fix: restore deletion behavior and update prompts#49
Merged
2witstudios merged 1 commit intoclaude/consolidate-tool-calls-017FCAWfpv2EEq2Nh4RBfRrNfrom Nov 15, 2025
Conversation
Owner
Author
|
@codex review |
|
Codex Review: Didn't find any major issues. Breezy! ℹ️ About Codex in GitHubYour team has set up Codex to review pull requests in this repo. Reviews are triggered when you
If Codex has suggestions, it will comment; otherwise it will react with 👍. Codex can also answer questions or update the PR. Try commenting "@codex address that feedback". |
2witstudios
merged commit 6de90ef
into
claude/consolidate-tool-calls-017FCAWfpv2EEq2Nh4RBfRrN
2witstudios
added a commit
that referenced
this pull request
Jan 27, 2026
Zero-trust security hardening across 25 files following defense-in-depth principles. Fixes by category: - Path traversal (CWE-022/073): assertPathWithin() containment checks in content-store, upload, computeFileHash - Prototype pollution (CWE-1321/250): isSafePropertyKey() blocklist, hasOwnProperty.call() guards in content-store, optimize, mcp-tool-converter - Log injection (CWE-117/134): sanitizeLogValue() + format strings in image-processor, mcp-tool-converter, notification-email-service - ReDoS (CWE-1333): Bounded quantifiers in mention-processor, safe RFC 5322 email regex in account route - SSRF prevention (CWE-918): validateRequestUrl() in auth-fetch, hardcoded API URLs in file-processor - XSS prevention (CWE-079): URL protocol validation in web-preview iframe, offline.html redirect - Rate limiting (CWE-770): rateLimitUpload middleware on avatar routes - Origin verification (CWE-346): event.origin check in service worker postMessage handler - TOCTOU elimination (CWE-367): Atomic readFile replacing stat-then-read in avatar route - Input validation (CWE-807): Format regex for entryId, agentId, email token, URL construction - Regex injection (CWE-730): Pattern length limit + try/catch in drive-search-service - Incomplete sanitization (CWE-116): Full regex metachar escaping in prettier.ts - Insecure temp files (CWE-377): fs.mkdtemp() in path-validator tests - Session validation (CWE-073): Type checks + 8KB size limit in auth-storage Also fixes pre-existing TypeScript error in drive-search-service.ts (RegexSearchResponse type mismatch). Alerts: #1-75 (73 total, no #49 or #59 in CodeQL) See CODEQL_ALERT_LOG.md for full remediation details. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2witstudios
added a commit
that referenced
this pull request
Jan 27, 2026
* fix(security): remediate all 73 CodeQL vulnerability alerts Zero-trust security hardening across 25 files following defense-in-depth principles. Fixes by category: - Path traversal (CWE-022/073): assertPathWithin() containment checks in content-store, upload, computeFileHash - Prototype pollution (CWE-1321/250): isSafePropertyKey() blocklist, hasOwnProperty.call() guards in content-store, optimize, mcp-tool-converter - Log injection (CWE-117/134): sanitizeLogValue() + format strings in image-processor, mcp-tool-converter, notification-email-service - ReDoS (CWE-1333): Bounded quantifiers in mention-processor, safe RFC 5322 email regex in account route - SSRF prevention (CWE-918): validateRequestUrl() in auth-fetch, hardcoded API URLs in file-processor - XSS prevention (CWE-079): URL protocol validation in web-preview iframe, offline.html redirect - Rate limiting (CWE-770): rateLimitUpload middleware on avatar routes - Origin verification (CWE-346): event.origin check in service worker postMessage handler - TOCTOU elimination (CWE-367): Atomic readFile replacing stat-then-read in avatar route - Input validation (CWE-807): Format regex for entryId, agentId, email token, URL construction - Regex injection (CWE-730): Pattern length limit + try/catch in drive-search-service - Incomplete sanitization (CWE-116): Full regex metachar escaping in prettier.ts - Insecure temp files (CWE-377): fs.mkdtemp() in path-validator tests - Session validation (CWE-073): Type checks + 8KB size limit in auth-storage Also fixes pre-existing TypeScript error in drive-search-service.ts (RegexSearchResponse type mismatch). Alerts: #1-75 (73 total, no #49 or #59 in CodeQL) See CODEQL_ALERT_LOG.md for full remediation details. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * fix(security): address 6 new CodeQL alerts from initial fix round Fixes root causes that the first pass missed: - optimize.ts: Use Map for results instead of user-controlled property keys (alert 78) - content-store.ts: Use Object.create(null) + isValidPreset() for metadata object (alert 79) - verify-email/route.ts: Revert unnecessary format check that created a new alert — verifyToken() already validates cryptographically (alert 80) - web-preview.tsx: Reconstruct URL from parsed.href to break taint chain (alert 76) - drive-search-service.ts: Escape user pattern for JS line matching — PG handles actual regex (alert 77) - mcp-tool-converter.ts: Coerce mcpTools.length through Number() to break taint (alert 81) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * docs: update CODEQL_ALERT_LOG with round 2 alert fixes (76-81) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * fix(security): address CodeRabbit review feedback on CodeQL fixes - optimize.ts: validate presets is array of strings before iterating - audit-logs/integrity: use centralized isValidId() for CUID2 validation instead of hex-only regex pattern - auth-fetch.ts: block protocol-relative URLs (//evil.com) that bypass relative URL allowance - usePageAgentDashboardStore: use CUID2 format pattern for agent ID validation (lowercase letter + lowercase alphanumeric, max 32 chars) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * fix(security): address round 4 CodeRabbit review feedback - optimize.ts: replace Map<string, any> with strict BatchPresetResult union type for type safety - sw.js: fail-closed origin/source checks - reject empty origin and null source instead of allowing them through - mcp-tool-converter.ts: use RegExp constructor for control char regex to satisfy Biome noControlCharactersInRegex rule - drive-search-service.ts: document that line previews use literal matching (escaped for ReDoS prevention) vs PG regex semantics - CODEQL_ALERT_LOG.md: escape pipe in markdown table regex cell Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * fix(security): validate preset param in serve route before cache lookup Prevents invalid presets from reaching contentStore.getCache() where they'd throw and return a generic 500 — now returns proper 400 response. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> * fix(security): address code review findings and add unit tests - Extract IIFE to named sanitizeIframeSrc function for testability - Apply prototype-safe JSON parsing (Object.create(null)) in getCache and cleanupOldCache for consistency with saveCache - Allow dots in isValidPreset regex for existing presets like extracted-text.txt, ocr-text.txt, thumbnail.webp - Use format string logging in serve.ts to prevent log injection - Restore original regex pattern for drive search line matching to maintain semantic consistency with PostgreSQL regex - Remove overly restrictive origin allowlist from desktop offline page to support localhost and self-hosted app URLs - Move CODEQL_ALERT_LOG.md and PROGRESS_NOTES.md to docs/security/ - Add 59 unit tests across 4 test files covering isValidPreset, isValidContentHash, sanitizeIframeSrc, mention processor regex bounds, and AuthFetch URL validation Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Testing
Codex Task