Skip to content

fix(#62): XSS/prompt injection prevention — xml.sax.saxutils.escape()#119

Open
Dan-StrategicAutomation wants to merge 1 commit into
devfrom
fix/62-security-prompt-injection
Open

fix(#62): XSS/prompt injection prevention — xml.sax.saxutils.escape()#119
Dan-StrategicAutomation wants to merge 1 commit into
devfrom
fix/62-security-prompt-injection

Conversation

@Dan-StrategicAutomation

Copy link
Copy Markdown
Collaborator

Fixes #62

  • Replace string .replace() sanitization with xml_safe.escape() in get_context_string()
  • Apply same escaping in get_compounding_ai_prompt()
  • Adds missing init.py files for package imports

Depends-on: fix/config-quality (must merge first)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

[P1][Security] Enhance Sandbox Isolation and Sensitive Data Protection

1 participant