Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Some mitigations for RCE in PAL chain #7870

Merged
merged 3 commits into from
Jul 18, 2023
Merged

Some mitigations for RCE in PAL chain #7870

merged 3 commits into from
Jul 18, 2023
+556 −16

Conversation

hinthornw
Copy link
Collaborator

Some docstring / small nits to #6003

boazwasserman and others added 3 commits July 17, 2023 22:46
@boazwasserman @orraz-labs
Mitigate issue #5872 (Prompt injection -> RCE in PAL chain) (#6003)
8ba9835 
Adds some selective security controls to the PAL chain:
1. Prevent imports
2. Prevent arbitrary execution commands
3. Enforce execution time limit (prevents DOS and long sessions where
the flow is hijacked like remote shell)
4. Enforce the existence of the solution expression in the code

This is done mostly by static analysis of the code using the ast
library.

Also added tests to the pal chain.

Fixes #5872 

@vowelparrot

---------

Co-authored-by: HippoTerrific <49598618+HippoTerrific@users.noreply.github.com>
Co-authored-by: Or Raz <orraz1994@gmail.com>
@hinthornw
spelling
a137517
@hinthornw
docstrings
54ef605
@vercel
Copy link

vercel bot commented Jul 18, 2023

The latest updates on your projects. Learn more about Vercel for Git ↗︎

1 Ignored Deployment
Name Status Preview Updated (UTC)
langchain ⬜️ Ignored (Inspect) Jul 18, 2023 5:51am

@dosubot dosubot bot added the 🤖:bug Related to a bug, vulnerability, unexpected error with an existing feature label Jul 18, 2023
@hinthornw hinthornw merged commit e294ba4 into master Jul 18, 2023
15 checks passed
@hinthornw hinthornw deleted the wfh/prompt_injection branch July 18, 2023 05:58
aerrober pushed a commit to aerrober/langchain-fork that referenced this pull request Jul 24, 2023
@hinthornw @boazwasserman
@orraz-labs @aerrober
Some mitigations for RCE in PAL chain (langchain-ai#7870)
2988514 
Some docstring / small nits to langchain-ai#6003

---------

Co-authored-by: BoazWasserman <49598618+boazwasserman@users.noreply.github.com>
Co-authored-by: HippoTerrific <49598618+HippoTerrific@users.noreply.github.com>
Co-authored-by: Or Raz <orraz1994@gmail.com>
@phact phact mentioned this pull request Aug 14, 2023
Open
@obi1kenobi obi1kenobi mentioned this pull request Aug 29, 2023
Closed
14 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
🤖:bug Related to a bug, vulnerability, unexpected error with an existing feature
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@hinthornw @boazwasserman