更新: 331 个文件 - 2026-04-02 03:15:10

2026-04-02 03:15:10 -07:00
--- a/.DS_Store
+++ b/.DS_Store
--- a/07-framework-security/.DS_Store
+++ b/07-framework-security/.DS_Store
--- a/07-framework-security/cms/directus/INDEX.md
+++ b/07-framework-security/cms/directus/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `29`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/cms/discourse/INDEX.md
+++ b/07-framework-security/cms/discourse/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `31`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/cms/drupal/INDEX.md
+++ b/07-framework-security/cms/drupal/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `70`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/cms/ghost/INDEX.md
+++ b/07-framework-security/cms/ghost/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `23`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/cms/joomla/INDEX.md
+++ b/07-framework-security/cms/joomla/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `100`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/cms/mediawiki/INDEX.md
+++ b/07-framework-security/cms/mediawiki/INDEX.md
@@ -5,14 +5,14 @@
 - 系统 ID: `mediawiki`
 - 分类: `cms`
 - 覆盖策略: `rolling-24m`
- 总案例数: `72`
+- 总案例数: `73`
 - 近 30 天新增/更新: `0`
 - 重点 Markdown 案例数: `0`
 - 已实证(真实版本): `0`
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
- 待人工/缺浏览器证据: `72`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 待人工/缺浏览器证据: `73`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

@@ -40,6 +40,7 @@
 | [MediaWiki-announce] Re: MediaWiki 1.44-beta has been branched | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Wed, 07 May 2025 07:47:35 +0000` | - |
 | [MediaWiki-announce] Announcing MediaWiki 1.44.0 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Wed, 02 Jul 2025 21:30:40 +0000` | - |
 | [MediaWiki-announce] Security pre-release announcement: 1.39.14 / 1.43.4 / 1.44.1 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Wed, 01 Oct 2025 20:33:01 +0000` | - |
+| [MediaWiki-announce] Maintenance release: MediaWiki 1.43.8 / 1.44.5 / 1.45.3 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Wed, 01 Apr 2026 13:09:42 +0000` | - |
 | [MediaWiki-announce] Security and maintenance release: 1.43.7 / 1.44.4 / 1.45.2 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Tue, 31 Mar 2026 23:06:16 +0000` | - |
 | [MediaWiki-announce] Maintenance release: MediaWiki 1.39.17 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Tue, 16 Dec 2025 18:21:00 +0000` | - |
 | [MediaWiki-announce] MediaWiki Extensions and Skins Security Release Supplement (1.39.11/1.41.5/1.42.4) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Tue, 14 Jan 2025 19:41:18 +0000` | - |
--- a/07-framework-security/cms/moodle/INDEX.md
+++ b/07-framework-security/cms/moodle/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `40`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/cms/strapi/INDEX.md
+++ b/07-framework-security/cms/strapi/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `26`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/cms/wordpress/INDEX.md
+++ b/07-framework-security/cms/wordpress/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `140`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/ecommerce/adobe-commerce/INDEX.md
+++ b/07-framework-security/ecommerce/adobe-commerce/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `81`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/ecommerce/magento-open-source/INDEX.md
+++ b/07-framework-security/ecommerce/magento-open-source/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `89`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/ecommerce/medusa/INDEX.md
+++ b/07-framework-security/ecommerce/medusa/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `15`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/ecommerce/opencart/INDEX.md
+++ b/07-framework-security/ecommerce/opencart/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `100`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/ecommerce/openmage/INDEX.md
+++ b/07-framework-security/ecommerce/openmage/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `27`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/ecommerce/prestashop/INDEX.md
+++ b/07-framework-security/ecommerce/prestashop/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `114`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/ecommerce/saleor/INDEX.md
+++ b/07-framework-security/ecommerce/saleor/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `24`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/ecommerce/shopware/INDEX.md
+++ b/07-framework-security/ecommerce/shopware/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `71`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/ecommerce/woocommerce/INDEX.md
+++ b/07-framework-security/ecommerce/woocommerce/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `111`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/angular/INDEX.md
+++ b/07-framework-security/frameworks/angular/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/aspnet-core/INDEX.md
+++ b/07-framework-security/frameworks/aspnet-core/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `3`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/astro/INDEX.md
+++ b/07-framework-security/frameworks/astro/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `15`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/django/INDEX.md
+++ b/07-framework-security/frameworks/django/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `82`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/echo/INDEX.md
+++ b/07-framework-security/frameworks/echo/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/esbuild/INDEX.md
+++ b/07-framework-security/frameworks/esbuild/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/express/INDEX.md
+++ b/07-framework-security/frameworks/express/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/fastify/INDEX.md
+++ b/07-framework-security/frameworks/fastify/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/flask/INDEX.md
+++ b/07-framework-security/frameworks/flask/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/gin/INDEX.md
+++ b/07-framework-security/frameworks/gin/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/hapi/INDEX.md
+++ b/07-framework-security/frameworks/hapi/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/koa/INDEX.md
+++ b/07-framework-security/frameworks/koa/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/laravel/INDEX.md
+++ b/07-framework-security/frameworks/laravel/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/nestjs/INDEX.md
+++ b/07-framework-security/frameworks/nestjs/INDEX.md
@@ -6,13 +6,13 @@
 - 分类: `frameworks`
 - 覆盖策略: `rolling-24m`
 - 总案例数: `2`
- 近 30 天新增/更新: `1`
+- 近 30 天新增/更新: `0`
 - 重点 Markdown 案例数: `0`
 - 已实证(真实版本): `0`
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/nextjs/INDEX.md
+++ b/07-framework-security/frameworks/nextjs/INDEX.md
@@ -6,13 +6,13 @@
 - 分类: `frameworks`
 - 覆盖策略: `history-full`
 - 总案例数: `66`
- 近 30 天新增/更新: `10`
+- 近 30 天新增/更新: `11`
 - 重点 Markdown 案例数: `41`
 - 已实证(真实版本): `26`
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `40`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

@@ -38,7 +38,7 @@
 | Next.js: null origin can bypass Server Actions CSRF checks | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-19T18:31:23.523529Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-27978.md) |
 | Next.js: null origin can bypass dev HMR websocket CSRF checks | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-25T19:49:01.129152Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2026-27977.md) |
 | Next.js HTTP request deserialization can lead to DoS when using insecure React Server Components | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-13T00:43:52.836085Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-ghsa-h25m-26qc-wcjf.md) |
-| Next.js has Unbounded Memory Consumption via PPR Resume Endpoint  | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-06T13:13:43.709252Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-59472.md) |
+| Next.js has Unbounded Memory Consumption via PPR Resume Endpoint  | `low` | `generated` | `verified-real` | `real` | `official` | `2026-04-01T17:31:03.347234Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-59472.md) |
 | Next.js self-hosted applications vulnerable to DoS via Image Optimizer remotePatterns configuration | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-10T01:28:46.973023Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-59471.md) |
 | Next has a Denial of Service with Server Components - Incomplete Fix Follow-Up | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:46:38.768104Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-ghsa-5j59-xgg2-r9c4.md) |
 | Next Server Actions Source Code Exposure  | `low` | `generated` | `verified-real` | `real` | `official` | `2026-02-04T02:51:40.627151Z` | [link](/Users/x/websafe/07-framework-security/frameworks/nextjs/cases/nextjs-ghsa-w37m-7fhw-fmv9.md) |
--- a/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-59472.md
+++ b/07-framework-security/frameworks/nextjs/cases/nextjs-cve-2025-59472.md
@@ -4,7 +4,7 @@ system_id: "nextjs"
 category: "frameworks"
 advisory_mode: "core"
 published_date: "2026-01-28T15:20:55Z"
-updated_date: "2026-02-06T13:13:43.709252Z"
+updated_date: "2026-04-01T17:31:03.347234Z"
 severity: "low"
 exploit_status: "unknown"
 source_confidence: "official"
@@ -23,11 +23,25 @@ aliases:
  - "CVE-2025-59472"
  - "GHSA-5f7q-jpqc-wp7h"
 affected_versions:
-  - "introduced=15.0.0-canary.0, fixed<15.6.0-canary.61"
  - "introduced=16.0.0-beta.0, fixed<16.1.5"
+  - "introduced=15.0.0-canary.0"
+  - "introduced=15.0.1-canary.0"
+  - "introduced=15.0.2-canary.0"
+  - "introduced=15.0.3-canary.0"
+  - "introduced=15.0.4-canary.0"
+  - "introduced=15.1.1-canary.0"
+  - "introduced=15.2.0-canary.0"
+  - "introduced=15.2.1-canary.0"
+  - "introduced=15.2.2-canary.0"
+  - "introduced=15.3.0-canary.0"
+  - "introduced=15.3.1-canary.0"
+  - "introduced=15.4.0-canary.0"
+  - "introduced=15.4.2-canary.0"
+  - "introduced=15.5.1-canary.0"
+  - "introduced=15.6.0-canary.0, fixed<15.6.0-canary.61"
 fixed_versions:
-  - "15.6.0-canary.61"
  - "16.1.5"
+  - "15.6.0-canary.61"
 entity_refs:
  - "nextjs:system:root-system"
  - "nextjs--project--next:project:affected-component"
@@ -56,8 +70,8 @@ primary_source: "https://github.com/vercel/next.js/security/advisories/GHSA-5f7q
 - 严重度: `low`
 - 来源置信度: `official`
 - 官方主源: https://github.com/vercel/next.js/security/advisories/GHSA-5f7q-jpqc-wp7h
- 影响版本: `introduced=15.0.0-canary.0, fixed<15.6.0-canary.61, introduced=16.0.0-beta.0, fixed<16.1.5`
- 修复版本: `15.6.0-canary.61, 16.1.5`
+- 影响版本: `introduced=16.0.0-beta.0, fixed<16.1.5, introduced=15.0.0-canary.0, introduced=15.0.1-canary.0, introduced=15.0.2-canary.0, introduced=15.0.3-canary.0, introduced=15.0.4-canary.0, introduced=15.1.1-canary.0, introduced=15.2.0-canary.0, introduced=15.2.1-canary.0, introduced=15.2.2-canary.0`
+- 修复版本: `16.1.5, 15.6.0-canary.61`

 ## 对象与版本映射

@@ -110,7 +124,7 @@ primary_source: "https://github.com/vercel/next.js/security/advisories/GHSA-5f7q

 ### 补丁验证步骤

- 确认目标版本从 `introduced=15.0.0-canary.0, fixed<15.6.0-canary.61, introduced=16.0.0-beta.0, fixed<16.1.5` 升级或回移到 `15.6.0-canary.61`。
+- 确认目标版本从 `introduced=16.0.0-beta.0, fixed<16.1.5, introduced=15.0.0-canary.0, introduced=15.0.1-canary.0` 升级或回移到 `16.1.5`。
 - 保留同一组受控输入，在修复前后分别执行并比对响应、日志与浏览器证据。
 - 确认修复后仅保留预期业务行为，不再触发越权、回显、异常渲染或错误请求。
 - 补充 `proxy-boundary` 族自动化回归，避免同类路径在插件、主题或代理链中回归。
--- a/07-framework-security/frameworks/nodejs/INDEX.md
+++ b/07-framework-security/frameworks/nodejs/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `8`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/nuxt/INDEX.md
+++ b/07-framework-security/frameworks/nuxt/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `28`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/rails/INDEX.md
+++ b/07-framework-security/frameworks/rails/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `42`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/react/INDEX.md
+++ b/07-framework-security/frameworks/react/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `21`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/spring-boot/INDEX.md
+++ b/07-framework-security/frameworks/spring-boot/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/spring-framework/INDEX.md
+++ b/07-framework-security/frameworks/spring-framework/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `11`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/spring-security/INDEX.md
+++ b/07-framework-security/frameworks/spring-security/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `4`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/sveltekit/INDEX.md
+++ b/07-framework-security/frameworks/sveltekit/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `3`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/symfony/INDEX.md
+++ b/07-framework-security/frameworks/symfony/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `9`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/undici/INDEX.md
+++ b/07-framework-security/frameworks/undici/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `9`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/vite/INDEX.md
+++ b/07-framework-security/frameworks/vite/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `30`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/vue/INDEX.md
+++ b/07-framework-security/frameworks/vue/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `15`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/webpack/INDEX.md
+++ b/07-framework-security/frameworks/webpack/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/frameworks/werkzeug/INDEX.md
+++ b/07-framework-security/frameworks/werkzeug/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `1`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/platforms/adminer/INDEX.md
+++ b/07-framework-security/platforms/adminer/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `2`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/platforms/gitea/INDEX.md
+++ b/07-framework-security/platforms/gitea/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `13`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/platforms/gitlab-ce/INDEX.md
+++ b/07-framework-security/platforms/gitlab-ce/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `56`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/platforms/grafana/INDEX.md
+++ b/07-framework-security/platforms/grafana/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `60`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/platforms/jenkins/INDEX.md
+++ b/07-framework-security/platforms/jenkins/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `60`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/platforms/kibana/INDEX.md
+++ b/07-framework-security/platforms/kibana/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `47`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/platforms/mattermost/INDEX.md
+++ b/07-framework-security/platforms/mattermost/INDEX.md
@@ -5,14 +5,14 @@
 - 系统 ID: `mattermost`
 - 分类: `platforms`
 - 覆盖策略: `rolling-24m`
- 总案例数: `36`
- 近 30 天新增/更新: `24`
- 重点 Markdown 案例数: `36`
+- 总案例数: `40`
+- 近 30 天新增/更新: `28`
+- 重点 Markdown 案例数: `40`
 - 已实证(真实版本): `0`
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
- 待人工/缺浏览器证据: `36`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 待人工/缺浏览器证据: `40`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

