π‘οΈ Sentinel: [CRITICAL/HIGH] Fix hardcoded secrets and improve error handling #17
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,11 @@ | ||
| # π‘οΈ Divineo Bunker Security - Environment Template | ||
| # Duplicate this file to .env and replace with production values | ||
|
|
||
| # π§ AI Engine | ||
| GEMINI_API_KEY=your_gemini_api_key_here | ||
|
|
||
| # π‘οΈ Master Authentication Secret (abvetos.com) | ||
| LVT_SECRET_KEY=your_32_character_hex_secret_here | ||
|
|
||
| # π Shopify Integration (Optional for local testing) | ||
| # SHOPIFY_ACCESS_TOKEN=shpat_... |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,8 @@ | ||
| # Sentinel Journal | ||
|
|
||
| This journal tracks critical security learnings for the TryOnYou project. | ||
|
|
||
| ## 2025-03-03 - Hardcoded Secrets and Insecure Error Handling | ||
| **Vulnerability:** Hardcoded `SECRET_KEY` in `backend/main.py` and `backend/DivineoBunker.py`. Inconsistent error handling when the AI engine failed. | ||
| **Learning:** Legacy development often leaves test credentials in code for simplicity, which can leak into production. | ||
| **Prevention:** Always load secrets from environment variables and implement centralized, generic error responses that don't leak internal states. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -4,3 +4,5 @@ uvicorn | |
| python-dotenv | ||
| pydantic | ||
| gunicorn | ||
| pytest | ||
| httpx | ||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change | ||||
|---|---|---|---|---|---|---|
|
|
@@ -14,13 +14,18 @@ def test_recommend_garment_engine_failure(monkeypatch): | |||||
| def mock_get_jules_advice(*args, **kwargs): | ||||||
| raise Exception("Simulated AI Engine Failure") | ||||||
|
|
||||||
| # Mock verify_auth to bypass security handshake for this test | ||||||
| monkeypatch.setattr("backend.main.verify_auth", lambda u, t: True) | ||||||
|
|
||||||
| # Use monkeypatch to replace the real function with our mock | ||||||
| monkeypatch.setattr("backend.main.get_jules_advice", mock_get_jules_advice) | ||||||
|
|
||||||
| # 2. Prepare the request payload | ||||||
| # Must match UserScan model in backend/models.py | ||||||
| payload = { | ||||||
| "user_id": "TEST_USER", | ||||||
| "token": "0.TEST_TOKEN", # This will fail verify_auth due to timestamp, but get_jules_advice is called later | ||||||
|
Contributor
There was a problem hiding this comment. The comment on this line is now incorrect and misleading.
Suggested change
|
||||||
| "waist": 70.0, | ||||||
| "event_type": "Gala" | ||||||
| } | ||||||
|
|
||||||
|
|
||||||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
While moving the secret to an environment variable is a great improvement, the configuration loading logic (calling
load_dotenv()and getting theLVT_SECRET_KEY) is duplicated inbackend/DivineoBunker.py. This violates the DRY (Don't Repeat Yourself) principle and could lead to maintenance issues if, for example, the environment variable name needs to change in the future. Consider centralizing your application's configuration into a single module (e.g.,backend/config.py) that loads environment variables and defines configuration constants. Other modules could then import from this central config module.