Skip to content

Pull in updates from master #248

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
mbomb67 merged 30 commits into from
Jan 29, 2026
Merged

Pull in updates from master #248

mbomb67 merged 30 commits into from
Jan 29, 2026

Conversation

@mbomb67
Copy link
Member

@mbomb67 mbomb67 commented Jan 29, 2026

Development Prerequisites

Summary of Proposed Changes

  • ...

mbomb67 and others added 30 commits March 25, 2025 14:21
@mbomb67
Merge pull request #239 from CloudBoltSoftware/howdoivideos
9cc434b 
Advanced Param Dependencies Video
Azure AD Import Group and Order Summary XUI Samples
d3ea7a6
GCP provisoning Terraform Sample
35f90b5
web_client_json
ad54b68
file path
3d99902
gcp_authentication generated parameter from json
ccc3090
json file path fix
83d62ff
nofile
022087b
no output
fb4ceae
Added local json file
6062e29
after code change
cadb6a9
fix
26da6ae
test
e1ae302
Teest
2b7bb75
test
8b36b0f
test
7858dc7
Test
409600c
test
31619ae
test
da086a3
test
acfedfc
Tewts
a692feb
@oparlak-cmp
Delete blueprints/gcp_terraform_network_sample directory
9c250bd
Added an image to the blueprint
d36b2aa
@ehussm
Merge pull request #244 from CloudBoltSoftware/add_icon_to_sample_bp
2a5c0c8 
Added an image to the blueprint
Updated the relevent files to match the json file
a2d34ce
@ehussm
Merge pull request #245 from CloudBoltSoftware/add_icon_to_sample_bp
9e62b35 
Updated the relevent files to match the json file
@mbomb67
Merge pull request #246 from CloudBoltSoftware/howdoivideos
b2d6779 
azure and aws patching XUIs
@mbomb67
Merge pull request #241 from CloudBoltSoftware/oparlakSamples
757fc08 
Oparlak samples
@oparlak-cmp
Update AWS AMI ID for AMI and OSBAttribute objects
d75dc22
@mbomb67
Merge pull request #247 from CloudBoltSoftware/AWS_AMI_Update_in_place
d8f4021 
Update AWS AMI ID for AMI and OSBAttribute objects
github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 29, 2026
View reviewed changes
ui_extensions/azure_ad_group_import/views.py

except Exception as e:
logger.exception("Failed to create CMP group")
return JsonResponse({"error": str(e)}, status=500)

Check warning

Code scanning / CodeQL

Information exposure through an exception Medium

Stack trace information
Loading
flows to this location and may be exposed to an external user.

Copilot Autofix

AI 2 days ago

In general, to fix this type of issue you should avoid returning raw exception messages or stack traces to the client. Instead, log the full exception details on the server and send a generic, non-sensitive error message in the HTTP response. Optionally, you can include a generic error code or correlation ID if the client needs something to report back to support.

Concretely in this file, only the create_cmp_group view’s except block is problematic. The exception is already logged with logger.exception("Failed to create CMP group"), so developers still have full diagnostic information. We should change the JsonResponse to return a fixed, generic error message rather than str(e). The rest of the functionality (success path, status codes, request method handling) remains unchanged. No new imports or helpers are needed.

Specifically:

  • In ui_extensions/azure_ad_group_import/views.py, around line 116–118, replace:
    • return JsonResponse({"error": str(e)}, status=500)
  • With:
    • a generic message, for example return JsonResponse({"error": "Failed to create CMP group"}, status=500)

This keeps behavior (a 500 with an error field) but removes the exposure of the underlying exception details.

Suggested changeset 1
ui_extensions/azure_ad_group_import/views.py

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/ui_extensions/azure_ad_group_import/views.py b/ui_extensions/azure_ad_group_import/views.py
--- a/ui_extensions/azure_ad_group_import/views.py
+++ b/ui_extensions/azure_ad_group_import/views.py
@@ -115,6 +115,6 @@
 
         except Exception as e:
             logger.exception("Failed to create CMP group")
-            return JsonResponse({"error": str(e)}, status=500)
+            return JsonResponse({"error": "Failed to create CMP group"}, status=500)
 
     return JsonResponse({"error": "Invalid method"}, status=405)
EOF
@@ -115,6 +115,6 @@

except Exception as e:
logger.exception("Failed to create CMP group")
return JsonResponse({"error": str(e)}, status=500)
return JsonResponse({"error": "Failed to create CMP group"}, status=500)

return JsonResponse({"error": "Invalid method"}, status=405)
Copilot is powered by AI and may make mistakes. Always verify output.
@mbomb67 mbomb67 merged commit c66efe0 into howdoivideos Jan 29, 2026
23 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@mbomb67 @oparlak-cmp @ehussm