@@ -69,3 +69,7 @@
 | MMSA-2026-00578 | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-23` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-mmsa-2026-00578.md) |
 | MMSA-2026-00590 | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-23` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-mmsa-2026-00590.md) |
 | MMSA-2026-00595 | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-23` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-mmsa-2026-00595.md) |
+| Mattermost fails to properly validate team membership when processing channel mentions | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-04-01T17:34:52.830031Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2025-14350.md) |
+| Mattermost fails to enforce invite permissions when updating team settings | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-04-01T17:35:38.201280Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2025-14573.md) |
+| Mattermost fails to sanitize sensitive data in WebSocket messages | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-04-01T17:35:09.396122Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2025-13821.md) |
+| Mattermost fails to properly validate login method restrictions | `low` | `generated` | `triage-manual` | `synthetic` | `ecosystem-authority` | `2026-04-01T17:34:48.742132Z` | [link](/Users/x/websafe/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-0999.md) |
--- a/07-framework-security/platforms/mattermost/cases/mattermost-cve-2025-13821.md
+++ b/07-framework-security/platforms/mattermost/cases/mattermost-cve-2025-13821.md
@@ -0,0 +1,169 @@
+---
+title: "Mattermost fails to sanitize sensitive data in WebSocket messages"
+system_id: "mattermost"
+category: "platforms"
+advisory_mode: "core"
+published_date: "2026-02-16T12:30:25Z"
+updated_date: "2026-04-01T17:35:09.396122Z"
+severity: "low"
+exploit_status: "unknown"
+source_confidence: "ecosystem-authority"
+verification_status: "triage-manual"
+verification_mode: "synthetic"
+artifact_mode: "synthetic"
+last_run_id: ""
+target_types:
+  - "lab-local"
+  - "lab-public"
+  - "authorized-third-party"
+allow_public_validation: "yes, with ownership or explicit authorization"
+authorization_prerequisite: "asset ownership proof or explicit written authorization"
+minimal_validation: "read-only probe, controlled payload, reversible test"
+aliases:
+  - "CVE-2025-13821"
+  - "GO-2026-4524"
+  - "GHSA-pp9j-pf5c-659x"
+affected_versions:
+  - "introduced=0, fixed<8.0.0-20251210191531-cd17b61de41b"
+  - "introduced=11.1.0"
+  - "introduced=10.11.0"
+  - "introduced=11.2.0"
+  - "introduced=0, fixed<5.3.2-0.20251210191531-cd17b61de41b"
+fixed_versions:
+  - "8.0.0-20251210191531-cd17b61de41b"
+  - "5.3.2-0.20251210191531-cd17b61de41b"
+entity_refs:
+  - "mattermost:system:root-system"
+  - "mattermost--repo--github-com-mattermost-mattermost-server:repo:affected-component"
+secure_code_topics:
+  - "authz-server-side-recheck"
+  - "xss-output-encoding"
+  - "token-cookie-storage"
+  - "dependency-upgrade-policy"
+primary_source: "https://nvd.nist.gov/vuln/detail/CVE-2025-13821"
+---
+
+# Mattermost fails to sanitize sensitive data in WebSocket messages
+
+## 本地实证状态
+
+- 实证状态: `triage-manual`
+- 实证方式: `synthetic`
+- Artifact 模式: `synthetic`
+- 最近运行: `-`
+- 浏览器证据: `missing`
+- Run Bundle: `-`
+
+## 事件层
+
+- Canonical ID: `mattermost--CVE-2025-13821`
+- 系统: `mattermost`
+- 严重度: `low`
+- 来源置信度: `ecosystem-authority`
+- 官方主源: https://nvd.nist.gov/vuln/detail/CVE-2025-13821
+- 影响版本: `introduced=0, fixed<8.0.0-20251210191531-cd17b61de41b, introduced=11.1.0, introduced=10.11.0, introduced=11.2.0, introduced=0, fixed<5.3.2-0.20251210191531-cd17b61de41b`
+- 修复版本: `8.0.0-20251210191531-cd17b61de41b, 5.3.2-0.20251210191531-cd17b61de41b`
+
+## 对象与版本映射
+
+- Advisory Scope: `repo`
+- 影响对象: `mattermost / mattermost-server`
+- Entity Refs: `mattermost, mattermost--repo--github-com-mattermost-mattermost-server`
+- 版本置信度: `high`
+- 版本缺口: `-`
+- 版本证据源: `https://nvd.nist.gov/vuln/detail/CVE-2025-13821, https://github.com/mattermost/mattermost/commit/cd17b61de41bf0a49b524bb91ce0bbe859e5a100, https://github.com/mattermost/mattermost, https://mattermost.com/security-updates`
+
+## 受控验证流程
+
+- Workflow ID: `mattermost--CVE-2025-13821--workflow`
+- 漏洞家族: `unknown`
+- 入口面: `repo-surface`
+- 需要角色: `unknown`
+- 触发向量: 对 `unknown` 家族入口投递最小化、可审计、可回滚的受控输入，比较修复前后差异。
+- 请求/页面入口: `/repo`
+- 输入形态: 提交最小化、可审计、可回滚的受控输入。
+- 预期不安全行为: 目标表现出超出设计边界的行为。
+
+## 其他来源
+
+- https://github.com/mattermost/mattermost/commit/cd17b61de41bf0a49b524bb91ce0bbe859e5a100
+- https://github.com/mattermost/mattermost
+- https://mattermost.com/security-updates
+
+## 证据点与补丁验证
+
+### 服务端证据点
+
+- 应用日志中的命中路径、鉴权决策和异常栈
+- 反向代理或边界层日志中的请求头、来源 IP 与路由决策
+
+### 浏览器证据点
+
+- 基线截图与攻击后截图的 DOM/视觉差异
+- console、network 与 response metadata 中的异常信号
+
+### 数据库/文件系统证据点
+
+- 数据库中新增/越权读取的测试数据
+- 文件系统中新增上传样本、缓存条目或越权读取痕迹
+
+### 检测信号
+
+- WAF / reverse proxy 异常日志、访问日志和告警
+- 应用审计日志中的权限错误、重定向异常、模板渲染或上传落盘事件
+
+### 补丁验证步骤
+
+- 确认目标版本从 `introduced=0, fixed<8.0.0-20251210191531-cd17b61de41b, introduced=11.1.0, introduced=10.11.0` 升级或回移到 `8.0.0-20251210191531-cd17b61de41b`。
+- 保留同一组受控输入，在修复前后分别执行并比对响应、日志与浏览器证据。
+- 确认修复后仅保留预期业务行为，不再触发越权、回显、异常渲染或错误请求。
+- 补充 `unknown` 族自动化回归，避免同类路径在插件、主题或代理链中回归。
+
+### 实验安全备注
+
+- 只使用回环地址、哨兵目标、无害样本或可回滚测试数据。
+- 禁止造成持久破坏、越权下载真实数据或不可回滚 side effect。
+- 如需浏览器证据，保留 baseline / proof 两份快照以及 console / network 记录。
+
+## 实验层
+
+- 仅用于自有资产、测试环境或已明确授权目标。
+- 允许公网可达目标，但必须满足资产归属或明确授权前提。
+- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
+- 若该案例涉及插件、模块或扩展，应同时检查供应链与升级策略。
+- 禁止场景: 无归属证明或无明确授权的公网目标；知名公共网站或与测试无关的第三方资产；会造成持久破坏、数据越权下载或不可回滚影响的动作
+
+## 修复示例
+
+- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
+- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
+- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
+- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
+- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
+- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
+- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
+- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
+- [javascript-typescript:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/javascript-typescript/xss-output-encoding.md)
+- [nodejs:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/nodejs/xss-output-encoding.md)
+- [java:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/java/xss-output-encoding.md)
+- [php:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/php/xss-output-encoding.md)
+- [python:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/python/xss-output-encoding.md)
+- [ruby:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/ruby/xss-output-encoding.md)
+- [csharp:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/csharp/xss-output-encoding.md)
+- [go:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/go/xss-output-encoding.md)
+- [javascript-typescript:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/javascript-typescript/token-cookie-storage.md)
+- [nodejs:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/nodejs/token-cookie-storage.md)
+- [java:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/java/token-cookie-storage.md)
+- [php:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/php/token-cookie-storage.md)
+- [python:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/python/token-cookie-storage.md)
+- [ruby:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/ruby/token-cookie-storage.md)
+- [csharp:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/csharp/token-cookie-storage.md)
+- [go:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/go/token-cookie-storage.md)
+- [javascript-typescript:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/javascript-typescript/dependency-upgrade-policy.md)
+- [nodejs:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/nodejs/dependency-upgrade-policy.md)
+- [java:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/java/dependency-upgrade-policy.md)
+- [php:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/php/dependency-upgrade-policy.md)
+- [python:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/python/dependency-upgrade-policy.md)
+- [ruby:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/ruby/dependency-upgrade-policy.md)
+- [csharp:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/csharp/dependency-upgrade-policy.md)
+- [go:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/go/dependency-upgrade-policy.md)
--- a/07-framework-security/platforms/mattermost/cases/mattermost-cve-2025-14350.md
+++ b/07-framework-security/platforms/mattermost/cases/mattermost-cve-2025-14350.md
@@ -0,0 +1,169 @@
+---
+title: "Mattermost fails to properly validate team membership when processing channel mentions"
+system_id: "mattermost"
+category: "platforms"
+advisory_mode: "core"
+published_date: "2026-02-16T15:32:47Z"
+updated_date: "2026-04-01T17:34:52.830031Z"
+severity: "low"
+exploit_status: "unknown"
+source_confidence: "ecosystem-authority"
+verification_status: "triage-manual"
+verification_mode: "synthetic"
+artifact_mode: "synthetic"
+last_run_id: ""
+target_types:
+  - "lab-local"
+  - "lab-public"
+  - "authorized-third-party"
+allow_public_validation: "yes, with ownership or explicit authorization"
+authorization_prerequisite: "asset ownership proof or explicit written authorization"
+minimal_validation: "read-only probe, controlled payload, reversible test"
+aliases:
+  - "CVE-2025-14350"
+  - "GO-2026-4521"
+  - "GHSA-57cc-2pf4-mhmx"
+affected_versions:
+  - "introduced=0, fixed<8.0.0-20251209134645-761e56bb11cc"
+  - "introduced=11.1.0"
+  - "introduced=10.11.0"
+  - "introduced=11.2.0"
+  - "introduced=0, fixed<5.3.2-0.20251209134645-761e56bb11cc"
+fixed_versions:
+  - "8.0.0-20251209134645-761e56bb11cc"
+  - "5.3.2-0.20251209134645-761e56bb11cc"
+entity_refs:
+  - "mattermost:system:root-system"
+  - "mattermost--repo--github-com-mattermost-mattermost-server:repo:affected-component"
+secure_code_topics:
+  - "authz-server-side-recheck"
+  - "xss-output-encoding"
+  - "token-cookie-storage"
+  - "dependency-upgrade-policy"
+primary_source: "https://nvd.nist.gov/vuln/detail/CVE-2025-14350"
+---
+
+# Mattermost fails to properly validate team membership when processing channel mentions
+
+## 本地实证状态
+
+- 实证状态: `triage-manual`
+- 实证方式: `synthetic`
+- Artifact 模式: `synthetic`
+- 最近运行: `-`
+- 浏览器证据: `missing`
+- Run Bundle: `-`
+
+## 事件层
+
+- Canonical ID: `mattermost--CVE-2025-14350`
+- 系统: `mattermost`
+- 严重度: `low`
+- 来源置信度: `ecosystem-authority`
+- 官方主源: https://nvd.nist.gov/vuln/detail/CVE-2025-14350
+- 影响版本: `introduced=0, fixed<8.0.0-20251209134645-761e56bb11cc, introduced=11.1.0, introduced=10.11.0, introduced=11.2.0, introduced=0, fixed<5.3.2-0.20251209134645-761e56bb11cc`
+- 修复版本: `8.0.0-20251209134645-761e56bb11cc, 5.3.2-0.20251209134645-761e56bb11cc`
+
+## 对象与版本映射
+
+- Advisory Scope: `repo`
+- 影响对象: `mattermost / mattermost-server`
+- Entity Refs: `mattermost, mattermost--repo--github-com-mattermost-mattermost-server`
+- 版本置信度: `high`
+- 版本缺口: `-`
+- 版本证据源: `https://nvd.nist.gov/vuln/detail/CVE-2025-14350, https://github.com/mattermost/mattermost/commit/761e56bb11ccb751ddbe4bab5898ccc2b384fd82, https://github.com/mattermost/mattermost, https://mattermost.com/security-updates`
+
+## 受控验证流程
+
+- Workflow ID: `mattermost--CVE-2025-14350--workflow`
+- 漏洞家族: `unknown`
+- 入口面: `repo-surface`
+- 需要角色: `unknown`
+- 触发向量: 对 `unknown` 家族入口投递最小化、可审计、可回滚的受控输入，比较修复前后差异。
+- 请求/页面入口: `/repo`
+- 输入形态: 提交最小化、可审计、可回滚的受控输入。
+- 预期不安全行为: 目标表现出超出设计边界的行为。
+
+## 其他来源
+
+- https://github.com/mattermost/mattermost/commit/761e56bb11ccb751ddbe4bab5898ccc2b384fd82
+- https://github.com/mattermost/mattermost
+- https://mattermost.com/security-updates
+
+## 证据点与补丁验证
+
+### 服务端证据点
+
+- 应用日志中的命中路径、鉴权决策和异常栈
+- 反向代理或边界层日志中的请求头、来源 IP 与路由决策
+
+### 浏览器证据点
+
+- 基线截图与攻击后截图的 DOM/视觉差异
+- console、network 与 response metadata 中的异常信号
+
+### 数据库/文件系统证据点
+
+- 数据库中新增/越权读取的测试数据
+- 文件系统中新增上传样本、缓存条目或越权读取痕迹
+
+### 检测信号
+
+- WAF / reverse proxy 异常日志、访问日志和告警
+- 应用审计日志中的权限错误、重定向异常、模板渲染或上传落盘事件
+
+### 补丁验证步骤
+
+- 确认目标版本从 `introduced=0, fixed<8.0.0-20251209134645-761e56bb11cc, introduced=11.1.0, introduced=10.11.0` 升级或回移到 `8.0.0-20251209134645-761e56bb11cc`。
+- 保留同一组受控输入，在修复前后分别执行并比对响应、日志与浏览器证据。
+- 确认修复后仅保留预期业务行为，不再触发越权、回显、异常渲染或错误请求。
+- 补充 `unknown` 族自动化回归，避免同类路径在插件、主题或代理链中回归。
+
+### 实验安全备注
+
+- 只使用回环地址、哨兵目标、无害样本或可回滚测试数据。
+- 禁止造成持久破坏、越权下载真实数据或不可回滚 side effect。
+- 如需浏览器证据，保留 baseline / proof 两份快照以及 console / network 记录。
+
+## 实验层
+
+- 仅用于自有资产、测试环境或已明确授权目标。
+- 允许公网可达目标，但必须满足资产归属或明确授权前提。
+- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
+- 若该案例涉及插件、模块或扩展，应同时检查供应链与升级策略。
+- 禁止场景: 无归属证明或无明确授权的公网目标；知名公共网站或与测试无关的第三方资产；会造成持久破坏、数据越权下载或不可回滚影响的动作
+
+## 修复示例
+
+- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
+- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
+- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
+- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
+- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
+- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
+- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
+- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
+- [javascript-typescript:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/javascript-typescript/xss-output-encoding.md)
+- [nodejs:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/nodejs/xss-output-encoding.md)
+- [java:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/java/xss-output-encoding.md)
+- [php:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/php/xss-output-encoding.md)
+- [python:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/python/xss-output-encoding.md)
+- [ruby:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/ruby/xss-output-encoding.md)
+- [csharp:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/csharp/xss-output-encoding.md)
+- [go:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/go/xss-output-encoding.md)
+- [javascript-typescript:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/javascript-typescript/token-cookie-storage.md)
+- [nodejs:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/nodejs/token-cookie-storage.md)
+- [java:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/java/token-cookie-storage.md)
+- [php:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/php/token-cookie-storage.md)
+- [python:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/python/token-cookie-storage.md)
+- [ruby:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/ruby/token-cookie-storage.md)
+- [csharp:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/csharp/token-cookie-storage.md)
+- [go:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/go/token-cookie-storage.md)
+- [javascript-typescript:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/javascript-typescript/dependency-upgrade-policy.md)
+- [nodejs:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/nodejs/dependency-upgrade-policy.md)
+- [java:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/java/dependency-upgrade-policy.md)
+- [php:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/php/dependency-upgrade-policy.md)
+- [python:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/python/dependency-upgrade-policy.md)
+- [ruby:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/ruby/dependency-upgrade-policy.md)
+- [csharp:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/csharp/dependency-upgrade-policy.md)
+- [go:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/go/dependency-upgrade-policy.md)
--- a/07-framework-security/platforms/mattermost/cases/mattermost-cve-2025-14573.md
+++ b/07-framework-security/platforms/mattermost/cases/mattermost-cve-2025-14573.md
@@ -0,0 +1,169 @@
+---
+title: "Mattermost fails to enforce invite permissions when updating team settings"
+system_id: "mattermost"
+category: "platforms"
+advisory_mode: "core"
+published_date: "2026-02-16T15:32:47Z"
+updated_date: "2026-04-01T17:35:38.201280Z"
+severity: "low"
+exploit_status: "unknown"
+source_confidence: "ecosystem-authority"
+verification_status: "triage-manual"
+verification_mode: "synthetic"
+artifact_mode: "synthetic"
+last_run_id: ""
+target_types:
+  - "lab-local"
+  - "lab-public"
+  - "authorized-third-party"
+allow_public_validation: "yes, with ownership or explicit authorization"
+authorization_prerequisite: "asset ownership proof or explicit written authorization"
+minimal_validation: "read-only probe, controlled payload, reversible test"
+aliases:
+  - "CVE-2025-14573"
+  - "GO-2026-4523"
+  - "GHSA-cgjg-p2m2-qm4p"
+affected_versions:
+  - "introduced=0, fixed<8.0.0-20251215190648-6404ab29acc0"
+  - "introduced=11.1.0"
+  - "introduced=10.11.0"
+  - "introduced=11.2.0"
+  - "introduced=0, fixed<5.3.2-0.20251215190648-6404ab29acc0"
+fixed_versions:
+  - "8.0.0-20251215190648-6404ab29acc0"
+  - "5.3.2-0.20251215190648-6404ab29acc0"
+entity_refs:
+  - "mattermost:system:root-system"
+  - "mattermost--repo--github-com-mattermost-mattermost-server:repo:affected-component"
+secure_code_topics:
+  - "authz-server-side-recheck"
+  - "xss-output-encoding"
+  - "token-cookie-storage"
+  - "dependency-upgrade-policy"
+primary_source: "https://nvd.nist.gov/vuln/detail/CVE-2025-14573"
+---
+
+# Mattermost fails to enforce invite permissions when updating team settings
+
+## 本地实证状态
+
+- 实证状态: `triage-manual`
+- 实证方式: `synthetic`
+- Artifact 模式: `synthetic`
+- 最近运行: `-`
+- 浏览器证据: `missing`
+- Run Bundle: `-`
+
+## 事件层
+
+- Canonical ID: `mattermost--CVE-2025-14573`
+- 系统: `mattermost`
+- 严重度: `low`
+- 来源置信度: `ecosystem-authority`
+- 官方主源: https://nvd.nist.gov/vuln/detail/CVE-2025-14573
+- 影响版本: `introduced=0, fixed<8.0.0-20251215190648-6404ab29acc0, introduced=11.1.0, introduced=10.11.0, introduced=11.2.0, introduced=0, fixed<5.3.2-0.20251215190648-6404ab29acc0`
+- 修复版本: `8.0.0-20251215190648-6404ab29acc0, 5.3.2-0.20251215190648-6404ab29acc0`
+
+## 对象与版本映射
+
+- Advisory Scope: `repo`
+- 影响对象: `mattermost / mattermost-server`
+- Entity Refs: `mattermost, mattermost--repo--github-com-mattermost-mattermost-server`
+- 版本置信度: `high`
+- 版本缺口: `-`
+- 版本证据源: `https://nvd.nist.gov/vuln/detail/CVE-2025-14573, https://github.com/mattermost/mattermost/commit/6404ab29acc04901c5cb1cf5ad97fc3c0693e2cd, https://github.com/mattermost/mattermost, https://mattermost.com/security-updates`
+
+## 受控验证流程
+
+- Workflow ID: `mattermost--CVE-2025-14573--workflow`
+- 漏洞家族: `unknown`
+- 入口面: `repo-surface`
+- 需要角色: `unknown`
+- 触发向量: 对 `unknown` 家族入口投递最小化、可审计、可回滚的受控输入，比较修复前后差异。
+- 请求/页面入口: `/repo`
+- 输入形态: 提交最小化、可审计、可回滚的受控输入。
+- 预期不安全行为: 目标表现出超出设计边界的行为。
+
+## 其他来源
+
+- https://github.com/mattermost/mattermost/commit/6404ab29acc04901c5cb1cf5ad97fc3c0693e2cd
+- https://github.com/mattermost/mattermost
+- https://mattermost.com/security-updates
+
+## 证据点与补丁验证
+
+### 服务端证据点
+
+- 应用日志中的命中路径、鉴权决策和异常栈
+- 反向代理或边界层日志中的请求头、来源 IP 与路由决策
+
+### 浏览器证据点
+
+- 基线截图与攻击后截图的 DOM/视觉差异
+- console、network 与 response metadata 中的异常信号
+
+### 数据库/文件系统证据点
+
+- 数据库中新增/越权读取的测试数据
+- 文件系统中新增上传样本、缓存条目或越权读取痕迹
+
+### 检测信号
+
+- WAF / reverse proxy 异常日志、访问日志和告警
+- 应用审计日志中的权限错误、重定向异常、模板渲染或上传落盘事件
+
+### 补丁验证步骤
+
+- 确认目标版本从 `introduced=0, fixed<8.0.0-20251215190648-6404ab29acc0, introduced=11.1.0, introduced=10.11.0` 升级或回移到 `8.0.0-20251215190648-6404ab29acc0`。
+- 保留同一组受控输入，在修复前后分别执行并比对响应、日志与浏览器证据。
+- 确认修复后仅保留预期业务行为，不再触发越权、回显、异常渲染或错误请求。
+- 补充 `unknown` 族自动化回归，避免同类路径在插件、主题或代理链中回归。
+
+### 实验安全备注
+
+- 只使用回环地址、哨兵目标、无害样本或可回滚测试数据。
+- 禁止造成持久破坏、越权下载真实数据或不可回滚 side effect。
+- 如需浏览器证据，保留 baseline / proof 两份快照以及 console / network 记录。
+
+## 实验层
+
+- 仅用于自有资产、测试环境或已明确授权目标。
+- 允许公网可达目标，但必须满足资产归属或明确授权前提。
+- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
+- 若该案例涉及插件、模块或扩展，应同时检查供应链与升级策略。
+- 禁止场景: 无归属证明或无明确授权的公网目标；知名公共网站或与测试无关的第三方资产；会造成持久破坏、数据越权下载或不可回滚影响的动作
+
+## 修复示例
+
+- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
+- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
+- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
+- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
+- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
+- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
+- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
+- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
+- [javascript-typescript:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/javascript-typescript/xss-output-encoding.md)
+- [nodejs:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/nodejs/xss-output-encoding.md)
+- [java:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/java/xss-output-encoding.md)
+- [php:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/php/xss-output-encoding.md)
+- [python:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/python/xss-output-encoding.md)
+- [ruby:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/ruby/xss-output-encoding.md)
+- [csharp:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/csharp/xss-output-encoding.md)
+- [go:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/go/xss-output-encoding.md)
+- [javascript-typescript:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/javascript-typescript/token-cookie-storage.md)
+- [nodejs:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/nodejs/token-cookie-storage.md)
+- [java:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/java/token-cookie-storage.md)
+- [php:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/php/token-cookie-storage.md)
+- [python:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/python/token-cookie-storage.md)
+- [ruby:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/ruby/token-cookie-storage.md)
+- [csharp:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/csharp/token-cookie-storage.md)
+- [go:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/go/token-cookie-storage.md)
+- [javascript-typescript:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/javascript-typescript/dependency-upgrade-policy.md)
+- [nodejs:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/nodejs/dependency-upgrade-policy.md)
+- [java:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/java/dependency-upgrade-policy.md)
+- [php:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/php/dependency-upgrade-policy.md)
+- [python:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/python/dependency-upgrade-policy.md)
+- [ruby:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/ruby/dependency-upgrade-policy.md)
+- [csharp:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/csharp/dependency-upgrade-policy.md)
+- [go:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/go/dependency-upgrade-policy.md)
--- a/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-0999.md
+++ b/07-framework-security/platforms/mattermost/cases/mattermost-cve-2026-0999.md
@@ -0,0 +1,169 @@
+---
+title: "Mattermost fails to properly validate login method restrictions"
+system_id: "mattermost"
+category: "platforms"
+advisory_mode: "core"
+published_date: "2026-02-16T12:30:24Z"
+updated_date: "2026-04-01T17:34:48.742132Z"
+severity: "low"
+exploit_status: "unknown"
+source_confidence: "ecosystem-authority"
+verification_status: "triage-manual"
+verification_mode: "synthetic"
+artifact_mode: "synthetic"
+last_run_id: ""
+target_types:
+  - "lab-local"
+  - "lab-public"
+  - "authorized-third-party"
+allow_public_validation: "yes, with ownership or explicit authorization"
+authorization_prerequisite: "asset ownership proof or explicit written authorization"
+minimal_validation: "read-only probe, controlled payload, reversible test"
+aliases:
+  - "CVE-2026-0999"
+  - "GO-2026-4520"
+  - "GHSA-3c9r-7f29-qp32"
+affected_versions:
+  - "introduced=0, fixed<8.0.0-20251212052346-61651b0df7ea"
+  - "introduced=11.1.0"
+  - "introduced=10.11.0"
+  - "introduced=11.2.0"
+  - "introduced=0, fixed<5.3.2-0.20251212052346-61651b0df7ea"
+fixed_versions:
+  - "8.0.0-20251212052346-61651b0df7ea"
+  - "5.3.2-0.20251212052346-61651b0df7ea"
+entity_refs:
+  - "mattermost:system:root-system"
+  - "mattermost--repo--github-com-mattermost-mattermost-server:repo:affected-component"
+secure_code_topics:
+  - "authz-server-side-recheck"
+  - "xss-output-encoding"
+  - "token-cookie-storage"
+  - "dependency-upgrade-policy"
+primary_source: "https://nvd.nist.gov/vuln/detail/CVE-2026-0999"
+---
+
+# Mattermost fails to properly validate login method restrictions
+
+## 本地实证状态
+
+- 实证状态: `triage-manual`
+- 实证方式: `synthetic`
+- Artifact 模式: `synthetic`
+- 最近运行: `-`
+- 浏览器证据: `missing`
+- Run Bundle: `-`
+
+## 事件层
+
+- Canonical ID: `mattermost--CVE-2026-0999`
+- 系统: `mattermost`
+- 严重度: `low`
+- 来源置信度: `ecosystem-authority`
+- 官方主源: https://nvd.nist.gov/vuln/detail/CVE-2026-0999
+- 影响版本: `introduced=0, fixed<8.0.0-20251212052346-61651b0df7ea, introduced=11.1.0, introduced=10.11.0, introduced=11.2.0, introduced=0, fixed<5.3.2-0.20251212052346-61651b0df7ea`
+- 修复版本: `8.0.0-20251212052346-61651b0df7ea, 5.3.2-0.20251212052346-61651b0df7ea`
+
+## 对象与版本映射
+
+- Advisory Scope: `repo`
+- 影响对象: `mattermost / mattermost-server`
+- Entity Refs: `mattermost, mattermost--repo--github-com-mattermost-mattermost-server`
+- 版本置信度: `high`
+- 版本缺口: `-`
+- 版本证据源: `https://nvd.nist.gov/vuln/detail/CVE-2026-0999, https://github.com/mattermost/mattermost/commit/61651b0df7ea5db55d1e54f8d6fb5fce4149309c, https://github.com/mattermost/mattermost, https://mattermost.com/security-updates`
+
+## 受控验证流程
+
+- Workflow ID: `mattermost--CVE-2026-0999--workflow`
+- 漏洞家族: `unknown`
+- 入口面: `repo-surface`
+- 需要角色: `unknown`
+- 触发向量: 对 `unknown` 家族入口投递最小化、可审计、可回滚的受控输入，比较修复前后差异。
+- 请求/页面入口: `/repo`
+- 输入形态: 提交最小化、可审计、可回滚的受控输入。
+- 预期不安全行为: 目标表现出超出设计边界的行为。
+
+## 其他来源
+
+- https://github.com/mattermost/mattermost/commit/61651b0df7ea5db55d1e54f8d6fb5fce4149309c
+- https://github.com/mattermost/mattermost
+- https://mattermost.com/security-updates
+
+## 证据点与补丁验证
+
+### 服务端证据点
+
+- 应用日志中的命中路径、鉴权决策和异常栈
+- 反向代理或边界层日志中的请求头、来源 IP 与路由决策
+
+### 浏览器证据点
+
+- 基线截图与攻击后截图的 DOM/视觉差异
+- console、network 与 response metadata 中的异常信号
+
+### 数据库/文件系统证据点
+
+- 数据库中新增/越权读取的测试数据
+- 文件系统中新增上传样本、缓存条目或越权读取痕迹
+
+### 检测信号
+
+- WAF / reverse proxy 异常日志、访问日志和告警
+- 应用审计日志中的权限错误、重定向异常、模板渲染或上传落盘事件
+
+### 补丁验证步骤
+
+- 确认目标版本从 `introduced=0, fixed<8.0.0-20251212052346-61651b0df7ea, introduced=11.1.0, introduced=10.11.0` 升级或回移到 `8.0.0-20251212052346-61651b0df7ea`。
+- 保留同一组受控输入，在修复前后分别执行并比对响应、日志与浏览器证据。
+- 确认修复后仅保留预期业务行为，不再触发越权、回显、异常渲染或错误请求。
+- 补充 `unknown` 族自动化回归，避免同类路径在插件、主题或代理链中回归。
+
+### 实验安全备注
+
+- 只使用回环地址、哨兵目标、无害样本或可回滚测试数据。
+- 禁止造成持久破坏、越权下载真实数据或不可回滚 side effect。
+- 如需浏览器证据，保留 baseline / proof 两份快照以及 console / network 记录。
+
+## 实验层
+
+- 仅用于自有资产、测试环境或已明确授权目标。
+- 允许公网可达目标，但必须满足资产归属或明确授权前提。
+- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
+- 若该案例涉及插件、模块或扩展，应同时检查供应链与升级策略。
+- 禁止场景: 无归属证明或无明确授权的公网目标；知名公共网站或与测试无关的第三方资产；会造成持久破坏、数据越权下载或不可回滚影响的动作
+
+## 修复示例
+
+- [javascript-typescript:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/javascript-typescript/authz-server-side-recheck.md)
+- [nodejs:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/nodejs/authz-server-side-recheck.md)
+- [java:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/java/authz-server-side-recheck.md)
+- [php:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/php/authz-server-side-recheck.md)
+- [python:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/python/authz-server-side-recheck.md)
+- [ruby:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/ruby/authz-server-side-recheck.md)
+- [csharp:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/csharp/authz-server-side-recheck.md)
+- [go:authz-server-side-recheck](/Users/x/websafe/05-defense/secure-code/go/authz-server-side-recheck.md)
+- [javascript-typescript:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/javascript-typescript/xss-output-encoding.md)
+- [nodejs:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/nodejs/xss-output-encoding.md)
+- [java:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/java/xss-output-encoding.md)
+- [php:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/php/xss-output-encoding.md)
+- [python:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/python/xss-output-encoding.md)
+- [ruby:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/ruby/xss-output-encoding.md)
+- [csharp:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/csharp/xss-output-encoding.md)
+- [go:xss-output-encoding](/Users/x/websafe/05-defense/secure-code/go/xss-output-encoding.md)
+- [javascript-typescript:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/javascript-typescript/token-cookie-storage.md)
+- [nodejs:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/nodejs/token-cookie-storage.md)
+- [java:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/java/token-cookie-storage.md)
+- [php:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/php/token-cookie-storage.md)
+- [python:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/python/token-cookie-storage.md)
+- [ruby:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/ruby/token-cookie-storage.md)
+- [csharp:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/csharp/token-cookie-storage.md)
+- [go:token-cookie-storage](/Users/x/websafe/05-defense/secure-code/go/token-cookie-storage.md)
+- [javascript-typescript:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/javascript-typescript/dependency-upgrade-policy.md)
+- [nodejs:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/nodejs/dependency-upgrade-policy.md)
+- [java:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/java/dependency-upgrade-policy.md)
+- [php:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/php/dependency-upgrade-policy.md)
+- [python:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/python/dependency-upgrade-policy.md)
+- [ruby:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/ruby/dependency-upgrade-policy.md)
+- [csharp:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/csharp/dependency-upgrade-policy.md)
+- [go:dependency-upgrade-policy](/Users/x/websafe/05-defense/secure-code/go/dependency-upgrade-policy.md)
--- a/07-framework-security/platforms/phpmyadmin/INDEX.md
+++ b/07-framework-security/platforms/phpmyadmin/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `50`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/platforms/redmine/INDEX.md
+++ b/07-framework-security/platforms/redmine/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `50`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/servers/apache-httpd/INDEX.md
+++ b/07-framework-security/servers/apache-httpd/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `135`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/servers/apache-tomcat/INDEX.md
+++ b/07-framework-security/servers/apache-tomcat/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `136`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/servers/caddy/INDEX.md
+++ b/07-framework-security/servers/caddy/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `29`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/servers/haproxy/INDEX.md
+++ b/07-framework-security/servers/haproxy/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `7`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/servers/nginx/INDEX.md
+++ b/07-framework-security/servers/nginx/INDEX.md
@@ -12,7 +12,7 @@
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `110`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/07-framework-security/servers/traefik/INDEX.md
+++ b/07-framework-security/servers/traefik/INDEX.md
@@ -6,13 +6,13 @@
 - 分类: `servers`
 - 覆盖策略: `rolling-24m`
 - 总案例数: `48`
- 近 30 天新增/更新: `20`
+- 近 30 天新增/更新: `11`
 - 重点 Markdown 案例数: `0`
 - 已实证(真实版本): `0`
 - 已实证(synthetic): `0`
 - 阻塞数: `0`
 - 待人工/缺浏览器证据: `48`
- 最近渲染时间: `2026-04-01T09:21:04+00:00`
+- 最近渲染时间: `2026-04-02T09:18:51+00:00`

