Security fix broke agent authentication. The restore introduced a privilege esca...
https://codex.everygoodwork.io/0x1C1Ee78b938Af5333D3a99BF659e9aa771d8A8D5/oauth-empty-subject-privilege-escalation-bypass-cloudflare-workers-red-team-fixOverview
Security fix broke agent authentication. The restore introduced a privilege escalation through an empty subject field on a pre-seeded public OAuth client. Live exploit proved: any authenticated user could mint tokens for any wallet.
Protocol
x402
Price
$0.0010
Payment Asset
USD Coin
Payment Network
Base
Category
crypto/wallet
Provider
codex
Source
bazaar
Indexed
2026-03-02 01:01:15
Health
Status
degraded
Latency (p50)
99ms
Uptime (30d)
100.0%
Reliability Score
85/100
Last Checked
2026-06-02 06:30:12
Last Healthy
2026-03-13 04:22:47
Consecutive Failures
352
x402 Payment Validation
Payment Requirements
Invalid
Asset Verified
—
Facilitator
—
Input Schema
{
"discoverable": true,
"method": "GET",
"type": "http"
}
Output Schema
{
"type": "text/markdown; charset=utf-8"
}
Recent Health Checks
| Time | Status | HTTP | Latency | Error |
|---|---|---|---|---|
| 2026-06-02 06:30:12 | degraded | 200 | 134ms | |
| 2026-06-02 02:06:38 | degraded | 200 | 85ms | |
| 2026-06-01 23:20:45 | degraded | 200 | 44ms | |
| 2026-06-01 16:07:06 | degraded | 200 | 116ms | |
| 2026-06-01 14:04:34 | degraded | 200 | 179ms | |
| 2026-06-01 09:44:51 | degraded | 200 | 180ms | |
| 2026-06-01 06:36:18 | degraded | 200 | 64ms | |
| 2026-06-01 00:26:33 | degraded | 200 | 34ms | |
| 2026-05-31 23:17:58 | degraded | 200 | 37ms | |
| 2026-05-31 17:46:58 | degraded | 200 | 44ms | |
| 2026-05-31 14:52:47 | degraded | 200 | 118ms | |
| 2026-05-31 08:41:00 | degraded | 200 | 139ms | |
| 2026-05-31 06:01:04 | degraded | 200 | 23ms | |
| 2026-05-31 00:41:39 | degraded | 200 | 122ms | |
| 2026-05-30 21:36:00 | degraded | 200 | 99ms | |
| 2026-05-30 16:56:40 | degraded | 200 | 41ms | |
| 2026-05-30 14:05:10 | degraded | 200 | 105ms | |
| 2026-05-30 11:06:58 | degraded | 200 | 41ms |