sqlite-web 0.7.2
gitea.db
action
Create
Query
access
access_token
action
action_artifact
action_run
action_run_index
action_run_job
action_runner
action_runner_token
action_schedule
action_schedule_spec
action_task
action_task_output
action_task_step
action_tasks_version
action_variable
app_state
attachment
auth_token
badge
branch
collaboration
comment
commit_status
commit_status_index
commit_status_summary
commit_sync_log
commit_sync_status
dbfs_data
dbfs_meta
deploy_key
email_address
email_hash
external_login_user
follow
gpg_key
gpg_key_import
hook_task
issue
issue_assignees
issue_content_history
issue_dependency
issue_index
issue_label
issue_pin
issue_user
issue_watch
label
language_stat
lfs_lock
lfs_meta_object
login_source
milestone
mirror
notice
notification
oauth2_application
oauth2_authorization_code
oauth2_grant
org_user
package
package_blob
package_blob_upload
package_cleanup_rule
package_file
package_property
package_version
project
project_board
project_issue
protected_branch
protected_tag
public_key
pull_auto_merge
pull_request
push_mirror
reaction
release
renamed_branch
repo_archiver
repo_hidden_file
repo_indexer_status
repo_license
repo_redirect
repo_topic
repo_transfer
repo_unit
repository
review
review_state
secret
session
sqlite_sequence
star
stopwatch
system_setting
task
team
team_invite
team_repo
team_unit
team_user
topic
tracked_time
two_factor
upload
user
user_badge
user_blocking
user_open_id
user_redirect
user_setting
version
watch
webauthn_credential
webhook
Toggle helper tables
Structure
Content
Query
Insert
Drop
Import
Export
Update row 1119 in action
id
Primary key.
INTEGER NOT NULL
user_id
INTEGER
op_type
INTEGER
act_user_id
INTEGER
repo_id
INTEGER
comment_id
INTEGER
is_deleted
INTEGER NOT NULL (default 0
ref_name
refs/heads/docs/tx-bound-write-samples
TEXT
is_private
INTEGER NOT NULL (default 0
content
{"Commits":[{"Sha1":"94bdd3e0c36e7ba8e9380ddb74627492acc988dc","Message":"docs(governance): TX-BOUND-WRITE 规则精度抽样验证 · 10 处样本判定\n\n对 PR #38 新增的 TX-BOUND-WRITE 判据(297 处命中)做规则精度验证。\n抽样 10 处覆盖 TOP 2 文件(groupbuy-influencers / supply-chain-platform)\n+ 中等命中(ad-biddings / ad-placement / ai-autopilot / assembly /\nfinance-credits)+ 代表性小模块(alliance-campaigns / approvals /\ngeo-keywords),每处读 20-40 行上下文逐个判定。\n\n抽样结果:\n- 🔴 明确真阳性:4/10 = 40%\n * ad-biddings:124(create + 事务外事件)\n * alliance-campaign:46(super.create + 独立 createMany,模式 C)\n * geo-keywords:65(create + 事务外 publishLifecycleEvent)\n * supply-chain-platform:418(updateMany + create 分离,模式 C)\n- 🟠 归类错误(仍是假绿):1/10 = 10%\n * finance-credits:193 应归模式 B(txn([...]) 未被识别为事务)\n- ⚠️ 难判(偏真阳):3/10 = 30%\n * ai-autopilot:649(helper 函数,需追调用方)\n * assembly:404(紧跟 recalculateBomCost 语义未定)\n * groupbuy-influencers:153(createWithBizCodeRetry 包装)\n- ⚠️ 误报倾向:2/10 = 20%\n * ad-placement:405(方法内无事件发布)\n * approval:395(projection 同步非主写入)\n\n保守估计 297 处中:\n- ~50% (约 150 处) 明确真阳性假绿\n- ~30% (约 90 处) 需 helper 追踪确认\n- ~20% (约 60 处) 误报\n\n规则改进建议(V2.1):\n1. 