Skip to content

feat: 规则层精确化改进 + LLM提示词优化 + 多个功能增强#1

Open
Ciphercici wants to merge 5 commits into
baianquanzu:mainfrom
Ciphercici:main
Open

feat: 规则层精确化改进 + LLM提示词优化 + 多个功能增强#1
Ciphercici wants to merge 5 commits into
baianquanzu:mainfrom
Ciphercici:main

Conversation

@Ciphercici
Copy link
Copy Markdown

@Ciphercici Ciphercici commented May 6, 2026

规则层改进 (Rule Layer)

  • 重写规则层,新增50+精确规则(requireA + requireB + exclude模式)
  • 新增排除逻辑:检测到防护措施时不报告
  • 新增10个审计Skill(新增SSRF/命令注入/路径穿越/XSS/反序列化)

LLM提示词改进

  • 系统提示词明确列出"不报告的示例"减少误报
  • 用户提示词强调证据和防护检查
  • 置信度阈值从0.55提高到0.7

新增功能

  • SQLite任务持久化:服务重启任务不丢失
  • SSE实时进度推送:毫秒级延迟
  • 任务取消功能
  • FOFA API集成(需配置)
  • Docker部署支持

文件变更

  • src/agents/auditAnalystAgent.js: 重写规则层
  • src/services/llmReviewService.js: 改进提示词
  • src/config/auditSkills.js: 新增5个Skill
  • src/store/taskStore.js: SQLite持久化
  • src/agents/fofaScoutAgent.js: FOFA Agent
  • server.js: 新增API路由
  • public/app.js: SSE/取消按钮
  • Dockerfile/docker-compose.yml: 容器部署
  • IMPROVEMENTS.md: 改进文档

cipher added 2 commits May 6, 2026 21:21
feat: add frontend pages and SSE support
ed9ba74
feat: add task persistence, SSE, FOFA and precise audit rules
2dd8082 
- SQLite task persistence with auto-recovery on restart
- SSE real-time progress push (millisecond latency)
- Task cancellation support
- FOFA asset discovery integration
- 50+ precise audit rules (requireA+requireB+exclude)
- New audit skills: SSRF/command-injection/path-traversal/XSS/deserialization
- LLM prompt improvements (confidence threshold 0.55→0.7)
- Docker Compose deployment support
- Add IMPROVEMENTS.md documentation
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Ciphercici