didericis/bot-bottle
1
0
Fork 0
Code Issues 7 Pull Requests 15 Actions Packages Projects Releases Wiki Activity
Files
1f96619c6a74a3eedad379f74135dc867aece3ba
bot-bottle/bot_bottle
T
History
didericis-claude 1f96619c6a
lint / lint (push) Failing after 2m15s
Details
test / unit (pull_request) Successful in 43s
Details
test / integration (pull_request) Successful in 25s
Details
fix(egress): strip injected Authorization and redact bodies in LOG_FULL path 
_log_request and _log_response wrote headers and bodies to stderr verbatim.
_log_request also included the sidecar-injected upstream Authorization value,
exposing live bearer tokens on every allowed request under LOG_FULL.

Apply redact_tokens to all header values and bodies in both log functions;
exclude the authorization header from _log_request entirely since its value
is always a live sidecar-injected credential by the time _log_request runs.

Closes #257
2026-06-24 23:04:22 -04:00
..
backend
fix(smolmachines): exclude /tmp+/var/tmp from snapshot; mkdir -p on boot
2026-06-23 16:53:41 -04:00
cli
Rename TOOL_ALLOW to TOOL_EGRESS_ALLOW
2026-06-25 01:23:10 +00:00
contrib
feat(provider): support startup args settings
2026-06-24 22:51:27 -04:00
__init__.py
agent_provider.py
feat(provider): support startup args settings
2026-06-24 22:51:27 -04:00
bottle_state.py
feat(cli): add commit command to snapshot running bottle state
2026-06-23 16:53:41 -04:00
deploy_key_provisioner.py
fix(deploy-key): raise DeployKeyCollisionError on 422 key conflicts
2026-06-25 02:23:12 +00:00
dlp_detectors.py
Stop scanning the request body for CRLF injection
2026-06-24 20:37:26 -04:00
egress_addon_core.py
Stop scanning the request body for CRLF injection
2026-06-24 20:37:26 -04:00
egress_addon.py
fix(egress): strip injected Authorization and redact bodies in LOG_FULL path
2026-06-24 23:04:22 -04:00
egress_entrypoint.sh
chore: remove all pipelock references from tests, docs, and non-pipelock source
2026-06-04 21:54:06 +00:00
egress.py
Default agent-provider routes to the redact on-match policy
2026-06-24 20:40:36 -04:00
env.py
refactor(manifest): split Manifest into ManifestIndex + Manifest single-value type
2026-06-22 23:54:02 -04:00
git_gate.py
Supervise gitleaks inline allow exceptions
2026-06-23 17:36:08 -04:00
git_http_backend.py
fix: raise git http body cap
2026-06-10 06:29:46 +00:00
log.py
feat(log): add leveled severity and structured context to log wrappers
2026-06-24 15:37:57 -04:00
manifest_agent.py
feat(provider): support startup args settings
2026-06-24 22:51:27 -04:00
manifest_egress.py
Add dlp.outbound_on_match policy (block | redact | supervise)
2026-06-24 16:50:13 -04:00
manifest_extends.py
refactor: scan filenames at resolve, parse only selected agent at preflight
2026-06-22 23:54:02 -04:00
manifest_git.py
refactor: make static the default branch in _parse_key_config
2026-06-19 22:25:14 +00:00
manifest_loader.py
refactor: scan filenames at resolve, parse only selected agent at preflight
2026-06-22 23:54:02 -04:00
manifest_schema.py
fix: resolve pyright errors in manifest_schema.py
2026-06-03 23:45:20 -04:00
manifest_util.py
refactor: address PR review feedback — de-privatize helpers and rename modules
2026-06-03 00:33:02 -04:00
manifest.py
Default the supervise flag to true
2026-06-23 20:48:04 -04:00
sidecar_init.py
fix(macos-container): support git-gate launch
2026-06-10 22:25:00 -04:00
supervise_server.py
Rename TOOL_ALLOW to TOOL_EGRESS_ALLOW
2026-06-25 01:23:10 +00:00
supervise.py
Rename TOOL_ALLOW to TOOL_EGRESS_ALLOW
2026-06-25 01:23:10 +00:00
util.py
refactor: address PR review feedback — de-privatize helpers and rename modules
2026-06-03 00:33:02 -04:00
workspace.py
fix: resolve pyright type errors
2026-06-03 23:25:41 -04:00
yaml_subset.py
chore: Replace die with YamlSubsetError
2026-06-08 23:05:11 -04:00