 ## 目标约束

--- a/08-threat-intel/.DS_Store
+++ b/08-threat-intel/.DS_Store
--- a/08-threat-intel/generated/coverage-matrix.md
+++ b/08-threat-intel/generated/coverage-matrix.md
@@ -32,12 +32,12 @@
 | Koa | `frameworks` | `rolling-24m` | `-` | `yes` | `1` | `1` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-02-26T23:36:36.294040Z` |
 | Laravel | `frameworks` | `rolling-24m` | `-` | `yes` | `2` | `2` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-13T22:15:34.333730Z` |
 | Magento Open Source | `ecommerce` | `history-full` | `yes` | `yes` | `89` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2025-04-20T01:37:25.860` |
-| Mattermost | `platforms` | `rolling-24m` | `-` | `yes` | `36` | `36` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `Fix Release Date` |
-| MediaWiki | `cms` | `rolling-24m` | `-` | `yes` | `72` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `72` | `Wed, 22 Oct 2025 21:44:43 +0000` |
+| Mattermost | `platforms` | `rolling-24m` | `-` | `yes` | `40` | `40` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `Fix Release Date` |
+| MediaWiki | `cms` | `rolling-24m` | `-` | `yes` | `73` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `73` | `Wed, 22 Oct 2025 21:44:43 +0000` |
 | Medusa | `ecommerce` | `rolling-24m` | `-` | `yes` | `15` | `0` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `15` | `` |
 | Moodle | `cms` | `rolling-24m` | `-` | `yes` | `40` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `40` | `2025-04-09T00:30:58.490` |
 | NestJS | `frameworks` | `rolling-24m` | `-` | `yes` | `2` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `2` | `2026-03-02T20:30:10.923` |
-| Next.js | `frameworks` | `history-full` | `yes` | `yes` | `66` | `41` | `3` | `seeded` | `real:26/synthetic:0/blocked:0` | `21` | `26` | `25` | `2026-03-25T19:49:01.129152Z` |
+| Next.js | `frameworks` | `history-full` | `yes` | `yes` | `66` | `41` | `3` | `seeded` | `real:26/synthetic:0/blocked:0` | `21` | `26` | `25` | `2026-04-01T17:31:03.347234Z` |
 | Nginx | `servers` | `history-full` | `yes` | `yes` | `110` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `110` | `2025-08-12T17:24:44.367` |
 | Node.js | `frameworks` | `history-full` | `yes` | `yes` | `8` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `8` | `2025-01-21` |
 | Nuxt | `frameworks` | `history-full` | `yes` | `yes` | `28` | `5` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `23` | `2025-09-18T13:04:21Z` |
--- a/08-threat-intel/generated/dashboard/advisories.json
+++ b/08-threat-intel/generated/dashboard/advisories.json
--- a/08-threat-intel/generated/dashboard/architecture.json
+++ b/08-threat-intel/generated/dashboard/architecture.json
@@ -1,5 +1,5 @@
 {
-  "generated_at": "2026-04-01T09:21:06+00:00",
+  "generated_at": "2026-04-02T09:18:53+00:00",
  "title": "\u5f53\u524d\u67b6\u6784\u5e93",
  "summary": "\u5de5\u4f5c\u53f0\u3001\u63a7\u5236\u9762\u3001\u6570\u636e\u5c42\u3001\u6388\u6743\u8fb9\u754c\u4e0e\u7cfb\u7edf\u8986\u76d6\u7684\u5f53\u524d\u771f\u503c\u89c6\u56fe\u3002",
  "sections": [
@@ -39,7 +39,7 @@
        },
        {
          "label": "\u5f53\u524d\u6f0f\u6d1e\u6761\u76ee",
-          "value": "2431"
+          "value": "2436"
        }
      ],
      "fields": [
@@ -57,7 +57,7 @@
        },
        {
          "label": "\u751f\u6210\u65f6\u95f4",
-          "value": "2026-04-01T09:21:06+00:00"
+          "value": "2026-04-02T09:18:53+00:00"
        }
      ],
      "links": [
@@ -5973,7 +5973,7 @@
        },
        {
          "label": "Advisory \u6570",
-          "value": "2431"
+          "value": "2436"
        },
        {
          "label": "\u72b6\u6001\u7c7b\u578b",
@@ -5992,7 +5992,7 @@
          "items": [
            {
              "title": "\u4eba\u5de5\u5206\u8bca",
-              "summary": "\u5f53\u524d\u7d2f\u8ba1 2342 \u6761\u3002",
+              "summary": "\u5f53\u524d\u7d2f\u8ba1 2347 \u6761\u3002",
              "open": false,
              "fields": [
                {
@@ -6001,7 +6001,7 @@
                },
                {
                  "label": "\u6570\u91cf",
-                  "value": "2342"
+                  "value": "2347"
                }
              ]
            },
--- a/08-threat-intel/generated/dashboard/data/completeness.json
+++ b/08-threat-intel/generated/dashboard/data/completeness.json
@@ -1,7 +1,7 @@
 {
-  "generated_at": "2026-04-01T09:21:06+00:00",
+  "generated_at": "2026-04-02T09:18:53+00:00",
  "advisory_total": 89,
-  "registry_advisory_total": 2431,
+  "registry_advisory_total": 2436,
  "scope": "latest-run-backed-advisories",
  "latest_statuses": {
    "verified-real": 89
@@ -175,12 +175,12 @@
    "active_source_count": 102,
    "green_source_count": 102,
    "failure_count": 0,
-    "last_fully_green_run": "2026-04-01T09:20:10+00:00",
+    "last_fully_green_run": "2026-04-02T09:18:31+00:00",
    "open_alert_count": 0,
    "resolved_alert_count": 101
  },
  "entity_coverage": {
-    "generated_at": "2026-04-01T09:21:04+00:00",
+    "generated_at": "2026-04-02T09:18:51+00:00",
    "cataloged_entity_total": 110,
    "candidate_entity_total": 7,
    "history_full_complete_count": 41,
@@ -990,7 +990,7 @@
            "entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
            "entity_type": "repo",
            "display_name": "mattermost / mattermost-server",
-            "advisory_count": 17,
+            "advisory_count": 21,
            "history_backfill_status": "seeded",
            "latest_sync_status": "green"
          },
@@ -1950,30 +1950,30 @@
      "discovery_queue": 7,
      "history_queue": 27,
      "latest_queue": 10,
-      "workflow_queue": 2181
+      "workflow_queue": 2182
    }
  },
  "monitor_summary": {
-    "generated_at": "2026-04-01T09:20:10+00:00",
+    "generated_at": "2026-04-02T09:18:31+00:00",
    "active_source_count": 102,
    "green_source_count": 102,
    "source_failure_count": 0,
    "open_alert_count": 0,
    "resolved_alert_count": 101,
-    "last_fully_green_run": "2026-04-01T09:20:10+00:00",
+    "last_fully_green_run": "2026-04-02T09:18:31+00:00",
    "source_catalog": {
      "system_count": 62,
      "source_count": 179,
      "retired_source_count": 77
    },
    "ingest": {
-      "new_count": 3,
-      "updated_count": 0,
+      "new_count": 5,
+      "updated_count": 1,
      "failure_count": 0,
      "systems_touched": [
-        "discourse",
        "mattermost",
-        "mediawiki"
+        "mediawiki",
+        "nextjs"
      ]
    },
    "validation": {
@@ -1993,14 +1993,14 @@
      "cataloged_entity_total": 110,
      "latest_version_synced_count": 95,
      "source_gap_count": 15,
-      "security_version_total": 6316,
+      "security_version_total": 6377,
      "security_version_entity_count": 83,
      "auto_promoted_entity_count": 10,
-      "lab_enqueued_count": 3
+      "lab_enqueued_count": 5
    },
    "lab_enqueue": {
-      "enqueued": 3,
-      "queue_total": 2387,
+      "enqueued": 5,
+      "queue_total": 2392,
      "pending_count": 0
    }
  },
--- a/08-threat-intel/generated/dashboard/data/entity-completeness.json
+++ b/08-threat-intel/generated/dashboard/data/entity-completeness.json
@@ -1,5 +1,5 @@
 {
-  "generated_at": "2026-04-01T09:21:04+00:00",
+  "generated_at": "2026-04-02T09:18:51+00:00",
  "cataloged_entity_total": 110,
  "candidate_entity_total": 7,
  "history_full_complete_count": 41,
@@ -809,7 +809,7 @@
          "entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
          "entity_type": "repo",
          "display_name": "mattermost / mattermost-server",
-          "advisory_count": 17,
+          "advisory_count": 21,
          "history_backfill_status": "seeded",
          "latest_sync_status": "green"
        },
@@ -1769,6 +1769,6 @@
    "discovery_queue": 7,
    "history_queue": 27,
    "latest_queue": 10,
-    "workflow_queue": 2181
+    "workflow_queue": 2182
  }
 }
--- a/08-threat-intel/generated/dashboard/data/entity-queues.json
+++ b/08-threat-intel/generated/dashboard/data/entity-queues.json
@@ -1,5 +1,5 @@
 {
-  "generated_at": "2026-04-01T09:21:04+00:00",
+  "generated_at": "2026-04-02T09:18:51+00:00",
  "discovery_queue": {
    "count": 7,
    "items": [
@@ -408,7 +408,7 @@
    ]
  },
  "workflow_queue": {
-    "count": 2181,
+    "count": 2182,
    "items": [
      {
        "canonical_id": "adminer--CVE-2026-25878",
--- a/08-threat-intel/generated/dashboard/data/lab-enqueue-summary.json
+++ b/08-threat-intel/generated/dashboard/data/lab-enqueue-summary.json
@@ -1,7 +1,7 @@
 {
-  "generated_at": "2026-04-01T09:20:55+00:00",
-  "enqueued": 3,
-  "queue_total": 2387,
+  "generated_at": "2026-04-02T09:18:45+00:00",
+  "enqueued": 5,
+  "queue_total": 2392,
  "items": [
    {
      "advisory_id": "directus--05a97ef95a",
@@ -148,11 +148,6 @@
      "system_id": "directus",
      "priority": "version-sync"
    },
-    {
-      "advisory_id": "discourse--5dce90675e",
-      "system_id": "discourse",
-      "priority": "version-sync"
-    },
    {
      "advisory_id": "django--039dc7ddc9",
      "system_id": "django",
@@ -1099,15 +1094,35 @@
      "priority": "version-sync"
    },
    {
-      "advisory_id": "mattermost--CVE-2026-3113",
+      "advisory_id": "mattermost--CVE-2025-13821",
      "system_id": "mattermost",
      "priority": "version-sync"
    },
    {
-      "advisory_id": "mediawiki--469c5db88b",
+      "advisory_id": "mattermost--CVE-2025-14350",
+      "system_id": "mattermost",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "mattermost--CVE-2025-14573",
+      "system_id": "mattermost",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "mattermost--CVE-2026-0999",
+      "system_id": "mattermost",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "mediawiki--05670a18f6",
      "system_id": "mediawiki",
      "priority": "version-sync"
    },
+    {
+      "advisory_id": "nextjs--CVE-2025-59472",
+      "system_id": "nextjs",
+      "priority": "version-sync"
+    },
    {
      "advisory_id": "opencart--139edfb591",
      "system_id": "opencart",
@@ -2772,6 +2787,561 @@
      "advisory_id": "strapi--ea5ecc42f3",
      "system_id": "strapi",
      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--05da41121f",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--06e151b334",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--08ab0e40fd",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--08ff88b89e",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--1129617837",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--18f94418c3",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--1b2a89ca9c",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--2646cca050",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--2acb79d818",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--30c7084831",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--313be91ecc",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--35d1bcc8fd",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--38e031b62a",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--3b3ee22bdd",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--3d4415cd8c",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--3f7bcf6460",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--40fad2352c",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--46dfa1debb",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--4703641b3e",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--4b8901521b",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--4e5d64d078",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--509829ee63",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--5431e35cb9",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--583e91c778",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--5ea81bed02",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--5ebeb363ab",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--5f95d49feb",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--608614d706",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--61bcf00c63",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--6398a77e67",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--669aeb4ed9",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--69fa3cd79b",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--6a9eb36c09",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--6c455c6050",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--6f6549cea3",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--6ff424270d",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--7f9ac413c1",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--8197f55ac4",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--81f7400465",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--82db1502da",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--8aa1dccc64",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--94b883541e",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--9848665054",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--9b9e3ff8e5",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--9c50136dd9",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2014-4549",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2014-4558",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2014-6313",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2015-2069",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2015-2329",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2015-5065",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2016-10112",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2016-10922",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2016-10923",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2016-10935",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2017-17058",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2017-18356",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2017-18506",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2017-18592",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-11485",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-11486",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-11525",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-11579",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-20714",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-20782",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-20966",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-5316",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-8710",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-8711",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-1010124",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-11807",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-14774",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-14796",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-14948",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-14978",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-14979",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-15092",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-18668",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-18834",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-20891",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-5979",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-7441",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-9168",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2020-11727",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2020-8819",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--a130ac93bb",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--a72c466a05",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--a89ba1be4d",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--aa9bdbc2ce",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--aabb0dbc7f",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ab923ae740",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ac4a14e633",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ac8969a095",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--b0bcd8ad54",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--b19dfd0a1c",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--b213245e4b",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--bc8055b458",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--c4c5c5cb89",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--d01b27ef60",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--d3da259278",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--d717626a6f",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--dd8265593a",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--e0fa01b204",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--e2b8d0d0e4",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--e8abb34bbb",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--eb8448be50",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ec096f5867",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ef0c884c7a",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ef9e14861f",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--f0e42669e3",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--fe6541027e",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
    }
  ],
  "pending": []
--- a/08-threat-intel/generated/dashboard/data/monitor-summary.json
+++ b/08-threat-intel/generated/dashboard/data/monitor-summary.json
@@ -1,24 +1,24 @@
 {
-  "generated_at": "2026-04-01T09:20:10+00:00",
+  "generated_at": "2026-04-02T09:18:31+00:00",
  "active_source_count": 102,
  "green_source_count": 102,
  "source_failure_count": 0,
  "open_alert_count": 0,
  "resolved_alert_count": 101,
-  "last_fully_green_run": "2026-04-01T09:20:10+00:00",
+  "last_fully_green_run": "2026-04-02T09:18:31+00:00",
  "source_catalog": {
    "system_count": 62,
    "source_count": 179,
    "retired_source_count": 77
  },
  "ingest": {
-    "new_count": 3,
-    "updated_count": 0,
+    "new_count": 5,
+    "updated_count": 1,
    "failure_count": 0,
    "systems_touched": [
-      "discourse",
      "mattermost",
-      "mediawiki"
+      "mediawiki",
+      "nextjs"
    ]
  },
  "validation": {
@@ -38,14 +38,14 @@
    "cataloged_entity_total": 110,
    "latest_version_synced_count": 95,
    "source_gap_count": 15,
-    "security_version_total": 6316,
+    "security_version_total": 6377,
    "security_version_entity_count": 83,
    "auto_promoted_entity_count": 10,
-    "lab_enqueued_count": 3
+    "lab_enqueued_count": 5
  },
  "lab_enqueue": {
-    "enqueued": 3,
-    "queue_total": 2387,
+    "enqueued": 5,
+    "queue_total": 2392,
    "pending_count": 0
  }
 }
--- a/08-threat-intel/generated/dashboard/data/release-index.json
+++ b/08-threat-intel/generated/dashboard/data/release-index.json
--- a/08-threat-intel/generated/dashboard/data/source-catalog-audit.json
+++ b/08-threat-intel/generated/dashboard/data/source-catalog-audit.json
@@ -1,5 +1,5 @@
 {
-  "generated_at": "2026-04-01T09:17:08+00:00",
+  "generated_at": "2026-04-02T09:17:03+00:00",
  "system_count": 62,
  "source_count": 179,
  "active_source_count": 102,
--- a/08-threat-intel/generated/dashboard/data/source-health.json
+++ b/08-threat-intel/generated/dashboard/data/source-health.json
@@ -1,17 +1,17 @@
 {
-  "generated_at": "2026-04-01T09:20:10+00:00",
+  "generated_at": "2026-04-02T09:18:31+00:00",
  "active_source_count": 102,
  "green_source_count": 102,
  "failure_count": 0,
  "all_green": true,
-  "last_fully_green_run": "2026-04-01T09:20:10+00:00",
+  "last_fully_green_run": "2026-04-02T09:18:31+00:00",
  "retries_performed": 0,
  "probes": [
    {
      "system_id": "adminer",
      "source_name": "OSV Adminer",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.898,
+      "elapsed_seconds": 3.498,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -19,7 +19,7 @@
      "system_id": "adobe-commerce",
      "source_name": "Adobe Magento Security Index",
      "source_kind": "vendor-index",
-      "elapsed_seconds": 0.028,
+      "elapsed_seconds": 0.024,
      "kind": "vendor-index",
      "items_seen": 46
    },
@@ -27,7 +27,7 @@
      "system_id": "angular",
      "source_name": "OSV Angular",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.188,
