admin/aiagent
1
0
Fork 0
Code Issues 14 Pull Requests Actions Packages Projects Releases Wiki Activity

[高] Webhook接口原始异常信息暴露在500响应中 #86

New Issue
Closed
opened 2026-05-10 18:39:14 +08:00 by admin · 0 comments
admin commented 2026-05-10 18:39:14 +08:00
Owner
Copy Link

问题描述

backend/app/api/webhooks.py 第130行和229行,500错误响应中直接暴露 str(e),可能泄漏内部实现细节(数据库结构、文件路径等)。

涉及文件

  • backend/app/api/webhooks.py:130, 229

修复建议

返回通用错误消息,详细错误仅记录到服务端日志。

严重程度

高 - 信息泄漏

## 问题描述 backend/app/api/webhooks.py 第130行和229行,500错误响应中直接暴露 str(e),可能泄漏内部实现细节(数据库结构、文件路径等)。 ## 涉及文件 - backend/app/api/webhooks.py:130, 229 ## 修复建议 返回通用错误消息,详细错误仅记录到服务端日志。 ## 严重程度 高 - 信息泄漏
admin closed this issue 2026-05-10 18:46:35 +08:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
admin
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: admin/aiagent#86
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?