phoenix-oss/llama-stack-mirror
0
0
Fork 1
mirror of https://github.com/meta-llama/llama-stack.git synced 2025-12-16 22:49:27 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
llama-stack-mirror/tests/unit/core/routers
History
Exact
Derek Higgins 5abb7df41a
fix: ABAC bypass in vector store operations (#4394) 
Vector store operations were bypassing ABAC checks by calling providers
directly instead of going through the routing table. This allowed
unauthorized access to vector store data and operations.

Changes:
o Route all VectorIORouter methods through routing table instead of
  directly to providers
o Update routing table to enforce ABAC checks on all vector store
  operations (read, update, delete)
o Add test suite verifying ABAC enforcement for all vector store
  operations
o Ensure providers are never called when authorization fails

Fixes security issue where users could access vector stores they don't
have permission for.

Fixes: #4393

Signed-off-by: Derek Higgins <derekh@redhat.com>
2025-12-16 10:49:16 -08:00
..
test_safety_router.py fix: rename llama_stack_api dir (#4155) 2025-11-13 15:04:36 -08:00
test_vector_io.py fix: ABAC bypass in vector store operations (#4394) 2025-12-16 10:49:16 -08:00
test_vector_stores_abac.py fix: ABAC bypass in vector store operations (#4394) 2025-12-16 10:49:16 -08:00