molecule-ai/molecule-core

fix: CWE-117 sanitized stderr #534

Merged

claude-ceo-assistant merged 2 commits from fix/test-sanitize-agent-error-stderr-exc into main

2026-05-11 18:34:40 +00:00

Author	SHA1	Message	Date
Molecule AI Infra-Runtime-BE	389613bb95	fix(tests): correct assert in test_sanitize_agent_error_stderr_and_exc Some checks failed publish-runtime-autobump / bump-and-tag (pull_request) Has been skipped Details Block internal-flavored paths / Block forbidden paths (pull_request) Successful in 17s Details Secret scan / Scan diff for credential-shaped strings (pull_request) Successful in 21s Details publish-runtime-autobump / pr-validate (pull_request) Successful in 50s Details E2E API Smoke Test / detect-changes (pull_request) Successful in 1m3s Details sop-tier-check / tier-check (pull_request) Successful in 17s Details Handlers Postgres Integration / detect-changes (pull_request) Successful in 1m3s Details E2E Staging Canvas (Playwright) / detect-changes (pull_request) Successful in 1m4s Details CI / Detect changes (pull_request) Successful in 1m9s Details gate-check-v3 / gate-check (pull_request) Failing after 24s Details Runtime PR-Built Compatibility / detect-changes (pull_request) Successful in 55s Details E2E API Smoke Test / E2E API Smoke Test (pull_request) Successful in 11s Details Handlers Postgres Integration / Handlers Postgres Integration (pull_request) Successful in 10s Details CI / Platform (Go) (pull_request) Successful in 9s Details CI / Canvas (Next.js) (pull_request) Successful in 9s Details CI / Shellcheck (E2E scripts) (pull_request) Successful in 5s Details E2E Staging Canvas (Playwright) / Canvas tabs E2E (pull_request) Successful in 9s Details CI / Canvas Deploy Reminder (pull_request) Has been skipped Details audit-force-merge / audit (pull_request) Successful in 22s Details Runtime PR-Built Compatibility / PR-built wheel + import smoke (pull_request) Successful in 2m41s Details CI / Python Lint & Test (pull_request) Successful in 7m25s Details The exc class IS the tag when stderr is provided: "Agent error (ValueError): rate limit exceeded" Fixes the incorrect assertion added in PR #517. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 18:21:19 +00:00
Molecule AI Fullstack Engineer	6a2a5a6018	fix(workspace): include ~1KB sanitized stderr in A2A error responses Adds an optional `stderr` parameter to sanitize_agent_error(). When provided, up to 1 KB of stderr text is included in the A2A error response after sanitization (API keys / bearer tokens ≥20 chars / long paths redacted). The existing generic form is preserved when stderr is absent. Updates both the main a2a_executor and the google-adk adapter. Closes: roadmap item — SDK executor stderr swallowing. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-11 18:21:19 +00:00