更新: 558 个文件 - 2026-03-17 21:15:02

2026-03-17 21:15:03 -07:00
--- a/07-framework-security/frameworks/undici/INDEX.md
+++ b/07-framework-security/frameworks/undici/INDEX.md
@@ -8,11 +8,11 @@
 - 总案例数: `14`
 - 近 30 天新增/更新: `7`
 - 重点 Markdown 案例数: `14`
- 已实证(真实版本): `1`
+- 已实证(真实版本): `14`
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
- 待人工/缺浏览器证据: `13`
- 最近渲染时间: `2026-03-18T03:58:59+00:00`
+- 待人工/缺浏览器证据: `0`
+- 最近渲染时间: `2026-03-18T04:06:10+00:00`

 ## 目标约束

@@ -31,17 +31,17 @@

 | 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
 |------|--------|----------|----------|----------|------------|----------|--------|
-| Undici has Unbounded Memory Consumption in WebSocket permessage-deflate Decompression | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-13T20:54:25.563997Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1526.md) |
-| Undici has Unhandled Exception in WebSocket Client Due to Invalid server_max_window_bits Validation | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-13T20:54:26.149214Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-2229.md) |
-| Undici has CRLF Injection in undici via `upgrade` option | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-13T20:54:25.572106Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1527.md) |
-| Undici has Unbounded Memory Consumption in its DeduplicationHandler via Response Buffering that leads to DoS | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-13T20:54:25.417862Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-2581.md) |
-| Undici: Malicious WebSocket 64-bit length overflows parser and crashes the client | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-14T09:17:45.838435Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1528.md) |
-| Undici has an HTTP Request/Response Smuggling issue | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-14T09:19:54.772219Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1525.md) |
-| Undici has an unbounded decompression chain in HTTP responses on Node.js Fetch API via Content-Encoding leads to resource exhaustion | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-04T02:56:17.456091Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-22036.md) |
-| undici Denial of Service attack via bad certificate data | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-06T22:08:08.311705Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2025-47279.md) |
-| Use of Insufficiently Random Values in undici | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-04T02:29:26.373390Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2025-22150.md) |
-| Undici's fetch with integrity option is too lax when algorithm is specified but hash value is in incorrect | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2025-11-04T19:44:42Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2024-30261.md) |
-| Undici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch, request, stream, pipeline | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2025-11-04T19:44:28Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2024-30260.md) |
-| Undici's cookie header not cleared on cross-origin redirect in fetch | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-04T02:35:56.289390Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2023-45143.md) |
+| Undici has Unbounded Memory Consumption in WebSocket permessage-deflate Decompression | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T20:54:25.563997Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1526.md) |
+| Undici has Unhandled Exception in WebSocket Client Due to Invalid server_max_window_bits Validation | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T20:54:26.149214Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-2229.md) |
+| Undici has CRLF Injection in undici via `upgrade` option | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T20:54:25.572106Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1527.md) |
+| Undici has Unbounded Memory Consumption in its DeduplicationHandler via Response Buffering that leads to DoS | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T20:54:25.417862Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-2581.md) |
+| Undici: Malicious WebSocket 64-bit length overflows parser and crashes the client | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-14T09:17:45.838435Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1528.md) |
+| Undici has an HTTP Request/Response Smuggling issue | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-14T09:19:54.772219Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-1525.md) |
+| Undici has an unbounded decompression chain in HTTP responses on Node.js Fetch API via Content-Encoding leads to resource exhaustion | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:56:17.456091Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2026-22036.md) |
+| undici Denial of Service attack via bad certificate data | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-06T22:08:08.311705Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2025-47279.md) |
+| Use of Insufficiently Random Values in undici | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:29:26.373390Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2025-22150.md) |
+| Undici's fetch with integrity option is too lax when algorithm is specified but hash value is in incorrect | `low` | `generated` | `verified-real` | `real` | `official` | `2025-11-04T19:44:42Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2024-30261.md) |
+| Undici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch, request, stream, pipeline | `low` | `generated` | `verified-real` | `real` | `official` | `2025-11-04T19:44:28Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2024-30260.md) |
+| Undici's cookie header not cleared on cross-origin redirect in fetch | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:35:56.289390Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2023-45143.md) |
 | undici before v5.8.0 vulnerable to uncleared cookies on cross-host / cross-origin redirect | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T03:02:08.652391Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2022-31151.md) |
-| ProxyAgent vulnerable to MITM | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-13T22:15:23.541247Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2022-32210.md) |
+| ProxyAgent vulnerable to MITM | `low` | `generated` | `verified-real` | `real` | `official` | `2026-03-13T22:15:23.541247Z` | [link](/Users/x/websafe/07-framework-security/frameworks/undici/cases/undici-cve-2022-32210.md) |
--- a/07-framework-security/frameworks/undici/cases/undici-cve-2022-31151.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2022-31151.md
@@ -11,7 +11,7 @@ source_confidence: "official"
 verification_status: "verified-real"
 verification_mode: "real"
 artifact_mode: "local-fixture"
-last_run_id: "undici-undici--CVE-2022-31151-20260318024301"
+last_run_id: "undici-undici--CVE-2022-31151-20260318040233"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -41,9 +41,9 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-q768-
 - 实证状态: `verified-real`
 - 实证方式: `real`
 - Artifact 模式: `local-fixture`
- 最近运行: `undici-undici--CVE-2022-31151-20260318024301`
+- 最近运行: `undici-undici--CVE-2022-31151-20260318040233`
 - 浏览器证据: `missing`
- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2022-31151-20260318024301`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2022-31151-20260318040233`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2022-32210.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2022-32210.md
@@ -8,10 +8,10 @@ updated_date: "2026-03-13T22:15:23.541247Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2022-32210-20260318040238"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -36,12 +36,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-pgw7-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2022-32210-20260318040238`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2022-32210-20260318040238`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2023-45143.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2023-45143.md
@@ -8,10 +8,10 @@ updated_date: "2026-02-04T02:35:56.289390Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2023-45143-20260318040242"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -37,12 +37,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-q768-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2023-45143-20260318040242`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2023-45143-20260318040242`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2024-30260.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2024-30260.md
@@ -8,10 +8,10 @@ updated_date: "2025-11-04T19:44:28Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2024-30260-20260318040247"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -38,12 +38,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-m4v8-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2024-30260-20260318040247`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2024-30260-20260318040247`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2024-30261.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2024-30261.md
@@ -8,10 +8,10 @@ updated_date: "2025-11-04T19:44:42Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2024-30261-20260318040251"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -38,12 +38,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-9qxr-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2024-30261-20260318040251`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2024-30261-20260318040251`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2025-22150.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2025-22150.md
@@ -8,10 +8,10 @@ updated_date: "2026-02-04T02:29:26.373390Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2025-22150-20260318040256"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -40,12 +40,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-c76h-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2025-22150-20260318040256`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2025-22150-20260318040256`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2025-47279.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2025-47279.md
@@ -8,10 +8,10 @@ updated_date: "2026-02-06T22:08:08.311705Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2025-47279-20260318040300"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -40,12 +40,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-cxrh-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2025-47279-20260318040300`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2025-47279-20260318040300`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2026-1525.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2026-1525.md
@@ -8,10 +8,10 @@ updated_date: "2026-03-14T09:19:54.772219Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2026-1525-20260318040304"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -39,12 +39,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-2mjp-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2026-1525-20260318040304`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2026-1525-20260318040304`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2026-1526.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2026-1526.md
@@ -8,10 +8,10 @@ updated_date: "2026-03-13T20:54:25.563997Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2026-1526-20260318040309"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -39,12 +39,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-vrm6-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2026-1526-20260318040309`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2026-1526-20260318040309`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2026-1527.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2026-1527.md
@@ -8,10 +8,10 @@ updated_date: "2026-03-13T20:54:25.572106Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2026-1527-20260318040314"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -38,12 +38,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-4992-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2026-1527-20260318040314`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2026-1527-20260318040314`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2026-1528.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2026-1528.md
@@ -8,10 +8,10 @@ updated_date: "2026-03-14T09:17:45.838435Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2026-1528-20260318040318"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -38,12 +38,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-f269-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2026-1528-20260318040318`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2026-1528-20260318040318`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2026-22036.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2026-22036.md
@@ -8,10 +8,10 @@ updated_date: "2026-02-04T02:56:17.456091Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2026-22036-20260318040323"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -38,12 +38,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-g9mf-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2026-22036-20260318040323`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2026-22036-20260318040323`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2026-2229.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2026-2229.md
@@ -8,10 +8,10 @@ updated_date: "2026-03-13T20:54:26.149214Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2026-2229-20260318040328"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -39,12 +39,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-v9p9-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2026-2229-20260318040328`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2026-2229-20260318040328`

