4 Commits

Author	SHA1	Message	Date
iven	4329bae1ea	fix(audit): Batch 2 生产代码 unwrap 替换 (20 处) ... P0 修复: - viking_commands.rs: URI 路径构建 unwrap → ok_or_else 错误传播 - clip.rs: 临时文件路径 unwrap → ok_or_else (防 Windows 中文路径 panic) P1 修复: - personality_detector.rs: Mutex lock unwrap → unwrap_or_else 防中毒传播 - pptx.rs: HashMap.get unwrap → expect (来自 keys() 迭代) P2 修复: - 4 处 SystemTime.unwrap → expect("system clock is valid") - 4 处 dev_server URL.parse.unwrap → expect("hardcoded URL is valid") - 9 处 nl_schedule Regex.unwrap → expect("static regex is valid") - 5 处 data_masking Regex.unwrap → expect("static regex is valid") - 2 处 pipeline/state Regex.unwrap → expect("static regex is valid") 全量测试通过: 719 passed, 0 failed	2026-04-19 08:38:09 +08:00
iven	ee1c9ef3ea	chore: Cargo warnings 清零 — 39→0 (仅剩 sqlx-postgres 外部依赖警告) ... - runtime: 移除未使用的 SessionId/Datelike import，修复 unused variable - intelligence: 模块级 #![allow(dead_code)] 抑制 Hermes 预留代码警告 - mcp.rs/persist.rs/nl_schedule.rs: 标注 #[allow(dead_code)] 保留接口	2026-04-15 01:53:11 +08:00
iven	3f2acb49fb	fix: pre-release audit fixes — Twitter OAuth, DataMasking perf, Prompt versioning ... - Twitter like/retweet: return explicit unavailable error instead of sending doomed Bearer token requests (would 403 on Twitter API v2) - DataMasking: pre-compile regex patterns with LazyLock (was compiling 6 patterns on every mask() call) - Prompt version: fix get_version handler ignoring version path param, add service::get_version_by_number for correct per-version retrieval	2026-04-09 16:43:24 +08:00
iven	8aed363fc8	feat(middleware): add DataMaskingMiddleware — sensitive entity protection (Chunk 3) ... Priority 90 — runs before Compaction@100 and Memory@150. Detects and replaces company names, money amounts, phone numbers, emails, and ID card numbers with deterministic tokens (__ENTITY_N__). External callers can restore originals via DataMasker::unmask().	2026-04-07 08:01:05 +08:00