zhizhi/System_Logs
copilot-swe-agent[bot] c3c5cc15ed 🔐 guanghu-token 审计报告: MAIN_REPO_TOKEN 为主要对应 Secret
Phase 1: 排查出 3 个跨仓库令牌 Secret
- MAIN_REPO_TOKEN (federation-bridge + pull-sync-awen) ← guanghu-token
- CROSS_REPO_TOKEN (sync-persona-studio)
- DEPLOY_GITHUB_TOKEN (auto-deploy-drive-bridge)

Phase 4: 安全扫描通过,无硬编码令牌

Co-authored-by: qinfendebingshuo <207279273+qinfendebingshuo@users.noreply.github.com>
Agent-Logs-Url: https://github.com/qinfendebingshuo/guanghulab/sessions/84d6adce-4251-49c6-8413-d574395bef59
2026-03-24 07:47:30 +00:00
..
.gitkeep 🛰️ [Sky-Eye Audit] credential validation, hardened error handling, audit workflow 2026-03-24 02:12:50 +00:00
token-audit-20260324.md 🔐 guanghu-token 审计报告: MAIN_REPO_TOKEN 为主要对应 Secret 2026-03-24 07:47:30 +00:00