 ## 事件层

--- a/07-framework-security/frameworks/undici/cases/undici-cve-2026-2581.md
+++ b/07-framework-security/frameworks/undici/cases/undici-cve-2026-2581.md
@@ -8,10 +8,10 @@ updated_date: "2026-03-13T20:54:25.417862Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
-verification_status: "triage-manual"
-verification_mode: "synthetic"
-artifact_mode: "synthetic"
-last_run_id: ""
+verification_status: "verified-real"
+verification_mode: "real"
+artifact_mode: "local-fixture"
+last_run_id: "undici-undici--CVE-2026-2581-20260318040332"
 target_types:
  - "lab-local"
  - "lab-public"
@@ -36,12 +36,12 @@ primary_source: "https://github.com/nodejs/undici/security/advisories/GHSA-phc3-

 ## 本地实证状态

- 实证状态: `triage-manual`
- 实证方式: `synthetic`
- Artifact 模式: `synthetic`
- 最近运行: `-`
+- 实证状态: `verified-real`
+- 实证方式: `real`
+- Artifact 模式: `local-fixture`
+- 最近运行: `undici-undici--CVE-2026-2581-20260318040332`
 - 浏览器证据: `missing`
- Run Bundle: `-`
+- Run Bundle: `/Users/x/websafe/06-case-studies/generated-runs/undici-undici--CVE-2026-2581-20260318040332`

 ## 事件层