+      "elapsed_seconds": 1.447,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -35,7 +35,7 @@
      "system_id": "apache-httpd",
      "source_name": "Apache HTTPD Security",
      "source_kind": "html-links",
-      "elapsed_seconds": 14.188,
+      "elapsed_seconds": 2.025,
      "kind": "html-links",
      "items_seen": 182
    },
@@ -43,15 +43,15 @@
      "system_id": "apache-httpd",
      "source_name": "CISA KEV Apache HTTPD",
      "source_kind": "kev-json",
-      "elapsed_seconds": 14.188,
+      "elapsed_seconds": 2.025,
      "kind": "kev-json",
-      "items_seen": 1555
+      "items_seen": 1556
    },
    {
      "system_id": "apache-tomcat",
      "source_name": "Apache Tomcat Security",
      "source_kind": "html-links",
-      "elapsed_seconds": 14.188,
+      "elapsed_seconds": 2.025,
      "kind": "html-links",
      "items_seen": 270
    },
@@ -59,15 +59,15 @@
      "system_id": "apache-tomcat",
      "source_name": "CISA KEV Tomcat",
      "source_kind": "kev-json",
-      "elapsed_seconds": 14.188,
+      "elapsed_seconds": 2.025,
      "kind": "kev-json",
-      "items_seen": 1555
+      "items_seen": 1556
    },
    {
      "system_id": "aspnet-core",
      "source_name": "OSV ASP.NET Core",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.898,
+      "elapsed_seconds": 2.695,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -75,7 +75,7 @@
      "system_id": "astro",
      "source_name": "OSV Astro",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.203,
+      "elapsed_seconds": 2.75,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -83,7 +83,7 @@
      "system_id": "caddy",
      "source_name": "OSV Caddy",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.498,
+      "elapsed_seconds": 4.136,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -91,7 +91,7 @@
      "system_id": "directus",
      "source_name": "Directus GitHub Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.032,
+      "elapsed_seconds": 0.028,
      "kind": "html-links",
      "items_seen": 127
    },
@@ -99,7 +99,7 @@
      "system_id": "directus",
      "source_name": "OSV Directus",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.369,
+      "elapsed_seconds": 0.743,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -107,7 +107,7 @@
      "system_id": "discourse",
      "source_name": "Discourse Release Notes RSS",
      "source_kind": "rss-feed",
-      "elapsed_seconds": 0.029,
+      "elapsed_seconds": 0.025,
      "kind": "rss-feed",
      "items_seen": 30
    },
@@ -115,7 +115,7 @@
      "system_id": "discourse",
      "source_name": "Discourse Security RSS",
      "source_kind": "rss-feed",
-      "elapsed_seconds": 0.029,
+      "elapsed_seconds": 0.025,
      "kind": "rss-feed",
      "items_seen": 3
    },
@@ -123,7 +123,7 @@
      "system_id": "discourse",
      "source_name": "OSV Discourse",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.214,
+      "elapsed_seconds": 0.907,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -131,7 +131,7 @@
      "system_id": "django",
      "source_name": "Django Security Releases Archive",
      "source_kind": "vendor-index",
-      "elapsed_seconds": 9.929,
+      "elapsed_seconds": 1.658,
      "kind": "vendor-index",
      "items_seen": 1276
    },
@@ -139,7 +139,7 @@
      "system_id": "django",
      "source_name": "Django Security Weblog",
      "source_kind": "vendor-index",
-      "elapsed_seconds": 9.908,
+      "elapsed_seconds": 1.659,
      "kind": "vendor-index",
      "items_seen": 332
    },
@@ -147,7 +147,7 @@
      "system_id": "django",
      "source_name": "OSV Django",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 17.428,
+      "elapsed_seconds": 3.52,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -155,7 +155,7 @@
      "system_id": "drupal",
      "source_name": "Drupal Security Advisories RSS",
      "source_kind": "rss-feed",
-      "elapsed_seconds": 0.035,
+      "elapsed_seconds": 0.03,
      "kind": "rss-feed",
      "items_seen": 20
    },
@@ -163,7 +163,7 @@
      "system_id": "drupal",
      "source_name": "OSV Drupal",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 5.145,
+      "elapsed_seconds": 2.056,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -171,7 +171,7 @@
      "system_id": "echo",
      "source_name": "OSV Echo",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.876,
+      "elapsed_seconds": 4.356,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -179,7 +179,7 @@
      "system_id": "esbuild",
      "source_name": "OSV esbuild",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.357,
+      "elapsed_seconds": 2.025,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -187,7 +187,7 @@
      "system_id": "express",
      "source_name": "OSV Express",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.479,
+      "elapsed_seconds": 1.659,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -195,7 +195,7 @@
      "system_id": "fastify",
      "source_name": "OSV Fastify",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 13.602,
+      "elapsed_seconds": 2.242,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -203,7 +203,7 @@
      "system_id": "flask",
      "source_name": "OSV Flask",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.496,
+      "elapsed_seconds": 3.164,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -211,7 +211,7 @@
      "system_id": "ghost",
      "source_name": "Ghost GitHub Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.034,
+      "elapsed_seconds": 0.03,
      "kind": "html-links",
      "items_seen": 119
    },
@@ -219,7 +219,7 @@
      "system_id": "ghost",
      "source_name": "OSV Ghost",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.608,
+      "elapsed_seconds": 0.911,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -227,7 +227,7 @@
      "system_id": "gin",
      "source_name": "OSV Gin",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.918,
+      "elapsed_seconds": 3.827,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -235,7 +235,7 @@
      "system_id": "gitea",
      "source_name": "OSV Gitea",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 19.771,
+      "elapsed_seconds": 3.371,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -243,7 +243,7 @@
      "system_id": "gitlab-ce",
      "source_name": "GitLab Advisory Database",
      "source_kind": "html-links",
-      "elapsed_seconds": 14.357,
+      "elapsed_seconds": 2.208,
      "kind": "html-links",
      "items_seen": 5
    },
@@ -251,7 +251,7 @@
      "system_id": "gitlab-ce",
      "source_name": "GitLab Security Releases Atom",
      "source_kind": "atom-feed",
-      "elapsed_seconds": 14.357,
+      "elapsed_seconds": 2.208,
      "kind": "atom-feed",
      "items_seen": 187
    },
@@ -259,15 +259,15 @@
      "system_id": "grafana",
      "source_name": "CISA KEV Grafana",
      "source_kind": "kev-json",
-      "elapsed_seconds": 14.357,
+      "elapsed_seconds": 2.208,
      "kind": "kev-json",
-      "items_seen": 1555
+      "items_seen": 1556
    },
    {
      "system_id": "grafana",
      "source_name": "Grafana Security Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 14.357,
+      "elapsed_seconds": 2.208,
      "kind": "html-links",
      "items_seen": 159
    },
@@ -275,7 +275,7 @@
      "system_id": "hapi",
      "source_name": "OSV Hapi",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.205,
+      "elapsed_seconds": 1.572,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -283,7 +283,7 @@
      "system_id": "haproxy",
      "source_name": "HAProxy Blog Feed",
      "source_kind": "rss-feed",
-      "elapsed_seconds": 14.205,
+      "elapsed_seconds": 2.111,
      "kind": "rss-feed",
      "items_seen": 10
    },
@@ -291,7 +291,7 @@
      "system_id": "jenkins",
      "source_name": "Jenkins Security Advisories RSS",
      "source_kind": "rss-feed",
-      "elapsed_seconds": 14.357,
+      "elapsed_seconds": 2.208,
      "kind": "rss-feed",
      "items_seen": 96
    },
@@ -299,7 +299,7 @@
      "system_id": "joomla",
      "source_name": "Joomla Security Centre",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.035,
+      "elapsed_seconds": 0.03,
      "kind": "html-links",
      "items_seen": 146
    },
@@ -307,7 +307,7 @@
      "system_id": "joomla",
      "source_name": "OSV Joomla",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.83,
+      "elapsed_seconds": 0.738,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -315,15 +315,15 @@
      "system_id": "kibana",
      "source_name": "Elastic Product Security",
      "source_kind": "html-links",
-      "elapsed_seconds": 14.357,
+      "elapsed_seconds": 2.208,
      "kind": "html-links",
-      "items_seen": 66
+      "items_seen": 145
    },
    {
      "system_id": "kibana",
      "source_name": "NVD Kibana",
      "source_kind": "nvd-search",
-      "elapsed_seconds": 18.9,
+      "elapsed_seconds": 3.648,
      "kind": "nvd-search",
      "items_seen": 1
    },
@@ -331,7 +331,7 @@
      "system_id": "koa",
      "source_name": "OSV Koa",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 13.185,
+      "elapsed_seconds": 1.79,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -339,7 +339,7 @@
      "system_id": "laravel",
      "source_name": "OSV Laravel",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.359,
+      "elapsed_seconds": 2.606,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -347,7 +347,7 @@
      "system_id": "magento-open-source",
      "source_name": "Magento GitHub Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.021,
+      "elapsed_seconds": 0.017,
      "kind": "html-links",
      "items_seen": 99
    },
@@ -355,7 +355,7 @@
      "system_id": "magento-open-source",
      "source_name": "OSV Magento Open Source",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.241,
+      "elapsed_seconds": 0.9,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -363,7 +363,7 @@
      "system_id": "magento-open-source",
      "source_name": "Sansec Research",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.021,
+      "elapsed_seconds": 0.017,
      "kind": "html-links",
      "items_seen": 136
    },
@@ -371,7 +371,7 @@
      "system_id": "mattermost",
      "source_name": "Mattermost Security Updates JSON",
      "source_kind": "json-feed",
-      "elapsed_seconds": 14.357,
+      "elapsed_seconds": 2.242,
      "kind": "json-feed",
      "items_seen": 594
    },
@@ -379,7 +379,7 @@
      "system_id": "mattermost",
      "source_name": "OSV Mattermost",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 19.496,
+      "elapsed_seconds": 4.804,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -387,7 +387,7 @@
      "system_id": "mediawiki",
      "source_name": "MediaWiki Announce RSS",
      "source_kind": "rss-feed",
-      "elapsed_seconds": 0.031,
+      "elapsed_seconds": 0.027,
      "kind": "rss-feed",
      "items_seen": 30
    },
@@ -395,7 +395,7 @@
      "system_id": "mediawiki",
      "source_name": "OSV MediaWiki",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.372,
+      "elapsed_seconds": 1.021,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -403,7 +403,7 @@
      "system_id": "medusa",
      "source_name": "OSV Medusa",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.19,
+      "elapsed_seconds": 1.028,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -411,7 +411,7 @@
      "system_id": "moodle",
      "source_name": "OSV Moodle",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 7.956,
+      "elapsed_seconds": 4.047,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -419,7 +419,7 @@
      "system_id": "nestjs",
      "source_name": "OSV NestJS",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 13.185,
+      "elapsed_seconds": 1.748,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -427,7 +427,7 @@
      "system_id": "nextjs",
      "source_name": "OSV Next.js",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.821,
+      "elapsed_seconds": 0.885,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -435,15 +435,15 @@
      "system_id": "nginx",
      "source_name": "CISA KEV NGINX",
      "source_kind": "kev-json",
-      "elapsed_seconds": 14.188,
+      "elapsed_seconds": 2.025,
      "kind": "kev-json",
-      "items_seen": 1555
+      "items_seen": 1556
    },
    {
      "system_id": "nginx",
      "source_name": "NGINX Security Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 14.188,
+      "elapsed_seconds": 2.025,
      "kind": "html-links",
      "items_seen": 150
    },
@@ -451,15 +451,15 @@
      "system_id": "nodejs",
      "source_name": "CISA KEV Node.js",
      "source_kind": "kev-json",
-      "elapsed_seconds": 13.176,
+      "elapsed_seconds": 1.591,
      "kind": "kev-json",
-      "items_seen": 1555
+      "items_seen": 1556
    },
    {
      "system_id": "nodejs",
      "source_name": "Node.js Security Releases",
      "source_kind": "html-links",
-      "elapsed_seconds": 4.575,
+      "elapsed_seconds": 0.893,
      "kind": "html-links",
      "items_seen": 73
    },
@@ -467,7 +467,7 @@
      "system_id": "nuxt",
      "source_name": "OSV Nuxt",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 9.908,
+      "elapsed_seconds": 1.417,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -475,7 +475,7 @@
      "system_id": "opencart",
      "source_name": "OSV OpenCart",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 6.748,
+      "elapsed_seconds": 0.712,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -483,7 +483,7 @@
      "system_id": "opencart",
      "source_name": "OpenCart Releases",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.011,
+      "elapsed_seconds": 0.005,
      "kind": "html-links",
      "items_seen": 1500
    },
@@ -491,7 +491,7 @@
      "system_id": "openmage",
      "source_name": "OSV OpenMage",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.899,
+      "elapsed_seconds": 2.126,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -499,7 +499,7 @@
      "system_id": "openmage",
      "source_name": "OpenMage GitHub Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.018,
+      "elapsed_seconds": 0.016,
      "kind": "html-links",
      "items_seen": 125
    },
@@ -507,7 +507,7 @@
      "system_id": "phpmyadmin",
      "source_name": "OSV phpMyAdmin",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 19.322,
+      "elapsed_seconds": 3.232,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -515,7 +515,7 @@
      "system_id": "phpmyadmin",
      "source_name": "phpMyAdmin Security Page",
      "source_kind": "html-links",
-      "elapsed_seconds": 14.205,
+      "elapsed_seconds": 2.111,
      "kind": "html-links",
      "items_seen": 263
    },
@@ -523,7 +523,7 @@
      "system_id": "prestashop",
      "source_name": "Friends Of Presta Security",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.013,
+      "elapsed_seconds": 0.01,
      "kind": "html-links",
      "items_seen": 38
    },
@@ -531,7 +531,7 @@
      "system_id": "prestashop",
      "source_name": "GitHub PrestaShop Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.014,
+      "elapsed_seconds": 0.01,
      "kind": "html-links",
      "items_seen": 127
    },
@@ -539,7 +539,7 @@
      "system_id": "prestashop",
      "source_name": "OSV PrestaShop",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.35,
+      "elapsed_seconds": 1.029,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -547,7 +547,7 @@
      "system_id": "prestashop",
      "source_name": "PrestaShop Security Page",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.014,
+      "elapsed_seconds": 0.01,
      "kind": "html-links",
      "items_seen": 60
    },
@@ -555,7 +555,7 @@
      "system_id": "rails",
      "source_name": "OSV Rails",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.898,
+      "elapsed_seconds": 2.867,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -563,7 +563,7 @@
      "system_id": "react",
      "source_name": "OSV React",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.231,
+      "elapsed_seconds": 0.712,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -571,7 +571,7 @@
      "system_id": "redmine",
      "source_name": "OSV Redmine",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 19.059,
+      "elapsed_seconds": 3.231,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -579,7 +579,7 @@
      "system_id": "redmine",
      "source_name": "Redmine Security Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 14.359,
+      "elapsed_seconds": 2.314,
      "kind": "html-links",
      "items_seen": 371
    },
@@ -587,7 +587,7 @@
      "system_id": "saleor",
      "source_name": "GitHub Saleor Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.004,
+      "elapsed_seconds": 0.005,
      "kind": "html-links",
      "items_seen": 120
    },
@@ -595,7 +595,7 @@
      "system_id": "saleor",
      "source_name": "OSV Saleor",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.195,
+      "elapsed_seconds": 0.889,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -603,7 +603,7 @@
      "system_id": "shopware",
      "source_name": "OSV Shopware",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.388,
+      "elapsed_seconds": 0.902,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -611,7 +611,7 @@
      "system_id": "shopware",
      "source_name": "Shopware Security Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.013,
+      "elapsed_seconds": 0.009,
      "kind": "html-links",
      "items_seen": 129
    },
@@ -619,7 +619,7 @@
      "system_id": "spring-boot",
      "source_name": "OSV Spring Boot",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.206,
+      "elapsed_seconds": 2.2,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -627,7 +627,7 @@
      "system_id": "spring-boot",
      "source_name": "Spring Security Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 5.161,
+      "elapsed_seconds": 1.447,
      "kind": "html-links",
      "items_seen": 118
    },
@@ -635,7 +635,7 @@
      "system_id": "spring-framework",
      "source_name": "OSV Spring Framework",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 13.224,
+      "elapsed_seconds": 3.254,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -643,7 +643,7 @@
      "system_id": "spring-framework",
      "source_name": "Spring Security Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 4.881,
+      "elapsed_seconds": 1.115,
      "kind": "html-links",
      "items_seen": 118
    },
@@ -651,7 +651,7 @@
      "system_id": "spring-security",
      "source_name": "OSV Spring Security",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.359,
+      "elapsed_seconds": 2.165,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -659,7 +659,7 @@
      "system_id": "spring-security",
      "source_name": "Spring Security Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 5.11,
+      "elapsed_seconds": 1.417,
      "kind": "html-links",
      "items_seen": 118
    },
@@ -667,7 +667,7 @@
      "system_id": "strapi",
      "source_name": "OSV Strapi",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.412,
+      "elapsed_seconds": 0.747,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -675,7 +675,7 @@
      "system_id": "strapi",
      "source_name": "Strapi GitHub Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.033,
+      "elapsed_seconds": 0.029,
      "kind": "html-links",
      "items_seen": 124
    },
@@ -683,7 +683,7 @@
      "system_id": "sveltekit",
      "source_name": "OSV SvelteKit",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 13.966,
+      "elapsed_seconds": 2.138,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -691,7 +691,7 @@
      "system_id": "symfony",
      "source_name": "OSV Symfony",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.75,
+      "elapsed_seconds": 3.895,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -699,7 +699,7 @@
      "system_id": "traefik",
      "source_name": "OSV Traefik",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 19.052,
+      "elapsed_seconds": 3.063,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -707,7 +707,7 @@
      "system_id": "undici",
      "source_name": "OSV Undici",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.206,
+      "elapsed_seconds": 1.95,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -715,7 +715,7 @@
      "system_id": "vite",
      "source_name": "OSV Vite",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.346,
