修复漏洞积压

← All use cases

难度：高级

适用场景：Teams with reviewed findings from Codex Security, Linear or Jira tickets, GitHub Security Advisories, HackerOne or Bugcrowd reports, penetration tests, or internal security reviews. Vulnerability backlogs where every patch needs a minimal diff and repeatable validation. Maintainers who want to separate security remediation from broader refactors or cleanup.

启动提示

Use $codex-security:fix-finding to fix this security finding and verify the issue no longer reproduces. Source: [Codex Security report / Linear or Jira ticket / GitHub Security Advisory / HackerOne or Bugcrowd report / other authorized source] Title and affected component: [finding title and component] Vulnerable source, sink, or broken control: [known path or unknown] Attacker-controlled input and impact: [input, prerequisites, and impact] Expected security invariant: [behavior the fix mus...