molecule-ai/molecule-core
41
0
Fork 2
Code Issues 41 Pull Requests 5 Actions 572 Packages Projects Releases Wiki Activity
5,385 Commits 598 Branches 42 Tags 75 MiB
f9214391fb
Commit Graph

3 Commits

Author SHA1 Message Date
Molecule AI Core-DevOps
40ca44aa4d chore(workspace): remove unused imports and f-string prefixes
Some checks failed
Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 5s
Details
Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 6s
Details
sop-tier-check / tier-check (pull_request) Successful in 7s
Details
CI / Detect changes (pull_request) Successful in 12s
Details
E2E API Smoke Test / detect-changes (pull_request) Successful in 12s
Details
E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 11s
Details
Handlers Postgres Integration / detect-changes (pull_request) Successful in 12s
Details
Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 12s
Details
CI / Platform (Go) (pull_request) Successful in 2s
Details
CI / Canvas (Next.js) (pull_request) Successful in 2s
Details
CI / Shellcheck (E2E scripts) (pull_request) Successful in 2s
Details
Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 3s
Details
CI / Canvas Deploy Reminder (pull_request) Has been skipped
Details
E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 3s
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 3s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 1m33s
Details
audit-force-merge / audit (pull_request) Successful in 5s
Details
CI / Python Lint & Test (pull_request) Failing after 6m20s
Details 
- test_a2a_tools_delegation.py: remove unused `import os`
- test_a2a_tools_impl.py: remove unused `import sys` and `import pytest`
- test_a2a_sanitization.py: remove unused `import pytest` and fix
  two f-strings with no placeholders (extra `f` prefix)

All 27 related tests still pass.
 2026-05-11 16:10:17 +00:00
Molecule AI Infra-Runtime-BE
635a42745a fix(workspace): OFFSEC-003 — separate sanitize vs. wrap, fix tool_delegate_task (#477)
Some checks failed
Block internal-flavored paths / Block forbidden paths (push) Successful in 5s
Details
Secret scan / Scan diff for credential-shaped strings (push) Successful in 7s
Details
CI / Detect changes (push) Successful in 14s
Details
E2E API Smoke Test / detect-changes (push) Successful in 15s
Details
E2E Staging Canvas (Playwright) / detect-changes (push) Successful in 15s
Details
Runtime PR-Built Compatibility / detect-changes (push) Successful in 16s
Details
Handlers Postgres Integration / detect-changes (push) Successful in 17s
Details
CI / Platform (Go) (push) Successful in 4s
Details
CI / Canvas (Next.js) (push) Successful in 4s
Details
CI / Shellcheck (E2E scripts) (push) Successful in 4s
Details
CI / Canvas Deploy Reminder (push) Has been skipped
Details
E2E Staging Canvas (Playwright) / Canvas tabs E2E (push) Successful in 6s
Details
E2E API Smoke Test / E2E API Smoke Test (push) Successful in 6s
Details
Handlers Postgres Integration / Handlers Postgres Integration (push) Successful in 4s
Details
publish-runtime-autobump / autobump-and-tag (push) Failing after 37s
Details
CI / Python Lint & Test (push) Failing after 1m15s
Details
Runtime PR-Built Compatibility / PR-built wheel + import smoke (push) Successful in 1m35s
Details
Sweep stale e2e-* orgs (staging) / Sweep e2e orgs (push) Successful in 2s
Details
Sweep stale Cloudflare DNS records / Sweep CF orphans (push) Failing after 5s
Details
Continuous synthetic E2E (staging) / Synthetic E2E against staging (push) Failing after 5m17s
Details
ci-required-drift / drift (push) Failing after 51s
Details 
Co-authored-by: Molecule AI Infra-Runtime-BE <infra-runtime-be@agents.moleculesai.app>
Co-committed-by: Molecule AI Infra-Runtime-BE <infra-runtime-be@agents.moleculesai.app>
 2026-05-11 15:10:25 +00:00
Molecule AI Infra-SRE
a205099652 fix(security): OFFSEC-003 — boundary-marker escape + shared sanitizer 
Root cause (from infra-lead PR#7 review id=724):
Sanitization in PR#7 wrapped peer text in [A2A_RESULT_FROM_PEER]
markers, but the markers themselves were not escaped — a malicious
peer could inject "[/A2A_RESULT_FROM_PEER]" to close the trust
boundary early, making subsequent text appear inside the trusted zone.

Fix:
- Create workspace/_sanitize_a2a.py (leaf module, no circular import
  risk) with shared sanitize_a2a_result() + _escape_boundary_markers()
- _escape_boundary_markers() escapes boundary open/close markers in the
  raw peer text before wrapping (primary security control)
- Defense-in-depth: also escapes SYSTEM/OVERRIDE/INSTRUCTIONS/IGNORE
  ALL/YOU ARE NOW patterns (secondary, per PR#7 design intent)
- Update a2a_tools_delegation.py: import from _sanitize_a2a; wrap
  tool_delegate_task return and tool_check_task_status response_preview
- Add 15 tests covering boundary escape, injection patterns, integration
  shapes (workspace/tests/test_a2a_sanitization.py)

Follow-up (non-blocking, noted in PR#7 infra-lead review):
- Deduplicate if a2a_tools.py also wraps (currently handled in
  delegation module only — callers get sanitized output regardless)
- tool_check_task_status: consider sanitizing 'summary' field too

Closes: molecule-ai/molecule-ai-workspace-runtime#7 (wrong-repo PR
that this supersedes)

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
 2026-05-11 02:16:09 +00:00