+      "elapsed_seconds": 1.661,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -723,7 +723,7 @@
      "system_id": "vue",
      "source_name": "OSV Vue",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 3.14,
+      "elapsed_seconds": 1.115,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -731,7 +731,7 @@
      "system_id": "webpack",
      "source_name": "OSV webpack",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 14.479,
+      "elapsed_seconds": 1.754,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -739,7 +739,7 @@
      "system_id": "werkzeug",
      "source_name": "OSV Werkzeug",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.497,
+      "elapsed_seconds": 2.971,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -747,7 +747,7 @@
      "system_id": "woocommerce",
      "source_name": "GitHub WooCommerce Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.016,
+      "elapsed_seconds": 0.014,
      "kind": "html-links",
      "items_seen": 107
    },
@@ -755,7 +755,7 @@
      "system_id": "woocommerce",
      "source_name": "OSV WooCommerce",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 4.834,
+      "elapsed_seconds": 1.72,
      "kind": "osv-batch",
      "items_seen": 1
    },
@@ -763,7 +763,7 @@
      "system_id": "woocommerce",
      "source_name": "Patchstack Database",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.016,
+      "elapsed_seconds": 0.014,
      "kind": "html-links",
      "items_seen": 193
    },
@@ -771,7 +771,7 @@
      "system_id": "woocommerce",
      "source_name": "Woo Developer Advisories",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.018,
+      "elapsed_seconds": 0.016,
      "kind": "html-links",
      "items_seen": 121
    },
@@ -787,7 +787,7 @@
      "system_id": "wordpress",
      "source_name": "Patchstack Database",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.036,
+      "elapsed_seconds": 0.031,
      "kind": "html-links",
      "items_seen": 193
    },
@@ -795,7 +795,7 @@
      "system_id": "wordpress",
      "source_name": "PortSwigger Research",
      "source_kind": "html-links",
-      "elapsed_seconds": 5.197,
+      "elapsed_seconds": 2.345,
      "kind": "html-links",
      "items_seen": 99
    },
@@ -803,7 +803,7 @@
      "system_id": "wordpress",
      "source_name": "WPScan Vulnerability Database",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.036,
+      "elapsed_seconds": 0.031,
      "kind": "html-links",
      "items_seen": 74
    },
@@ -811,7 +811,7 @@
      "system_id": "wordpress",
      "source_name": "WordPress Security News RSS",
      "source_kind": "rss-feed",
-      "elapsed_seconds": 0.038,
+      "elapsed_seconds": 0.033,
      "kind": "rss-feed",
      "items_seen": 10
    },
@@ -819,81 +819,81 @@
      "system_id": "wordpress",
      "source_name": "Wordfence Vulnerability Database",
      "source_kind": "html-links",
-      "elapsed_seconds": 0.038,
+      "elapsed_seconds": 0.033,
      "kind": "html-links",
      "items_seen": 0
    }
  ],
  "failures": [],
  "slow_sources": [
-    {
-      "system_id": "gitea",
-      "source_name": "OSV Gitea",
-      "source_kind": "osv-batch",
-      "elapsed_seconds": 19.771,
-      "status": "ok"
-    },
    {
      "system_id": "mattermost",
      "source_name": "OSV Mattermost",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 19.496,
+      "elapsed_seconds": 4.804,
      "status": "ok"
    },
    {
-      "system_id": "phpmyadmin",
-      "source_name": "OSV phpMyAdmin",
+      "system_id": "echo",
+      "source_name": "OSV Echo",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 19.322,
+      "elapsed_seconds": 4.356,
      "status": "ok"
    },
    {
-      "system_id": "redmine",
-      "source_name": "OSV Redmine",
+      "system_id": "caddy",
+      "source_name": "OSV Caddy",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 19.059,
+      "elapsed_seconds": 4.136,
      "status": "ok"
    },
    {
-      "system_id": "traefik",
-      "source_name": "OSV Traefik",
+      "system_id": "moodle",
+      "source_name": "OSV Moodle",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 19.052,
+      "elapsed_seconds": 4.047,
+      "status": "ok"
+    },
+    {
+      "system_id": "symfony",
+      "source_name": "OSV Symfony",
+      "source_kind": "osv-batch",
+      "elapsed_seconds": 3.895,
      "status": "ok"
    },
    {
      "system_id": "gin",
      "source_name": "OSV Gin",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.918,
+      "elapsed_seconds": 3.827,
      "status": "ok"
    },
    {
      "system_id": "kibana",
      "source_name": "NVD Kibana",
      "source_kind": "nvd-search",
-      "elapsed_seconds": 18.9,
+      "elapsed_seconds": 3.648,
+      "status": "ok"
+    },
+    {
+      "system_id": "django",
+      "source_name": "OSV Django",
+      "source_kind": "osv-batch",
+      "elapsed_seconds": 3.52,
      "status": "ok"
    },
    {
      "system_id": "adminer",
      "source_name": "OSV Adminer",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.898,
+      "elapsed_seconds": 3.498,
      "status": "ok"
    },
    {
-      "system_id": "aspnet-core",
-      "source_name": "OSV ASP.NET Core",
+      "system_id": "gitea",
+      "source_name": "OSV Gitea",
      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.898,
-      "status": "ok"
-    },
-    {
-      "system_id": "rails",
-      "source_name": "OSV Rails",
-      "source_kind": "osv-batch",
-      "elapsed_seconds": 18.898,
+      "elapsed_seconds": 3.371,
      "status": "ok"
    }
  ],
--- a/08-threat-intel/generated/dashboard/data/version-backlog.json
+++ b/08-threat-intel/generated/dashboard/data/version-backlog.json
@@ -1,5 +1,5 @@
 {
-  "generated_at": "2026-04-01T09:21:05+00:00",
+  "generated_at": "2026-04-02T09:18:52+00:00",
  "source_gap_entities": [
    {
      "entity_id": "adminer",
--- a/08-threat-intel/generated/dashboard/data/version-completeness.json
+++ b/08-threat-intel/generated/dashboard/data/version-completeness.json
@@ -1,12 +1,12 @@
 {
-  "generated_at": "2026-04-01T09:21:05+00:00",
+  "generated_at": "2026-04-02T09:18:52+00:00",
  "cataloged_entity_total": 110,
  "latest_version_synced_count": 95,
  "source_gap_count": 15,
-  "security_version_total": 6316,
+  "security_version_total": 6377,
  "security_version_entity_count": 83,
  "auto_promoted_entity_count": 10,
-  "lab_enqueued_count": 3,
+  "lab_enqueued_count": 5,
  "systems": [
    {
      "system_id": "adminer",
@@ -41,7 +41,7 @@
          "entity_id": "angular",
          "display_name": "Angular",
          "entity_type": "system",
-          "latest_version": "21.2.6",
+          "latest_version": "21.2.7",
          "latest_release_at": "2026-03-17T01:31:35.828211Z",
          "version_sync_status": "green"
        },
@@ -49,7 +49,7 @@
          "entity_id": "angular--package--angular-core",
          "display_name": "angular / core",
          "entity_type": "package",
-          "latest_version": "21.2.6",
+          "latest_version": "21.2.7",
          "latest_release_at": "2026-03-17T01:31:35.828211Z",
          "version_sync_status": "green"
        }
@@ -116,7 +116,7 @@
          "entity_id": "astro",
          "display_name": "Astro",
          "entity_type": "system",
-          "latest_version": "6.1.2",
+          "latest_version": "6.1.3",
          "latest_release_at": "2025-11-20T14:43:59.624508Z",
          "version_sync_status": "green"
        },
@@ -124,7 +124,7 @@
          "entity_id": "astro--project--astro",
          "display_name": "astro",
          "entity_type": "project",
-          "latest_version": "6.1.2",
+          "latest_version": "6.1.3",
          "latest_release_at": "2025-11-27T08:22:36.525875Z",
          "version_sync_status": "green"
        },
@@ -132,7 +132,7 @@
          "entity_id": "astro--module--astro",
          "display_name": "astro",
          "entity_type": "module",
-          "latest_version": "6.1.2",
+          "latest_version": "6.1.3",
          "latest_release_at": "2025-11-20T14:43:59.624508Z",
          "version_sync_status": "green"
        }
@@ -305,7 +305,7 @@
          "entity_id": "esbuild",
          "display_name": "esbuild",
          "entity_type": "system",
-          "latest_version": "0.27.4",
+          "latest_version": "0.27.5",
          "latest_release_at": "",
          "version_sync_status": "green"
        },
@@ -313,7 +313,7 @@
          "entity_id": "esbuild--project--esbuild",
          "display_name": "esbuild",
          "entity_type": "project",
-          "latest_version": "0.27.4",
+          "latest_version": "0.27.5",
          "latest_release_at": "",
          "version_sync_status": "green"
        }
@@ -396,16 +396,16 @@
          "entity_id": "ghost",
          "display_name": "Ghost",
          "entity_type": "system",
-          "latest_version": "6.24.0",
-          "latest_release_at": "2026-03-27T15:27:44Z",
+          "latest_version": "6.25.1",
+          "latest_release_at": "2026-04-01T15:46:09Z",
          "version_sync_status": "green"
        },
        {
          "entity_id": "ghost--repo--tryghost-ghost",
          "display_name": "TryGhost  /  Ghost",
          "entity_type": "repo",
-          "latest_version": "6.24.0",
-          "latest_release_at": "2026-03-27T15:27:44Z",
+          "latest_version": "6.25.1",
+          "latest_release_at": "2026-04-01T15:46:09Z",
          "version_sync_status": "green"
        }
      ]
@@ -489,7 +489,7 @@
          "entity_id": "hapi",
          "display_name": "Hapi",
          "entity_type": "system",
-          "latest_version": "21.4.7",
+          "latest_version": "21.4.8",
          "latest_release_at": "",
          "version_sync_status": "green"
        },
@@ -497,7 +497,7 @@
          "entity_id": "hapi--package--hapi-hapi",
          "display_name": "hapi / hapi",
          "entity_type": "package",
-          "latest_version": "21.4.7",
+          "latest_version": "21.4.8",
          "latest_release_at": "",
          "version_sync_status": "green"
        }
@@ -601,16 +601,16 @@
          "entity_id": "laravel",
          "display_name": "Laravel",
          "entity_type": "system",
-          "latest_version": "13.2.0",
-          "latest_release_at": "2026-03-24T18:42:09+00:00",
+          "latest_version": "13.3.0",
+          "latest_release_at": "2026-04-01T15:39:53+00:00",
          "version_sync_status": "green"
        },
        {
          "entity_id": "laravel--package--laravel-framework",
          "display_name": "laravel / framework",
          "entity_type": "package",
-          "latest_version": "13.2.0",
-          "latest_release_at": "2026-03-24T18:42:09+00:00",
+          "latest_version": "13.3.0",
+          "latest_release_at": "2026-04-01T15:39:53+00:00",
          "version_sync_status": "green"
        }
      ]
@@ -648,7 +648,7 @@
      "cataloged_entity_total": 5,
      "latest_version_synced_count": 5,
      "source_gap_count": 0,
-      "security_version_count": 3854,
+      "security_version_count": 3873,
      "auto_promoted_count": 0,
      "latest_versions": [
        {
@@ -699,7 +699,7 @@
      "cataloged_entity_total": 1,
      "latest_version_synced_count": 1,
      "source_gap_count": 0,
-      "security_version_count": 252,
+      "security_version_count": 278,
      "auto_promoted_count": 0,
      "latest_versions": [
        {
@@ -748,7 +748,7 @@
      "cataloged_entity_total": 2,
      "latest_version_synced_count": 2,
      "source_gap_count": 0,
-      "security_version_count": 168,
+      "security_version_count": 181,
      "auto_promoted_count": 0,
      "latest_versions": [
        {
@@ -1136,16 +1136,16 @@
          "entity_id": "strapi",
          "display_name": "Strapi",
          "entity_type": "system",
-          "latest_version": "5.41.0",
-          "latest_release_at": "2026-04-01T09:17:56Z",
+          "latest_version": "5.41.1",
+          "latest_release_at": "2026-04-01T09:55:43Z",
          "version_sync_status": "green"
        },
        {
          "entity_id": "strapi--repo--strapi-strapi",
          "display_name": "strapi  /  strapi",
          "entity_type": "repo",
-          "latest_version": "5.41.0",
-          "latest_release_at": "2026-04-01T09:17:56Z",
+          "latest_version": "5.41.1",
+          "latest_release_at": "2026-04-01T09:55:43Z",
          "version_sync_status": "green"
        }
      ]
@@ -1217,8 +1217,8 @@
          "entity_id": "traefik",
          "display_name": "Traefik",
          "entity_type": "system",
-          "latest_version": "3.7.0-ea.2",
-          "latest_release_at": "2026-03-23T18:56:07.286130Z",
+          "latest_version": "3.7.0-ea.3",
+          "latest_release_at": "2026-03-26T11:10:20Z",
          "version_sync_status": "green"
        },
        {
@@ -1226,15 +1226,15 @@
          "display_name": "traefik / traefik / v3",
          "entity_type": "repo",
          "latest_version": "3.7.0-ea.3",
-          "latest_release_at": "2026-03-27T20:49:46.252668Z",
+          "latest_release_at": "2026-03-26T11:10:20Z",
          "version_sync_status": "green"
        },
        {
          "entity_id": "traefik--extension--github-com-traefik-traefik-v3",
          "display_name": "traefik / traefik / v3",
          "entity_type": "extension",
-          "latest_version": "3.7.0-ea.2",
-          "latest_release_at": "2026-03-23T18:56:07.286130Z",
+          "latest_version": "3.7.0-ea.3",
+          "latest_release_at": "2026-03-26T11:10:20Z",
          "version_sync_status": "green"
        }
      ]
@@ -1252,7 +1252,7 @@
          "entity_id": "undici",
          "display_name": "Undici",
          "entity_type": "system",
-          "latest_version": "7.24.6",
+          "latest_version": "8.0.0",
          "latest_release_at": "",
          "version_sync_status": "green"
        },
@@ -1260,7 +1260,7 @@
          "entity_id": "undici--project--undici",
          "display_name": "undici",
          "entity_type": "project",
-          "latest_version": "7.24.6",
+          "latest_version": "8.0.0",
          "latest_release_at": "",
          "version_sync_status": "green"
        },
@@ -1268,7 +1268,7 @@
          "entity_id": "undici--extension--undici",
          "display_name": "undici",
          "entity_type": "extension",
-          "latest_version": "7.24.6",
+          "latest_version": "8.0.0",
          "latest_release_at": "",
          "version_sync_status": "green"
        }
@@ -1395,23 +1395,23 @@
      "cataloged_entity_total": 2,
      "latest_version_synced_count": 2,
      "source_gap_count": 0,
-      "security_version_count": 6,
+      "security_version_count": 10,
      "auto_promoted_count": 1,
      "latest_versions": [
        {
          "entity_id": "woocommerce",
          "display_name": "WooCommerce",
          "entity_type": "system",
-          "latest_version": "10.7",
-          "latest_release_at": "2026-03-12T19:14:25Z",
+          "latest_version": "10.6.2",
+          "latest_release_at": "2026-03-31T18:21:02Z",
          "version_sync_status": "green"
        },
        {
          "entity_id": "woocommerce--repo--woocommerce-woocommerce",
          "display_name": "woocommerce  /  woocommerce",
          "entity_type": "repo",
-          "latest_version": "10.7",
-          "latest_release_at": "2026-03-12T19:14:25Z",
+          "latest_version": "10.6.2",
+          "latest_release_at": "2026-03-31T18:21:02Z",
          "version_sync_status": "green"
        }
      ]
@@ -1422,7 +1422,7 @@
      "cataloged_entity_total": 1,
      "latest_version_synced_count": 1,
      "source_gap_count": 0,
-      "security_version_count": 55,
+      "security_version_count": 54,
      "auto_promoted_count": 0,
      "latest_versions": [
        {
--- a/08-threat-intel/generated/dashboard/docs/architecture-library.html
+++ b/08-threat-intel/generated/dashboard/docs/architecture-library.html
@@ -87,7 +87,7 @@
      <h1>当前架构库镜像</h1>
      <div class="meta">工作台内置镜像页：当前架构库结构化数据镜像。</div>
      <pre>{
-  &quot;generated_at&quot;: &quot;2026-04-01T09:21:06+00:00&quot;,
+  &quot;generated_at&quot;: &quot;2026-04-02T09:18:53+00:00&quot;,
  &quot;title&quot;: &quot;当前架构库&quot;,
  &quot;summary&quot;: &quot;工作台、控制面、数据层、授权边界与系统覆盖的当前真值视图。&quot;,
  &quot;sections&quot;: [
@@ -127,7 +127,7 @@
        },
        {
          &quot;label&quot;: &quot;当前漏洞条目&quot;,
-          &quot;value&quot;: &quot;2431&quot;
+          &quot;value&quot;: &quot;2436&quot;
        }
      ],
      &quot;fields&quot;: [
@@ -145,7 +145,7 @@
        },
        {
          &quot;label&quot;: &quot;生成时间&quot;,
-          &quot;value&quot;: &quot;2026-04-01T09:21:06+00:00&quot;
+          &quot;value&quot;: &quot;2026-04-02T09:18:53+00:00&quot;
        }
      ],
      &quot;links&quot;: [
@@ -6061,7 +6061,7 @@
        },
        {
          &quot;label&quot;: &quot;Advisory 数&quot;,
-          &quot;value&quot;: &quot;2431&quot;
+          &quot;value&quot;: &quot;2436&quot;
        },
        {
          &quot;label&quot;: &quot;状态类型&quot;,
@@ -6080,7 +6080,7 @@
          &quot;items&quot;: [
            {
              &quot;title&quot;: &quot;人工分诊&quot;,
-              &quot;summary&quot;: &quot;当前累计 2342 条。&quot;,
+              &quot;summary&quot;: &quot;当前累计 2347 条。&quot;,
              &quot;open&quot;: false,
              &quot;fields&quot;: [
                {
@@ -6089,7 +6089,7 @@
                },
                {
                  &quot;label&quot;: &quot;数量&quot;,
-                  &quot;value&quot;: &quot;2342&quot;
+                  &quot;value&quot;: &quot;2347&quot;
                }
              ]
            },
--- a/08-threat-intel/generated/dashboard/docs/coverage-matrix.html
+++ b/08-threat-intel/generated/dashboard/docs/coverage-matrix.html
@@ -120,12 +120,12 @@
 | Koa | `frameworks` | `rolling-24m` | `-` | `yes` | `1` | `1` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-02-26T23:36:36.294040Z` |
 | Laravel | `frameworks` | `rolling-24m` | `-` | `yes` | `2` | `2` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2026-03-13T22:15:34.333730Z` |
 | Magento Open Source | `ecommerce` | `history-full` | `yes` | `yes` | `89` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `2025-04-20T01:37:25.860` |
-| Mattermost | `platforms` | `rolling-24m` | `-` | `yes` | `36` | `36` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `Fix Release Date` |
-| MediaWiki | `cms` | `rolling-24m` | `-` | `yes` | `72` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `72` | `Wed, 22 Oct 2025 21:44:43 +0000` |
+| Mattermost | `platforms` | `rolling-24m` | `-` | `yes` | `40` | `40` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `0` | `Fix Release Date` |
+| MediaWiki | `cms` | `rolling-24m` | `-` | `yes` | `73` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `73` | `Wed, 22 Oct 2025 21:44:43 +0000` |
 | Medusa | `ecommerce` | `rolling-24m` | `-` | `yes` | `15` | `0` | `2` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `15` | `` |
 | Moodle | `cms` | `rolling-24m` | `-` | `yes` | `40` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `40` | `2025-04-09T00:30:58.490` |
 | NestJS | `frameworks` | `rolling-24m` | `-` | `yes` | `2` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `2` | `2026-03-02T20:30:10.923` |
-| Next.js | `frameworks` | `history-full` | `yes` | `yes` | `66` | `41` | `3` | `seeded` | `real:26/synthetic:0/blocked:0` | `21` | `26` | `25` | `2026-03-25T19:49:01.129152Z` |
+| Next.js | `frameworks` | `history-full` | `yes` | `yes` | `66` | `41` | `3` | `seeded` | `real:26/synthetic:0/blocked:0` | `21` | `26` | `25` | `2026-04-01T17:31:03.347234Z` |
 | Nginx | `servers` | `history-full` | `yes` | `yes` | `110` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `110` | `2025-08-12T17:24:44.367` |
 | Node.js | `frameworks` | `history-full` | `yes` | `yes` | `8` | `0` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `8` | `2025-01-21` |
 | Nuxt | `frameworks` | `history-full` | `yes` | `yes` | `28` | `5` | `3` | `seeded` | `real:0/synthetic:0/blocked:0` | `0` | `0` | `23` | `2025-09-18T13:04:21Z` |
--- a/08-threat-intel/generated/dashboard/docs/entity-catalog-report.html
+++ b/08-threat-intel/generated/dashboard/docs/entity-catalog-report.html
@@ -88,7 +88,7 @@
      <div class="meta">工作台内置镜像页：分层实体覆盖、history-full 完整度和 workflow 统计。</div>
      <pre># 分层实体覆盖与完整度报告

