Affected by GO-2024-3323 and 8 other vulnerabilities

GO-2024-3323: SiYuan has an arbitrary file read and path traversal via /api/export/exportResources in github.com/siyuan-note/siyuan/kernel

GO-2024-3324: SiYuan has an SSTI via /api/template/renderSprig in github.com/siyuan-note/siyuan/kernel

GO-2024-3326: SiYuan has an arbitrary file write in the host via /api/asset/upload in github.com/siyuan-note/siyuan/kernel

GO-2024-3327: SiYuan has an arbitrary file read via /api/template/render in github.com/siyuan-note/siyuan/kernel

GO-2025-3362: SiYuan has an arbitrary file deletion vulnerability in github.com/siyuan-note/siyuan/kernel

GO-2025-4219: SiYuan vulnerable to RCE via zip slip and Command Injection via PandocBin in github.com/siyuan-note/siyuan/kernel

GO-2025-4221: SiYuan: ZipSlip -> Arbitrary File Overwrite -> RCE in github.com/siyuan-note/siyuan/kernel

GO-2026-4386: SiYuan File Read API Case Sensitivity Bypass can Lead to Path Traversal in github.com/siyuan-note/siyuan/kernel

GO-2026-4387: SiYuan has Arbitrary File Write via /api/file/copyFile leading to RCE in github.com/siyuan-note/siyuan/kernel

cache

package

v0.0.0-...-56e3ae8 Latest Latest Go to latest Published: Feb 14, 2026 License: AGPL-3.0 Imports: 10 Imported by: 5

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/siyuan-note/siyuan

Links

Open Source Insights

Documentation ¶

Index ¶

func ClearBlocksIAL()
func ClearDocsIAL()
func ClearTreeCache()
func ExistAsset(path string) (ret bool)
func FilterAssets(filter func(path string, asset *Asset) bool) (ret map[string]*Asset)
func GetBlockIAL(id string) (ret map[string]string)
func GetDocIAL(p string) (ret map[string]string)
func GetTreeData(rootID string) (raw []byte, ok bool)
func IterateAssets(fn func(path string, asset *Asset) bool)
func LoadAssets()
func PutBlockIAL(id string, ial map[string]string)
func PutDocIAL(p string, ial map[string]string)
func RemoveAsset(path string)
func RemoveAssetHash(hash string)
func RemoveBlockIAL(id string)
func RemoveDocIAL(p string)
func RemoveTreeData(rootID string)
func SetAssetHash(hash, path string)
func SetTreeData(rootID string, raw []byte)
type Asset
- func GetAssetByPath(path string) *Asset
type AssetHash
- func GetAssetHash(hash string) *AssetHash
- func GetAssetHashByPath(path string) *AssetHash

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func ClearBlocksIAL ¶

func ClearBlocksIAL()

func ClearDocsIAL ¶

func ClearDocsIAL()

func ClearTreeCache ¶

func ClearTreeCache()

func ExistAsset ¶

func ExistAsset(path string) (ret bool)

func FilterAssets ¶

func FilterAssets(filter func(path string, asset *Asset) bool) (ret map[string]*Asset)

FilterAssets 根据过滤函数返回符合条件的资源

func GetBlockIAL ¶

func GetBlockIAL(id string) (ret map[string]string)

func GetDocIAL ¶

func GetDocIAL(p string) (ret map[string]string)

func GetTreeData ¶

func GetTreeData(rootID string) (raw []byte, ok bool)

func IterateAssets ¶

func IterateAssets(fn func(path string, asset *Asset) bool)

IterateAssets 遍历所有资源，适合只读场景

func LoadAssets ¶

func LoadAssets()

func PutBlockIAL ¶

func PutBlockIAL(id string, ial map[string]string)

func PutDocIAL ¶

func PutDocIAL(p string, ial map[string]string)

func RemoveAsset ¶

func RemoveAsset(path string)

func RemoveAssetHash ¶

func RemoveAssetHash(hash string)

func RemoveBlockIAL ¶

func RemoveBlockIAL(id string)

func RemoveDocIAL ¶

func RemoveDocIAL(p string)

func RemoveTreeData ¶

func RemoveTreeData(rootID string)

func SetAssetHash ¶

func SetAssetHash(hash, path string)

func SetTreeData ¶

func SetTreeData(rootID string, raw []byte)

Types ¶

type Asset ¶

type Asset struct {
	HName   string `json:"hName"`
	Path    string `json:"path"`
	Updated int64  `json:"updated"`
}

func GetAssetByPath ¶

func GetAssetByPath(path string) *Asset

GetAssetByPath 根据路径获取资源

type AssetHash ¶

type AssetHash struct {
	Hash string `json:"hash"`
	Path string `json:"path"`
}

func GetAssetHash ¶

func GetAssetHash(hash string) *AssetHash

func GetAssetHashByPath ¶

func GetAssetHashByPath(path string) *AssetHash

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL