Skip to content

Bugfix/codeql fixes#93

Open
vinaayakh-aot wants to merge 15 commits into
AOT-Technologies:mainfrom
vinaayakh-aot:bugfix/codeql-fixes
Open

Bugfix/codeql fixes#93
vinaayakh-aot wants to merge 15 commits into
AOT-Technologies:mainfrom
vinaayakh-aot:bugfix/codeql-fixes

Conversation

@vinaayakh-aot

@vinaayakh-aot vinaayakh-aot commented Jul 4, 2026

Copy link
Copy Markdown
Collaborator

Description

Fix issues identified in CodeQL

Type of Change

  • Bug fix
  • New feature
  • Documentation
  • Refactor / chore

Checklist

  • I ran the quality checks locally (ruff, mypy, bandit, pytest).
  • New files include the required SPDX/REUSE license header.
  • I added or updated tests where appropriate.
  • I updated documentation where appropriate.
  • My commits use a correctly configured git identity (real name and email).
  • All my commits are signed off (git commit -s) per the DCO.

Comment thread playground/scenarios.py Fixed
Comment thread playground/scenarios.py Fixed
Comment thread playground/scenarios.py Fixed
Comment thread playground/scenarios.py Fixed
Comment thread playground/scenarios.py Fixed
Comment thread playground/scenarios.py Fixed
Comment thread playground/scenarios.py Fixed
Comment thread src/agents/llm_factory.py Fixed
vinaayakh-aot and others added 3 commits July 4, 2026 08:47
- Log only literal field names (derived from presence booleans) in the
  three patient-search log statements so no payload-derived data flows
  into log records (clear-text sensitive logging / log injection).
- Strip CR/LF from visit_date before logging (log injection).
- Add __all__ to llm_factory declaring the backward-compat re-exports
  (unused-import false positive; toolhive.py and tests import them).

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants