{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2024:MAASTY65VF7SA5UA77TAO4C5KP","short_pith_number":"pith:MAASTY65","canonical_record":{"source":{"id":"2405.11247","kind":"arxiv","version":2},"metadata":{"license":"http://creativecommons.org/licenses/by-nc-nd/4.0/","primary_cat":"cs.CR","submitted_at":"2024-05-18T10:15:31Z","cross_cats_sorted":[],"title_canon_sha256":"86205e6328b3519ab05d9a8952a36fde544bfee2d46136a08d32eb7eff379720","abstract_canon_sha256":"497d569f6bcc509c630b7ff6c182c43c7f92c848e66a5b6e95c9f72d1b3d9d04"},"schema_version":"1.0"},"canonical_sha256":"600129e3dda97f207680ffe607705d53c942cd166c76d4b11a0d584d445cefb5","source":{"kind":"arxiv","id":"2405.11247","version":2},"source_aliases":[{"alias_kind":"arxiv","alias_value":"2405.11247","created_at":"2026-07-05T11:03:14Z"},{"alias_kind":"arxiv_version","alias_value":"2405.11247v2","created_at":"2026-07-05T11:03:14Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.2405.11247","created_at":"2026-07-05T11:03:14Z"},{"alias_kind":"pith_short_12","alias_value":"MAASTY65VF7S","created_at":"2026-07-05T11:03:14Z"},{"alias_kind":"pith_short_16","alias_value":"MAASTY65VF7SA5UA","created_at":"2026-07-05T11:03:14Z"},{"alias_kind":"pith_short_8","alias_value":"MAASTY65","created_at":"2026-07-05T11:03:14Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2024:MAASTY65VF7SA5UA77TAO4C5KP","target":"record","payload":{"canonical_record":{"source":{"id":"2405.11247","kind":"arxiv","version":2},"metadata":{"license":"http://creativecommons.org/licenses/by-nc-nd/4.0/","primary_cat":"cs.CR","submitted_at":"2024-05-18T10:15:31Z","cross_cats_sorted":[],"title_canon_sha256":"86205e6328b3519ab05d9a8952a36fde544bfee2d46136a08d32eb7eff379720","abstract_canon_sha256":"497d569f6bcc509c630b7ff6c182c43c7f92c848e66a5b6e95c9f72d1b3d9d04"},"schema_version":"1.0"},"canonical_sha256":"600129e3dda97f207680ffe607705d53c942cd166c76d4b11a0d584d445cefb5","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-07-05T11:03:14.739973Z","signature_b64":"nqVlQ4GcoLROoqKwVXfvksOgsRzo8pp+TeFR0tLIBSY5YtapleT14WpkyPABVNa3NkcKgyBMyDwWjR/om8TBCA==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"600129e3dda97f207680ffe607705d53c942cd166c76d4b11a0d584d445cefb5","last_reissued_at":"2026-07-05T11:03:14.739518Z","signature_status":"signed_v1","first_computed_at":"2026-07-05T11:03:14.739518Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"2405.11247","source_version":2,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-07-05T11:03:14Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"wDsuVbCE3HlMqGcQbpp8EDZ0DND3CRQFSvK+zS0z8AcuQiHLXZUR8JeX/CMA8TNDpofRYYlGw7RAtaO/bCxYAg==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-07-07T05:53:44.954916Z"},"content_sha256":"b12be3243379fd0bd8581815b9b11335fb2b70fe5c2406517ba195792a7c02c8","schema_version":"1.0","event_id":"sha256:b12be3243379fd0bd8581815b9b11335fb2b70fe5c2406517ba195792a7c02c8"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2024:MAASTY65VF7SA5UA77TAO4C5KP","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"A Classification-by-Retrieval Framework for Few-Shot Anomaly Detection to Detect API Injection Attacks","license":"http://creativecommons.org/licenses/by-nc-nd/4.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Amit Dvir, Chen Hajaj, Ran Dubin, Udi Aharon","submitted_at":"2024-05-18T10:15:31Z","abstract_excerpt":"Application Programming Interface (API) Injection attacks refer to the unauthorized or malicious use of APIs, which are often exploited to gain access to sensitive data or manipulate online systems for illicit purposes. Identifying actors that deceitfully utilize an API poses a demanding problem. Although there have been notable advancements and contributions in the field of API security, there remains a significant challenge when dealing with attackers who use novel approaches that don't match the well-known payloads commonly seen in attacks. Also, attackers may exploit standard functionaliti"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"2405.11247","kind":"arxiv","version":2},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"integrity":{"clean":true,"summary":{"advisory":0,"critical":0,"by_detector":{},"informational":0},"endpoint":"/pith/2405.11247/integrity.json","findings":[],"available":true,"detectors_run":[],"snapshot_sha256":"c28c3603d3b5d939e8dc4c7e95fa8dfce3d595e45f758748cecf8e644a296938"},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-07-05T11:03:14Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"PPoJt120mKOUNuvZqV3CqL+oWwiIAPwWYqx97h8eNiVuerU0fiajfS3k5gSzfWiScw+ldvbFN952S1w7IYR9CA==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-07-07T05:53:44.955294Z"},"content_sha256":"587b64de27693f062f6333937a5301b47af5d515d634adf55c9f0db852ec1888","schema_version":"1.0","event_id":"sha256:587b64de27693f062f6333937a5301b47af5d515d634adf55c9f0db852ec1888"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/MAASTY65VF7SA5UA77TAO4C5KP/bundle.json","state_url":"https://