方法作用域判定:仅当 write 所在方法体内也有 publishEvent 才命中\n → 解决 20% 误报\n2. 识别 txn/inTransaction/runInTransaction 别名为事务范围\n → 解决 10% 归类错\n3. helper 深度追踪(Sprint 3 / Q3 再升级)\n → 解决 30% 难判\n4. 可选:projection/refreshView/aggregate 方法白名单\n\n对 Sprint 2 迁移计划的影响:\n- 攻击清单从 297 收敛为 ~150 明确真阳 + ~90 需深挖\n- Sprint 2 W5 前置完成 V2.1 升级(改进 1+2),再用新 audit 重扫\n- Sprint 2 W5-W6 按 V2.1 精确列表迁移\n- Sprint 2 W6 末启用 --strict-v2 硬门禁\n\n本 PR 纯文档,无代码变更。依赖 #38 分支。合并顺序:#38 → 本 PR。\n\n关联:Q2 Sprint 2 迁移前置准备\n前序 PR:#38 V2 审计升级 / #40 BaseServiceV2 PoC\n\nCo-Authored-By: Claude Opus 4.7 (1M context) \u003cnoreply@anthropic.com\u003e\n","AuthorEmail":"mluo@MluodeMacBook-Air.local","AuthorName":"Mluo","CommitterEmail":"mluo@MluodeMacBook-Air.local","CommitterName":"Mluo","Timestamp":"2026-04-17T14:49:49+08:00"}],"HeadCommit":{"Sha1":"94bdd3e0c36e7ba8e9380ddb74627492acc988dc","Message":"docs(governance): TX-BOUND-WRITE 规则精度抽样验证 · 10 处样本判定\n\n对 PR #38 新增的 TX-BOUND-WRITE 判据(297 处命中)做规则精度验证。\n抽样 10 处覆盖 TOP 2 文件(groupbuy-influencers / supply-chain-platform)\n+ 中等命中(ad-biddings / ad-placement / ai-autopilot / assembly /\nfinance-credits)+ 代表性小模块(alliance-campaigns / approvals /\ngeo-keywords),每处读 20-40 行上下文逐个判定。\n\n抽样结果:\n- 🔴 明确真阳性:4/10 = 40%\n * ad-biddings:124(create + 事务外事件)\n * alliance-campaign:46(super.create + 独立 createMany,模式 C)\n * geo-keywords:65(create + 事务外 publishLifecycleEvent)\n * supply-chain-platform:418(updateMany + create 分离,模式 C)\n- 🟠 归类错误(仍是假绿):1/10 = 10%\n * finance-credits:193 应归模式 B(txn([...]) 未被识别为事务)\n- ⚠️ 难判(偏真阳):3/10 = 30%\n * ai-autopilot:649(helper 函数,需追调用方)\n * assembly:404(紧跟 recalculateBomCost 语义未定)\n * groupbuy-influencers:153(createWithBizCodeRetry 包装)\n- ⚠️ 误报倾向:2/10 = 20%\n * ad-placement:405(方法内无事件发布)\n * approval:395(projection 同步非主写入)\n\n保守估计 297 处中:\n- ~50% (约 150 处) 明确真阳性假绿\n- ~30% (约 90 处) 需 helper 追踪确认\n- ~20% (约 60 处) 误报\n\n规则改进建议(V2.1):\n1. 方法作用域判定:仅当 write 所在方法体内也有 publishEvent 才命中\n → 解决 20% 误报\n2. 识别 txn/inTransaction/runInTransaction 别名为事务范围\n → 解决 10% 归类错\n3. helper 深度追踪(Sprint 3 / Q3 再升级)\n → 解决 30% 难判\n4. 可选:projection/refreshView/aggregate 方法白名单\n\n对 Sprint 2 迁移计划的影响:\n- 攻击清单从 297 收敛为 ~150 明确真阳 + ~90 需深挖\n- Sprint 2 W5 前置完成 V2.1 升级(改进 1+2),再用新 audit 重扫\n- Sprint 2 W5-W6 按 V2.1 精确列表迁移\n- Sprint 2 W6 末启用 --strict-v2 硬门禁\n\n本 PR 纯文档,无代码变更。依赖 #38 分支。合并顺序:#38 → 本 PR。\n\n关联:Q2 Sprint 2 迁移前置准备\n前序 PR:#38 V2 审计升级 / #40 BaseServiceV2 PoC\n\nCo-Authored-By: Claude Opus 4.7 (1M context) \u003cnoreply@anthropic.com\u003e\n","AuthorEmail":"mluo@MluodeMacBook-Air.local","AuthorName":"Mluo","CommitterEmail":"mluo@MluodeMacBook-Air.local","CommitterName":"Mluo","Timestamp":"2026-04-17T14:49:49+08:00"},"CompareURL":"luoanwu/juhi-omni-knowledge-hub/compare/8a95110c2f089d5e800363910dee9bd22993258c...94bdd3e0c36e7ba8e9380ddb74627492acc988dc","Len":1}
TEXT
created_unix
INTEGER
Update
Cancel