- 生成时间: `2026-04-01T09:21:04+00:00`
+- 生成时间: `2026-04-02T09:18:51+00:00`
 - 已编目实体: `110`
 - 待编目 backlog: `7`
 - history-full 已完成: `41`
--- a/08-threat-intel/generated/dashboard/docs/entity-discovery-backlog.html
+++ b/08-threat-intel/generated/dashboard/docs/entity-discovery-backlog.html
@@ -88,7 +88,7 @@
      <div class="meta">工作台内置镜像页：待编目 repo / 插件 / 包 backlog 与等待原因。</div>
      <pre># 分层实体发现 Backlog

- 生成时间: `2026-04-01T09:21:04+00:00`
+- 生成时间: `2026-04-02T09:18:51+00:00`
 - 待编目数量: `7`

 | candidate_id | root_system | entity_type | risk | reason | waiting_for | source |
--- a/08-threat-intel/generated/dashboard/docs/source-catalog-audit.html
+++ b/08-threat-intel/generated/dashboard/docs/source-catalog-audit.html
@@ -88,7 +88,7 @@
      <div class="meta">工作台内置镜像页：active/retired source、replacement map 与覆盖摘要。</div>
      <pre># Source Catalog Audit

- generated_at: `2026-04-01T09:17:08+00:00`
+- generated_at: `2026-04-02T09:17:03+00:00`
 - systems: `62`
 - sources: `179`
 - active_sources: `102`
--- a/08-threat-intel/generated/dashboard/docs/testing-completeness-report.html
+++ b/08-threat-intel/generated/dashboard/docs/testing-completeness-report.html
@@ -88,7 +88,7 @@
      <div class="meta">工作台内置镜像页：89 条 advisory 最新完整度、family 矩阵与 ingest 健康度。</div>
      <pre># 全库 Advisory 完整度报告

- 生成时间: `2026-04-01T09:21:06+00:00`
+- 生成时间: `2026-04-02T09:18:53+00:00`
 - 最新 advisory 完整度: `89/89` `verified-real`
 - 合成验证数量: `0`
 - 阻塞数量: `0`
@@ -96,7 +96,7 @@
 - 完整度百分比: `100.0%`
 - active source 全绿: `102/102`
 - source open alerts: `0`
- 最近一次 source 全绿: `2026-04-01T09:20:10+00:00`
+- 最近一次 source 全绿: `2026-04-02T09:18:31+00:00`
 - 已编目实体: `110`
 - 待编目 backlog: `7`

--- a/08-threat-intel/generated/dashboard/docs/version-sync-report.html
+++ b/08-threat-intel/generated/dashboard/docs/version-sync-report.html
@@ -88,14 +88,14 @@
      <div class="meta">工作台内置镜像页：安全相关版本历史、source-gap 与版本驱动 lab enqueue 摘要。</div>
      <pre># 安全相关版本同步报告

- 生成时间: `2026-04-01T09:21:05+00:00`
+- 生成时间: `2026-04-02T09:18:52+00:00`
 - 已编目实体: `110`
 - 最新版本已同步: `95`
 - 版本 source-gap: `15`
- 安全相关版本记录: `6316`
+- 安全相关版本记录: `6377`
 - 存在安全版本历史的实体: `83`
 - 自动升级实体: `10`
- 因版本变化触发 lab 入队: `3`
+- 因版本变化触发 lab 入队: `5`

 ## 系统版本摘要

@@ -131,12 +131,12 @@
 | koa | 2 | 2 | 0 | 4 | 0 |
 | laravel | 2 | 2 | 0 | 103 | 0 |
 | magento-open-source | 2 | 2 | 0 | 6 | 1 |
-| mattermost | 5 | 5 | 0 | 3854 | 0 |
-| mediawiki | 1 | 1 | 0 | 252 | 0 |
+| mattermost | 5 | 5 | 0 | 3873 | 0 |
+| mediawiki | 1 | 1 | 0 | 278 | 0 |
 | medusa | 1 | 0 | 1 | 0 | 0 |
 | moodle | 1 | 0 | 1 | 0 | 0 |
 | nestjs | 1 | 0 | 1 | 0 | 0 |
-| nextjs | 2 | 2 | 0 | 168 | 0 |
+| nextjs | 2 | 2 | 0 | 181 | 0 |
 | nginx | 1 | 0 | 1 | 0 | 0 |
 | nodejs | 1 | 0 | 1 | 0 | 0 |
 | nuxt | 2 | 2 | 0 | 11 | 0 |
@@ -161,8 +161,8 @@
 | vue | 2 | 2 | 0 | 2 | 0 |
 | webpack | 1 | 0 | 1 | 0 | 0 |
 | werkzeug | 2 | 2 | 0 | 22 | 0 |
-| woocommerce | 2 | 2 | 0 | 6 | 1 |
-| wordpress | 1 | 1 | 0 | 55 | 0 |
+| woocommerce | 2 | 2 | 0 | 10 | 1 |
+| wordpress | 1 | 1 | 0 | 54 | 0 |
 </pre>
    </div>
  </main>
--- a/08-threat-intel/generated/dashboard/entities.json
+++ b/08-threat-intel/generated/dashboard/entities.json
--- a/08-threat-intel/generated/dashboard/runs.json
+++ b/08-threat-intel/generated/dashboard/runs.json
@@ -15694,7 +15694,7 @@
      "cvss_score": 3.1,
      "exploit_status": "unknown",
      "published_at": "2026-01-28T15:20:55Z",
-      "updated_at": "2026-02-06T13:13:43.709252Z",
+      "updated_at": "2026-04-01T17:31:03.347234Z",
      "official_source_url": "https://github.com/vercel/next.js/security/advisories/GHSA-5f7q-jpqc-wp7h",
      "secondary_source_urls": [
        "https://nvd.nist.gov/vuln/detail/CVE-2025-59472",
@@ -15756,15 +15756,29 @@
        }
      ],
      "affected_version_ranges": [
-        "introduced=15.0.0-canary.0, fixed<15.6.0-canary.61",
-        "introduced=16.0.0-beta.0, fixed<16.1.5"
+        "introduced=16.0.0-beta.0, fixed<16.1.5",
+        "introduced=15.0.0-canary.0",
+        "introduced=15.0.1-canary.0",
+        "introduced=15.0.2-canary.0",
+        "introduced=15.0.3-canary.0",
+        "introduced=15.0.4-canary.0",
+        "introduced=15.1.1-canary.0",
+        "introduced=15.2.0-canary.0",
+        "introduced=15.2.1-canary.0",
+        "introduced=15.2.2-canary.0",
+        "introduced=15.3.0-canary.0",
+        "introduced=15.3.1-canary.0",
+        "introduced=15.4.0-canary.0",
+        "introduced=15.4.2-canary.0",
+        "introduced=15.5.1-canary.0",
+        "introduced=15.6.0-canary.0, fixed<15.6.0-canary.61"
      ],
      "fixed_version_ranges": [
-        "15.6.0-canary.61",
-        "16.1.5"
+        "16.1.5",
+        "15.6.0-canary.61"
      ],
-      "introduced_version": "introduced=16.0.0-beta.0, fixed<16.1.5",
-      "patched_version": "15.6.0-canary.61",
+      "introduced_version": "introduced=15.6.0-canary.0, fixed<15.6.0-canary.61",
+      "patched_version": "16.1.5",
      "version_confidence": "high",
      "version_gap_reason": "",
      "version_resolution_needed": false,
@@ -15775,13 +15789,27 @@
        "entry_surface": "proxy-header-or-trust-boundary",
        "preconditions": [
          "\u4ec5\u5728 lab-local\u3001lab-public \u6216\u660e\u786e\u6388\u6743\u76ee\u6807\u4e2d\u6267\u884c\u3002",
-          "\u786e\u8ba4\u76ee\u6807\u547d\u4e2d\u7248\u672c\u65ad\u8a00: introduced=15.0.0-canary.0, fixed<15.6.0-canary.61, introduced=16.0.0-beta.0, fixed<16.1.5",
+          "\u786e\u8ba4\u76ee\u6807\u547d\u4e2d\u7248\u672c\u65ad\u8a00: introduced=16.0.0-beta.0, fixed<16.1.5, introduced=15.0.0-canary.0, introduced=15.0.1-canary.0",
          "\u82e5\u5bf9\u8c61\u5c5e\u4e8e `package`\uff0c\u5148\u786e\u8ba4\u6269\u5c55/\u4ed3\u5e93/\u5305\u5df2\u542f\u7528\u5e76\u5904\u4e8e\u53d7\u5f71\u54cd\u7248\u672c\u3002"
        ],
        "required_role": "reverse-proxy-or-edge-client",
        "affected_version_assertion": [
-          "introduced=15.0.0-canary.0, fixed<15.6.0-canary.61",
-          "introduced=16.0.0-beta.0, fixed<16.1.5"
+          "introduced=16.0.0-beta.0, fixed<16.1.5",
+          "introduced=15.0.0-canary.0",
+          "introduced=15.0.1-canary.0",
+          "introduced=15.0.2-canary.0",
+          "introduced=15.0.3-canary.0",
+          "introduced=15.0.4-canary.0",
+          "introduced=15.1.1-canary.0",
+          "introduced=15.2.0-canary.0",
+          "introduced=15.2.1-canary.0",
+          "introduced=15.2.2-canary.0",
+          "introduced=15.3.0-canary.0",
+          "introduced=15.3.1-canary.0",
+          "introduced=15.4.0-canary.0",
+          "introduced=15.4.2-canary.0",
+          "introduced=15.5.1-canary.0",
+          "introduced=15.6.0-canary.0, fixed<15.6.0-canary.61"
        ],
        "trigger_vector": "\u5bf9 `proxy-boundary` \u5bb6\u65cf\u5165\u53e3\u6295\u9012\u6700\u5c0f\u5316\u3001\u53ef\u5ba1\u8ba1\u3001\u53ef\u56de\u6eda\u7684\u53d7\u63a7\u8f93\u5165\uff0c\u6bd4\u8f83\u4fee\u590d\u524d\u540e\u5dee\u5f02\u3002",
        "request_or_ui_path": [
@@ -15809,7 +15837,7 @@
        ],
        "mitigation_summary": "\u4f18\u5148\u5347\u7ea7\u5230\u4fee\u590d\u7248\u672c\uff0c\u5e76\u540c\u65f6\u6536\u7d27\u8f93\u5165\u6821\u9a8c\u3001\u670d\u52a1\u7aef\u9274\u6743\u3001\u4ee3\u7406\u4fe1\u4efb\u8fb9\u754c\u3001\u6269\u5c55\u5b89\u88c5\u4fe1\u4efb\u548c\u5ba1\u8ba1\u65e5\u5fd7\u3002",
        "patch_validation_steps": [
-          "\u786e\u8ba4\u76ee\u6807\u7248\u672c\u4ece `introduced=15.0.0-canary.0, fixed<15.6.0-canary.61, introduced=16.0.0-beta.0, fixed<16.1.5` \u5347\u7ea7\u6216\u56de\u79fb\u5230 `15.6.0-canary.61`\u3002",
+          "\u786e\u8ba4\u76ee\u6807\u7248\u672c\u4ece `introduced=16.0.0-beta.0, fixed<16.1.5, introduced=15.0.0-canary.0, introduced=15.0.1-canary.0` \u5347\u7ea7\u6216\u56de\u79fb\u5230 `16.1.5`\u3002",
          "\u4fdd\u7559\u540c\u4e00\u7ec4\u53d7\u63a7\u8f93\u5165\uff0c\u5728\u4fee\u590d\u524d\u540e\u5206\u522b\u6267\u884c\u5e76\u6bd4\u5bf9\u54cd\u5e94\u3001\u65e5\u5fd7\u4e0e\u6d4f\u89c8\u5668\u8bc1\u636e\u3002",
          "\u786e\u8ba4\u4fee\u590d\u540e\u4ec5\u4fdd\u7559\u9884\u671f\u4e1a\u52a1\u884c\u4e3a\uff0c\u4e0d\u518d\u89e6\u53d1\u8d8a\u6743\u3001\u56de\u663e\u3001\u5f02\u5e38\u6e32\u67d3\u6216\u9519\u8bef\u8bf7\u6c42\u3002",
          "\u8865\u5145 `proxy-boundary` \u65cf\u81ea\u52a8\u5316\u56de\u5f52\uff0c\u907f\u514d\u540c\u7c7b\u8def\u5f84\u5728\u63d2\u4ef6\u3001\u4e3b\u9898\u6216\u4ee3\u7406\u94fe\u4e2d\u56de\u5f52\u3002"
--- a/08-threat-intel/generated/dashboard/summary.json
+++ b/08-threat-intel/generated/dashboard/summary.json
--- a/08-threat-intel/generated/dashboard/systems.json
+++ b/08-threat-intel/generated/dashboard/systems.json
--- a/08-threat-intel/generated/entity-catalog-report.md
+++ b/08-threat-intel/generated/entity-catalog-report.md
@@ -1,6 +1,6 @@
 # 分层实体覆盖与完整度报告

- 生成时间: `2026-04-01T09:21:04+00:00`
+- 生成时间: `2026-04-02T09:18:51+00:00`
 - 已编目实体: `110`
 - 待编目 backlog: `7`
 - history-full 已完成: `41`
--- a/08-threat-intel/generated/entity-completeness.json
+++ b/08-threat-intel/generated/entity-completeness.json
@@ -1,5 +1,5 @@
 {
-  "generated_at": "2026-04-01T09:21:04+00:00",
+  "generated_at": "2026-04-02T09:18:51+00:00",
  "cataloged_entity_total": 110,
  "candidate_entity_total": 7,
  "history_full_complete_count": 41,
@@ -809,7 +809,7 @@
          "entity_id": "mattermost--repo--github-com-mattermost-mattermost-server",
          "entity_type": "repo",
          "display_name": "mattermost / mattermost-server",
-          "advisory_count": 17,
+          "advisory_count": 21,
          "history_backfill_status": "seeded",
          "latest_sync_status": "green"
        },
@@ -1769,6 +1769,6 @@
    "discovery_queue": 7,
    "history_queue": 27,
    "latest_queue": 10,
-    "workflow_queue": 2181
+    "workflow_queue": 2182
  }
 }
--- a/08-threat-intel/generated/entity-discovery-backlog.md
+++ b/08-threat-intel/generated/entity-discovery-backlog.md
@@ -1,6 +1,6 @@
 # 分层实体发现 Backlog

- 生成时间: `2026-04-01T09:21:04+00:00`
+- 生成时间: `2026-04-02T09:18:51+00:00`
 - 待编目数量: `7`

 | candidate_id | root_system | entity_type | risk | reason | waiting_for | source |
--- a/08-threat-intel/generated/entity-queues.json
+++ b/08-threat-intel/generated/entity-queues.json
@@ -1,5 +1,5 @@
 {
-  "generated_at": "2026-04-01T09:21:04+00:00",
+  "generated_at": "2026-04-02T09:18:51+00:00",
  "discovery_queue": {
    "count": 7,
    "items": [
@@ -408,7 +408,7 @@
    ]
  },
  "workflow_queue": {
-    "count": 2181,
+    "count": 2182,
    "items": [
      {
        "canonical_id": "adminer--CVE-2026-25878",
--- a/08-threat-intel/generated/lab-enqueue-summary.json
+++ b/08-threat-intel/generated/lab-enqueue-summary.json
@@ -1,7 +1,7 @@
 {
-  "generated_at": "2026-04-01T09:20:55+00:00",
-  "enqueued": 3,
-  "queue_total": 2387,
+  "generated_at": "2026-04-02T09:18:45+00:00",
+  "enqueued": 5,
+  "queue_total": 2392,
  "items": [
    {
      "advisory_id": "directus--05a97ef95a",
@@ -148,11 +148,6 @@
      "system_id": "directus",
      "priority": "version-sync"
    },
-    {
-      "advisory_id": "discourse--5dce90675e",
-      "system_id": "discourse",
-      "priority": "version-sync"
-    },
    {
      "advisory_id": "django--039dc7ddc9",
      "system_id": "django",
@@ -1099,15 +1094,35 @@
      "priority": "version-sync"
    },
    {
-      "advisory_id": "mattermost--CVE-2026-3113",
+      "advisory_id": "mattermost--CVE-2025-13821",
      "system_id": "mattermost",
      "priority": "version-sync"
    },
    {
-      "advisory_id": "mediawiki--469c5db88b",
+      "advisory_id": "mattermost--CVE-2025-14350",
+      "system_id": "mattermost",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "mattermost--CVE-2025-14573",
+      "system_id": "mattermost",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "mattermost--CVE-2026-0999",
+      "system_id": "mattermost",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "mediawiki--05670a18f6",
      "system_id": "mediawiki",
      "priority": "version-sync"
    },
+    {
+      "advisory_id": "nextjs--CVE-2025-59472",
+      "system_id": "nextjs",
+      "priority": "version-sync"
+    },
    {
      "advisory_id": "opencart--139edfb591",
      "system_id": "opencart",
@@ -2772,6 +2787,561 @@
      "advisory_id": "strapi--ea5ecc42f3",
      "system_id": "strapi",
      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--05da41121f",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--06e151b334",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--08ab0e40fd",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--08ff88b89e",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--1129617837",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--18f94418c3",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--1b2a89ca9c",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--2646cca050",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--2acb79d818",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--30c7084831",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--313be91ecc",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--35d1bcc8fd",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--38e031b62a",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--3b3ee22bdd",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--3d4415cd8c",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--3f7bcf6460",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--40fad2352c",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--46dfa1debb",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--4703641b3e",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--4b8901521b",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--4e5d64d078",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--509829ee63",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--5431e35cb9",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--583e91c778",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--5ea81bed02",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--5ebeb363ab",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--5f95d49feb",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--608614d706",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--61bcf00c63",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--6398a77e67",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--669aeb4ed9",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--69fa3cd79b",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--6a9eb36c09",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--6c455c6050",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--6f6549cea3",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--6ff424270d",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--7f9ac413c1",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--8197f55ac4",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--81f7400465",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--82db1502da",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--8aa1dccc64",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--94b883541e",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--9848665054",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--9b9e3ff8e5",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--9c50136dd9",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2014-4549",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2014-4558",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2014-6313",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2015-2069",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2015-2329",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2015-5065",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2016-10112",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2016-10922",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2016-10923",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2016-10935",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2017-17058",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2017-18356",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2017-18506",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2017-18592",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-11485",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-11486",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-11525",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-11579",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-20714",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-20782",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-20966",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-5316",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-8710",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2018-8711",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-1010124",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-11807",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-14774",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-14796",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-14948",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-14978",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-14979",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-15092",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-18668",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-18834",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-20891",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-5979",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-7441",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2019-9168",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2020-11727",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--CVE-2020-8819",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--a130ac93bb",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--a72c466a05",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--a89ba1be4d",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--aa9bdbc2ce",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--aabb0dbc7f",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ab923ae740",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ac4a14e633",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ac8969a095",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--b0bcd8ad54",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--b19dfd0a1c",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--b213245e4b",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--bc8055b458",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--c4c5c5cb89",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--d01b27ef60",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--d3da259278",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--d717626a6f",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--dd8265593a",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--e0fa01b204",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--e2b8d0d0e4",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--e8abb34bbb",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--eb8448be50",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ec096f5867",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ef0c884c7a",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--ef9e14861f",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--f0e42669e3",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
+    },
+    {
+      "advisory_id": "woocommerce--fe6541027e",
+      "system_id": "woocommerce",
+      "priority": "version-sync"
    }
  ],
  "pending": []
--- a/08-threat-intel/generated/latest-ingest.md
+++ b/08-threat-intel/generated/latest-ingest.md
@@ -1,13 +1,13 @@
 # 最新同步摘要

- 渲染时间: `2026-04-01T09:21:05+00:00`
+- 渲染时间: `2026-04-02T09:18:52+00:00`
 - 系统数量: `62`
- Advisory 数量: `2387`
+- Advisory 数量: `2392`
 - 已编目实体数量: `110`
 - 待编目 backlog 数量: `7`
- 重点 Markdown 数量: `177`
+- 重点 Markdown 数量: `181`
 - Run Bundle 数量: `89`
- 新增记录: `3`
- 更新记录: `0`
- Triage 数量: `1180`
+- 新增记录: `5`
+- 更新记录: `1`
+- Triage 数量: `1181`
 - 失败的 source adapter: `0`
--- a/显示更多
+++ b/显示更多