Summary
No debounce, throttle, or cooldown on pipeline execution beyond the isRunning boolean. Since all functions are exposed on window.*, programmatic invocation can burn through API credits rapidly.
Risk Assessment
- Risk Level: Medium
- Likelihood: Medium
- Impact: Medium — unexpected API costs
- Timeline: As user base grows
Suggested Fix
- Add cooldown period (e.g., 3s) after pipeline completion before allowing re-run
- Debounce the Run Pipeline button click handler
- Optionally: add a usage counter in localStorage to warn users approaching high usage
Summary
No debounce, throttle, or cooldown on pipeline execution beyond the
isRunningboolean. Since all functions are exposed onwindow.*, programmatic invocation can burn through API credits rapidly.Risk Assessment
Suggested Fix