}
        }
        final MD4 md4 = new MD4();
        md4.update(uni);
        try {
            md4.digest(p21, 0, 16);
        } catch (final Exception ex) {
            if (LogStream.level > 0) {
                ex.printStackTrace(log);
            }
        }
        E(p21, challenge, p24);
        return p24;
    }

    /**

    try {
      SignedBytes.checkedCast(value);
      fail("Cast to byte should have failed: " + value);
    } catch (IllegalArgumentException ex) {
      assertWithMessage("%s not found in exception text: %s", value, ex.getMessage())
          .that(ex.getMessage().contains(String.valueOf(value)))
          .isTrue();
    }
  }

  public void testCompare() {
    for (byte x : VALUES) {

            }

            return copy;
        } catch (Exception ex) {
            throw (RuntimeException)
                    new UnsupportedOperationException(getClass().getName() + " does not support clone()").initCause(ex);
        }
    } // -- InputLocation clone()

    /**
     * Get the one-based column number. The value will be

      description: |
        What version of Go are you using (`go version`)?

        Note: we only [support](https://go.dev/doc/devel/release#policy) the two most recent major releases.
      placeholder: ex. go version go1.20.7 darwin/arm64
    validations:
      required: true

  - type: textarea
    id: go-env
    attributes:
      label: "Output of `go env` in your module/workspace:"
      placeholder: |

            der.writeObject(derApplicationSpecific);
            return collector.toByteArray();
        } catch (final IOException ex) {
            throw new IllegalStateException(ex.getMessage());
        }
    }

    @Override
    protected void parse(final byte[] token) throws IOException {

        try (ASN1InputStream is = new ASN1InputStream(token)) {

    void refresh_failure_throws_cifs() {
        TestCredentials creds = new TestCredentials("Z", false, false, new Subject(), true);
        CIFSException ex = assertThrows(CIFSException.class, creds::refresh);
        assertTrue(ex.getMessage().contains("refresh failed"));
    }

    @ParameterizedTest
    @MethodSource("domains")
    @DisplayName("getUserDomain handles null and empty")

  }

  private static void assertCastFails(long value) {
    try {
      UnsignedInts.checkedCast(value);
      fail("Cast to int should have failed: " + value);
    } catch (IllegalArgumentException ex) {
      assertThat(ex).hasMessageThat().contains(String.valueOf(value));
    }
  }

  public void testSaturatedCast() {
    for (long value : UNSIGNED_INTS) {

                        return;
                    }

                    this.out.write(this.b, 0, this.n);
                }
            } catch (final SmbException ex) {
                this.e = ex;
            } catch (final Exception x) {
                this.e = new SmbException("WriterThread", x);
            }
            notify();
        }
    }

            when(dest.toString()).thenReturn("smb://dest");

            // Act + Assert
            SmbException ex =
                    assertThrows(SmbException.class, () -> SmbCopyUtil.copyFile(src, dest, buffers, 8, new WriterThread(), sh, dh));
            assertTrue(ex.getMessage().contains("smb://src"));
            assertTrue(ex.getMessage().contains("smb://dest"));
        }

        @Test

* The browser thinks it's not sending JSON (because of the missing `Content-Type` header).

Then the malicious website could make the local AI agent send angry messages to the user's ex-boss... or worse. 😅

## Open Internet { #open-internet }

If your app is in the open internet, you wouldn't "trust the network" and let anyone send privileged requests without authentication.