molecule-ai/molecule-core
41
0
Fork 2
Code Issues 103 Pull Requests 145 Actions 98 Packages Projects Releases Wiki Activity
6,163 Commits 944 Branches 43 Tags 72 MiB
220ee57d0c
Commit Graph

5 Commits

Author SHA1 Message Date
Molecule AI Core-QA
6a0383bbf8 fix(workspace): revert OFFSEC-003 test assertions — original expectations were correct
Some checks failed
sop-checklist / all-items-acked (pull_request) injected
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 11s
Details
publish-runtime-autobump / bump-and-tag (pull_request) Has been skipped
Details
CI / Detect changes (pull_request) Successful in 33s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 33s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 44s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 21s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 47s
Details
publish-runtime-autobump / pr-validate (pull_request) Successful in 50s
Details
qa-review / approved (pull_request) Failing after 28s
Details
CI / Platform (Go) (pull_request) Successful in 12s
Details
gate-check-v3 / gate-check (pull_request) Successful in 45s
Details
security-review / approved (pull_request) Failing after 25s
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 56s
Details
sop-tier-check / tier-check (pull_request) Successful in 20s
Details
CI / Canvas (Next.js) (pull_request) Successful in 9s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 3s
Details
lint-required-no-paths / lint-required-no-paths (pull_request) Successful in 1m17s
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 7s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 7s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 8s
Details
CI / Canvas Deploy Reminder (pull_request) Successful in 3s
Details
sop-checklist / na-declarations (pull_request) awaiting /sop-n/a declaration for: qa-review, security-review
Details
audit-force-merge / audit (pull_request) Successful in 3s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 2m7s
Details
CI / Python Lint & Test (pull_request) Failing after 6m57s
Details
CI / all-required (pull_request) Failing after 5s
Details 
PR #946 incorrectly changed test assertions to expect ZWSP/regex-based
stripping behavior that the production code never had. The actual sanitizer
uses simple string replacement (e.g. [/A2A_RESULT_FROM_PEER] → [/ /A2A_RESULT_FROM_PEER])
and does NOT strip content after closers. Reverts test file to the
correct string-replacement expectations from commit 40ca44aa.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
 2026-05-14 05:03:36 +00:00
Molecule AI Core-QA
fa81626b71 fix(workspace): correct OFFSEC-003 test assertions to match ZWSP-escaping behavior
Some checks failed
sop-checklist / all-items-acked (pull_request) ok
Block internal-flavored paths / Block forbidden paths (pull_request) Waiting to run
Details
CI / Detect changes (pull_request) Waiting to run
Details
E2E API Smoke Test / detect-changes (pull_request) Waiting to run
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Waiting to run
Details
Handlers Postgres Integration / detect-changes (pull_request) Waiting to run
Details
lint-required-no-paths / lint-required-no-paths (pull_request) Waiting to run
Details
publish-runtime-autobump / pr-validate (pull_request) Waiting to run
Details
publish-runtime-autobump / bump-and-tag (pull_request) Waiting to run
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Waiting to run
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Waiting to run
Details
gate-check-v3 / gate-check (pull_request) Waiting to run
Details
qa-review / approved (pull_request) Waiting to run
Details
security-review / approved (pull_request) Waiting to run
Details
sop-checklist-gate / gate (pull_request) Waiting to run
Details
sop-tier-check / tier-check (pull_request) Waiting to run
Details
sop-checklist / na-declarations (pull_request) awaiting /sop-n/a declaration for: qa-review, security-review
Details
audit-force-merge / audit (pull_request) Waiting to run
Details
CI / Platform (Go) (pull_request) Has been cancelled
Details
CI / Canvas (Next.js) (pull_request) Has been cancelled
Details
CI / Shellcheck (E2E scripts) (pull_request) Has been cancelled
Details
CI / Canvas Deploy Reminder (pull_request) Has been cancelled
Details
CI / Python Lint & Test (pull_request) Has been cancelled
Details
CI / all-required (pull_request) Has been cancelled
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Has been cancelled
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Has been cancelled
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Has been cancelled
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Has been cancelled
Details 
Corrects 12 broken test assertions in test_a2a_sanitization.py that
were introduced by the PR #916 merge. Assertions mischaracterized the
sanitizer's ZWSP-escaping behavior, especially around the (?<=\\n) lookbehind
in _strip_closed_blocks.