pith.science/pith/MAASTY65VF7SA5UA77TAO4C5KP/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/MAASTY65VF7SA5UA77TAO4C5KP/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-07-07T05:53:44Z","links":{"resolver":"https://pith.science/pith/MAASTY65VF7SA5UA77TAO4C5KP","bundle":"https://pith.science/pith/MAASTY65VF7SA5UA77TAO4C5KP/bundle.json","state":"https://pith.science/pith/MAASTY65VF7SA5UA77TAO4C5KP/state.json","well_known_bundle":"https://pith.science/.well-known/pith/MAASTY65VF7SA5UA77TAO4C5KP/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2024:MAASTY65VF7SA5UA77TAO4C5KP","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"497d569f6bcc509c630b7ff6c182c43c7f92c848e66a5b6e95c9f72d1b3d9d04","cross_cats_sorted":[],"license":"http://creativecommons.org/licenses/by-nc-nd/4.0/","primary_cat":"cs.CR","submitted_at":"2024-05-18T10:15:31Z","title_canon_sha256":"86205e6328b3519ab05d9a8952a36fde544bfee2d46136a08d32eb7eff379720"},"schema_version":"1.0","source":{"id":"2405.11247","kind":"arxiv","version":2}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"2405.11247","created_at":"2026-07-05T11:03:14Z"},{"alias_kind":"arxiv_version","alias_value":"2405.11247v2","created_at":"2026-07-05T11:03:14Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.2405.11247","created_at":"2026-07-05T11:03:14Z"},{"alias_kind":"pith_short_12","alias_value":"MAASTY65VF7S","created_at":"2026-07-05T11:03:14Z"},{"alias_kind":"pith_short_16","alias_value":"MAASTY65VF7SA5UA","created_at":"2026-07-05T11:03:14Z"},{"alias_kind":"pith_short_8","alias_value":"MAASTY65","created_at":"2026-07-05T11:03:14Z"}],"graph_snapshots":[{"event_id":"sha256:587b64de27693f062f6333937a5301b47af5d515d634adf55c9f0db852ec1888","target":"graph","created_at":"2026-07-05T11:03:14Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"integrity":{"available":true,"clean":true,"detectors_run":[],"endpoint":"/pith/2405.11247/integrity.json","findings":[],"snapshot_sha256":"c28c3603d3b5d939e8dc4c7e95fa8dfce3d595e45f758748cecf8e644a296938","summary":{"advisory":0,"by_detector":{},"critical":0,"informational":0}},"paper":{"abstract_excerpt":"Application Programming Interface (API) Injection attacks refer to the unauthorized or malicious use of APIs, which are often exploited to gain access to sensitive data or manipulate online systems for illicit purposes. Identifying actors that deceitfully utilize an API poses a demanding problem. Although there have been notable advancements and contributions in the field of API security, there remains a significant challenge when dealing with attackers who use novel approaches that don't match the well-known payloads commonly seen in attacks. Also, attackers may exploit standard functionaliti","authors_text":"Amit Dvir, Chen Hajaj, Ran Dubin, Udi Aharon","cross_cats":[],"headline":"","license":"http://creativecommons.org/licenses/by-nc-nd/4.0/","primary_cat":"cs.CR","submitted_at":"2024-05-18T10:15:31Z","title":"A Classification-by-Retrieval Framework for Few-Shot Anomaly Detection to Detect API Injection Attacks"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"2405.11247","kind":"arxiv","version":2},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:b12be3243379fd0bd8581815b9b11335fb2b70fe5c2406517ba195792a7c02c8","target":"record","created_at":"2026-07-05T11:03:14Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"497d569f6bcc509c630b7ff6c182c43c7f92c848e66a5b6e95c9f72d1b3d9d04","cross_cats_sorted":[],"license":"http://creativecommons.org/licenses/by-nc-nd/4.0/","primary_cat":"cs.CR","submitted_at":"2024-05-18T10:15:31Z","title_canon_sha256":"86205e6328b3519ab05d9a8952a36fde544bfee2d46136a08d32eb7eff379720"},"schema_version":"1.0","source":{"id":"2405.11247","kind":"arxiv","version":2}},"canonical_sha256":"600129e3dda97f207680ffe607705d53c942cd166c76d4b11a0d584d445cefb5","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"600129e3dda97f207680ffe607705d53c942cd166c76d4b11a0d584d445cefb5","first_computed_at":"2026-07-05T11:03:14.739518Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-07-05T11:03:14.739518Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"nqVlQ4GcoLROoqKwVXfvksOgsRzo8pp+TeFR0tLIBSY5YtapleT14WpkyPABVNa3NkcKgyBMyDwWjR/om8TBCA==","signature_status":"signed_v1","signed_at":"2026-07-05T11:03:14.739973Z","signed_message":"canonical_sha256_bytes"},"source_id":"2405.11247","source_kind":"arxiv","source_version":2}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:b12be3243379fd0bd8581815b9b11335fb2b70fe5c2406517ba195792a7c02c8","sha256:587b64de27693f062f6333937a5301b47af5d515d634adf55c9f0db852ec1888"],"state_sha256":"055be351857e0a919b94aeb8e1307ef98e619a4e3a2f95458f3dcae8df0698e2"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"bwqY35lh6/BlQFR1ezAN6GCYVox8nDcT3sTJFXAHxdUweILQN6IuIp8PREZKn9Bdc5Gdle/HY/CDNUNm6a7jDQ==","signed_message":"bundle_sha256_bytes","signed_at":"2026-07-07T05:53:44.957714Z","bundle_sha256":"409ef93f804943977275ac8a4ba0d72b0eb4306e81b6cce078b6e47b5dfa1d9a"}}