social-app

qzl/social-app

Fork 0

Commit Graph

Author	SHA1	Message	Date
qzl	9aefb76c9e	fix(agent): address CRITICAL/HIGH security and validation issues - Fix SSE JSON injection: use json.dumps for safe serialization - Add tool validation to dispatcher with allowlist - Add field validation to tool_registry with proper error handling - Add run_id consistency check (409 on mismatch) - Add RunAgentInput constraints: min_length, extra=forbid - Fix crewai_flow: use Field(default_factory), prefix unused params	2026-03-03 16:25:43 +08:00
qzl	6a4c98bb63	feat(agent): close interrupt resume tool result loop	2026-03-03 16:00:11 +08:00
qzl	5bac134506	feat(agent): add sse run/resume endpoints with auth	2026-03-03 15:55:38 +08:00

Author

SHA1

Message

Date

qzl

9aefb76c9e

fix(agent): address CRITICAL/HIGH security and validation issues

- Fix SSE JSON injection: use json.dumps for safe serialization
- Add tool validation to dispatcher with allowlist
- Add field validation to tool_registry with proper error handling
- Add run_id consistency check (409 on mismatch)
- Add RunAgentInput constraints: min_length, extra=forbid
- Fix crewai_flow: use Field(default_factory), prefix unused params

2026-03-03 16:25:43 +08:00

qzl

6a4c98bb63

feat(agent): close interrupt resume tool result loop

2026-03-03 16:00:11 +08:00

qzl

5bac134506

feat(agent): add sse run/resume endpoints with auth

2026-03-03 15:55:38 +08:00

3 Commits