Sync course wiki / sync-wiki (push) Successful in 11s
Co-authored-by: claude <claude@jpaul.io> Co-committed-by: claude <claude@jpaul.io>
This commit was merged in pull request #93.
This commit is contained in:
@@ -1,9 +1,9 @@
|
||||
"""Cloud-sync config for tasks-app — a realistic snapshot of what an AI hands you.
|
||||
|
||||
Asked to "sync tasks to a cloud service," a model will cheerfully produce something like this: it
|
||||
works, it reads naturally, it passes lint and tests... and it carries two planted flaws — a live
|
||||
credential baked straight into the source (caught by Gate 2, secret scanning) and a weak-crypto
|
||||
"signature" using MD5 (caught by Gate 3, SAST). Two different gates, two different blind spots.
|
||||
Asked to "sync tasks to a cloud service," a model will produce something like this: it works, it
|
||||
reads naturally, it passes lint and tests... and it carries two planted flaws: a live credential
|
||||
baked straight into the source (caught by Gate 2, secret scanning) and a weak-crypto "signature"
|
||||
using MD5 (caught by Gate 3, SAST). Two different gates, two different blind spots.
|
||||
|
||||
DO NOT copy these patterns. The point of this file is to be caught by a scanner, not imitated.
|
||||
The fix (read from the environment) is shown at the bottom, commented out, so you can see the
|
||||
|
||||
Reference in New Issue
Block a user