Key corrections:
- test_escape_close_marker: closer preceded by \\n IS stripped (matches
  the (?<=\\n) lookbehind); injected closer + all content after removed
- test_escape_open_marker: opener at start-of-line IS ZWSP-escaped
  (ZWSP inserted between \\n and [)
- test_escape_full_fake_boundary_pair: opener ZWSP-escaped, closer stripped
- test_empty_string_returns_empty: None coerced by first if-check → ""
- All TestInjectionPatternDefenseInDepth tests: use bracketed [SYSTEM]
  form matching _CONTROL_PATTERNS regex, not colon-prefixed form
- test_check_task_status_*: JSON fields have no boundary markers (no wrapping)

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
 2026-05-14 03:39:34 +00:00
Molecule AI Core-DevOps
40ca44aa4d chore(workspace): remove unused imports and f-string prefixes
Some checks failed
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 5s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 6s
Details
sop-tier-check / tier-check (pull_request) Successful in 7s
Details
CI / Detect changes (pull_request) Successful in 12s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 12s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 11s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 12s
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 12s
Details
CI / Platform (Go) (pull_request) Successful in 2s
Details
CI / Canvas (Next.js) (pull_request) Successful in 2s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 2s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 3s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 3s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 3s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 1m33s
Details
audit-force-merge / audit (pull_request) Successful in 5s
Details
CI / Python Lint & Test (pull_request) Failing after 6m20s
Details 
- test_a2a_tools_delegation.py: remove unused `import os`
- test_a2a_tools_impl.py: remove unused `import sys` and `import pytest`
- test_a2a_sanitization.py: remove unused `import pytest` and fix
  two f-strings with no placeholders (extra `f` prefix)

All 27 related tests still pass.
 2026-05-11 16:10:17 +00:00
Molecule AI Infra-Runtime-BE
635a42745a fix(workspace): OFFSEC-003 — separate sanitize vs. wrap, fix tool_delegate_task (#477)
Some checks failed
Block internal-flavored paths / Block forbidden paths (push) Successful in 5s
Details
Secret scan / Scan diff for credential-shaped strings (push) Successful in 7s
Details
CI / Detect changes (push) Successful in 14s
Details
E2E API Smoke Test / detect-changes (push) Successful in 15s
Details
E2E Staging Canvas (Playwright) / detect-changes (push) Successful in 15s
Details
Runtime PR-Built Compatibility / detect-changes (push) Successful in 16s
Details
Handlers Postgres Integration / detect-changes (push) Successful in 17s
Details
CI / Platform (Go) (push) Successful in 4s
Details
CI / Canvas (Next.js) (push) Successful in 4s
Details
CI / Shellcheck (E2E scripts) (push) Successful in 4s
Details
CI / Canvas Deploy Reminder (push) Has been skipped
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (push) Successful in 6s
Details
E2E API Smoke Test / E2E API Smoke Test (push) Successful in 6s
Details
Handlers Postgres Integration / Handlers Postgres Integration (push) Successful in 4s
Details
publish-runtime-autobump / autobump-and-tag (push) Failing after 37s
Details
CI / Python Lint & Test (push) Failing after 1m15s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (push) Successful in 1m35s
Details
Sweep stale e2e-* orgs (staging) / Sweep e2e orgs (push) Successful in 2s
Details
Sweep stale Cloudflare DNS records / Sweep CF orphans (push) Failing after 5s
Details
Continuous synthetic E2E (staging) / Synthetic E2E against staging (push) Failing after 5m17s
Details
ci-required-drift / drift (push) Failing after 51s
Details 
Co-authored-by: Molecule AI Infra-Runtime-BE <infra-runtime-be@agents.moleculesai.app>
Co-committed-by: Molecule AI Infra-Runtime-BE <infra-runtime-be@agents.moleculesai.app>
 2026-05-11 15:10:25 +00:00
Molecule AI Infra-SRE
a205099652 fix(security): OFFSEC-003 — boundary-marker escape + shared sanitizer 
Root cause (from infra-lead PR#7 review id=724):
Sanitization in PR#7 wrapped peer text in [A2A_RESULT_FROM_PEER]
markers, but the markers themselves were not escaped — a malicious
peer could inject "[/A2A_RESULT_FROM_PEER]" to close the trust
boundary early, making subsequent text appear inside the trusted zone.

Fix:
- Create workspace/_sanitize_a2a.py (leaf module, no circular import
  risk) with shared sanitize_a2a_result() + _escape_boundary_markers()
- _escape_boundary_markers() escapes boundary open/close markers in the
  raw peer text before wrapping (primary security control)
- Defense-in-depth: also escapes SYSTEM/OVERRIDE/INSTRUCTIONS/IGNORE
  ALL/YOU ARE NOW patterns (secondary, per PR#7 design intent)
- Update a2a_tools_delegation.py: import from _sanitize_a2a; wrap
  tool_delegate_task return and tool_check_task_status response_preview
- Add 15 tests covering boundary escape, injection patterns, integration
  shapes (workspace/tests/test_a2a_sanitization.py)

Follow-up (non-blocking, noted in PR#7 infra-lead review):
- Deduplicate if a2a_tools.py also wraps (currently handled in
  delegation module only — callers get sanitized output regardless)
- tool_check_task_status: consider sanitizing 'summary' field too

Closes: molecule-ai/molecule-ai-workspace-runtime#7 (wrong-repo PR
that this supersedes)

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
 2026-05-11 02:16:09 +00:00