Read the upstream patch diff line by line and produce the defender-lens summary. Confirm the patch closes the surface in your Module-4 harness.
What you ship
- A one-to-two-page summary of the patch: what changed, what did not, why.
- A short demonstration that upgrading your Module-4 virtualenv to the patched LangChain closes the reproduction.
- A defender's checklist that falls out of the patch (three to five items).
- Toolchain Diary entry for the patch-read workflow.
Tools you use
- GitHub web UI or local git for the diff.
- Your Module-4 reproduction harness, against both the pinned vulnerable LangChain and the pinned patched LangChain.
Success criteria
- The summary names the exact line of the patch that closes the surface.
- Upgrading the virtualenv kills the reproduction.
- The defender's checklist is specific (no generic 'validate input').
Time budget
Plan for two ninety-minute lab sessions plus two hours of independent build-out. Modules 4 and 6 commonly run over; budget one extra session for those.
Submission
Push to your student repo under adv-102/labs/lab-5/. Include source, a one-paragraph README, the output you observed, and where applicable a structured detector or trace file.