new-api

mirror of https://github.com/linux-do/new-api.git synced 2025-09-26 11:56:38 +08:00

Author	SHA1	Message	Date
ayuan	c7371f62bc	Update user.go 在函数中发现一个严重的安全问题： user.go：541-561UpdateSelf 代码使用了硬编码的魔法字符串来绕过密码验证，这可能被恶意利用。如果用户提交这个特殊字符串作为密码，验证器会认为密码有效，但实际上密码会被设置为空。"$I_LOVE_U"	2025-07-03 11:38:25 +08:00
ayuan	a2d95f62c4	Update github.go 在该函数中，有一行注释显示了一个严重错误：github.go：203-204GitHubBind 错误在第 204 行，代码从会话中检索用户 ID，但有一个带注释的第 203 行显示了原始（有问题的）实现：github.go：203// id := c.GetInt("id") // critical bug! 问题原始的 bug 代码会尝试从 Gin 上下文中获取用户 ID，但这将失败，因为：c.GetInt("id") 用户 ID 不会在此端点的 Gin 上下文中自动设置这可能会返回 0 或在尝试绑定 GitHub 帐户时导致 panic 然后，该函数将尝试更新 ID 为 0 的用户，而该 ID 不存在	2025-07-03 11:33:35 +08:00
wozulong	5f1c5945f8	feat: add claude-3.7-sonnet 128k output support	2025-02-26 12:03:16 +08:00
wozulong	d870c1099f	feat: add claude-3.7-sonnet 128k output support	2025-02-26 11:50:24 +08:00
wozulong	7c0b93c38c	feat: add claude-3.7-sonnet model support	2025-02-25 19:54:30 +08:00
wozulong	b648816add	update Dockerfile Signed-off-by: wozulong <>	2025-02-01 23:42:26 +08:00
wozulong	1f694315ce	update Dockerfile Signed-off-by: wozulong <>	2025-02-01 23:25:48 +08:00
wozulong	0fd3e407dc	update Dockerfile Signed-off-by: wozulong <>	2025-02-01 22:51:23 +08:00
wozulong	c0ab39e446	update Dockerfile Signed-off-by: wozulong <>	2025-02-01 22:24:15 +08:00
wozulong	e4c01cb9ae	update Dockerfile Signed-off-by: wozulong <>	2025-02-01 22:18:22 +08:00
wozulong	d43a65bc52	update for o3 Signed-off-by: wozulong <>	2025-02-01 22:00:22 +08:00
wozulong	d62dd4d9a2	update model ratio Signed-off-by: wozulong <>	2024-11-21 09:54:23 +08:00
wozulong	f113e1874e	fix: fix SearchUsers not working if using PostgreSQL Signed-off-by: wozulong <>	2024-11-05 14:28:39 +08:00
wozulong	c6d5245c5c	merge upstream Signed-off-by: wozulong <>	2024-10-24 16:58:04 +08:00
wozulong	d1ea2d2d0a	feat: claude computer use Signed-off-by: wozulong <>	2024-10-24 16:53:28 +08:00
1808837298@qq.com	8b8abfadaf	Merge remote-tracking branch 'origin/main'	2024-10-24 00:19:18 +08:00
1808837298@qq.com	65e65097b2	feat: aws claude tools	2024-10-24 00:19:08 +08:00
Calcium-Ion	62e321fe30	Merge pull request #533 from HynoR/main chore: 修正chatgpt-4o-latest补全倍率	2024-10-24 00:17:48 +08:00
1808837298@qq.com	312ab44800	feat: update claude models	2024-10-24 00:17:23 +08:00
TAKO	a2678a256d	Update model-ratio.go fix wrong model ration about chatgpt-4o-latest	2024-10-17 12:50:14 +08:00
1808837298@qq.com	8b67664995	feat: 上游渠道为OpenAI渠道类型时，透传请求 (close #532 )	2024-10-15 18:37:44 +08:00
wozulong	e0f780185a	Merge remote-tracking branch 'upstream/main'	2024-10-14 16:32:13 +08:00
wozulong	c47e1dc6fe	merge upstream Signed-off-by: wozulong <>	2024-10-14 16:31:22 +08:00
1808837298@qq.com	ade6d0f56a	fix: 修复Playground分组无用户分组 (close #529 )	2024-10-14 16:22:38 +08:00
1808837298@qq.com	f599c65944	fix: 修复用户可选分组不能选择用户分组 (close #528 )	2024-10-14 16:22:22 +08:00
1808837298@qq.com	40baa636e4	fix: 修复自定义聊天bug (cherry picked from commit 8d41c17ccf19cb29100dbe506d3d42a6be822ff9)	2024-10-13 00:21:52 +08:00
1808837298@qq.com	d6359ec4ff	feat: 完善自定义聊天配置	2024-10-12 21:09:59 +08:00
1808837298@qq.com	89ddf83b44	feat: 弃用旧的聊天配置	2024-10-12 21:09:59 +08:00
1808837298@qq.com	6a8a4bcf65	fix: playground group	2024-10-10 13:39:09 +08:00
1808837298@qq.com	e298f2e5a4	feat: playground token name	2024-10-10 13:34:29 +08:00
1808837298@qq.com	8cea6dff4a	feat: support embedding encoding_format param	2024-10-10 13:23:12 +08:00
1808837298@qq.com	5035cd054a	feat: update aws claude	2024-10-09 00:42:36 +08:00
1808837298@qq.com	02c0c6501e	feat: update auto disable	2024-10-08 23:15:57 +08:00
1808837298@qq.com	f0b808a41d	feat: update model ratio	2024-10-03 21:12:09 +08:00
1808837298@qq.com	31d84ee32f	feat: update model ratio	2024-10-03 20:48:47 +08:00
1808837298@qq.com	9969ed2d7c	feat: update model ratio	2024-10-03 20:47:54 +08:00
1808837298@qq.com	746311242b	fix: playground气泡溢出 #511	2024-09-27 20:49:26 +08:00
1808837298@qq.com	04a68a85dd	feat: 优化playground样式	2024-09-27 20:49:25 +08:00
1808837298@qq.com	f9ba10f180	fix: playground max_tokens #512 #511	2024-09-27 20:18:53 +08:00
Calcium-Ion	334a6f8280	Update README.md	2024-09-26 01:54:33 +08:00
1808837298@qq.com	0cf53ac5ff	feat: Playground相关接口禁用AccessToken	2024-09-26 01:49:35 +08:00
Calcium-Ion	af02cdc58b	Merge pull request #509 from Calcium-Ion/playground feat: playground	2024-09-26 01:00:33 +08:00
1808837298@qq.com	9a4ca1e210	feat: playground	2024-09-26 00:59:09 +08:00
wozulong	27b8495698	upgrade stripe Signed-off-by: wozulong <>	2024-09-25 17:49:07 +08:00
1808837298@qq.com	9fe1f35fd1	fix: 第三方登录注销 #500	2024-09-25 17:15:59 +08:00
1808837298@qq.com	972ac1ee0f	fix: 第三方登录注销 #500	2024-09-25 17:13:28 +08:00
1808837298@qq.com	0f95502b04	feat: 更新令牌生成算法	2024-09-25 16:31:25 +08:00
1808837298@qq.com	b58b1dc0ec	feat: 更新令牌生成算法	2024-09-25 16:31:25 +08:00
1808837298@qq.com	05d9aa61df	feat: 不自动生成系统访问令牌	2024-09-25 16:31:25 +08:00
1808837298@qq.com	221894d972	fix: error user role	2024-09-24 17:49:57 +08:00

1 2 3 4 5 ...

1740 Commits