phoenix-oss/llama-stack-mirror
0
0
Fork 1
mirror of https://github.com/meta-llama/llama-stack.git synced 2025-12-17 06:02:36 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
llama-stack-mirror/tests/unit/core
History
Derek Higgins 5abb7df41a
fix: ABAC bypass in vector store operations (#4394) 
Vector store operations were bypassing ABAC checks by calling providers
directly instead of going through the routing table. This allowed
unauthorized access to vector store data and operations.

Changes:
o Route all VectorIORouter methods through routing table instead of
  directly to providers
o Update routing table to enforce ABAC checks on all vector store
  operations (read, update, delete)
o Add test suite verifying ABAC enforcement for all vector store
  operations
o Ensure providers are never called when authorization fails

Fixes security issue where users could access vector stores they don't
have permission for.

Fixes: #4393

Signed-off-by: Derek Higgins <derekh@redhat.com>
2025-12-16 10:49:16 -08:00
..
routers fix: ABAC bypass in vector store operations (#4394) 2025-12-16 10:49:16 -08:00
test_provider_data_context.py fix(context): prevent provider data leak between streaming requests (#3924) 2025-10-27 23:01:12 -07:00
test_stack_validation.py feat: Making static prompt values in Rag/File Search configurable in Vector Store Config (#4368) 2025-12-15 11:39:01 -05:00
test_storage_references.py feat: remove usage of build yaml (#4192) 2025-12-10 10:12:12 +01:00
test_vector_stores_config.py feat: Making static prompt values in Rag/File Search configurable in Vector Store Config (#4368) 2025-12-15 11:39:01 -05:00