MQL5-Google-Onedrive

Name: MQL5 Algo Forge
Brand: MQL5

A6-9V/MQL5-Google-Onedrive

Fork 0

forked from LengKundee/MQL5-Google-Onedrive

Commit graph

Author	SHA1	Message	Date
google-labs-jules[bot]	3b3aca33bf	🛡️ Sentinel: [MEDIUM] Fix error handling info leak in web dashboard 🚨 Severity: MEDIUM 💡 Vulnerability: The web dashboard previously returned raw exception strings to the user upon error. This could leak sensitive internal details (e.g., file paths, stack traces). 🎯 Impact: Attackers could gain reconnaissance data about the server environment. 🔧 Fix: Replaced `return f"Error: {str(e)}", 500` with `logger.exception(...)` and a generic `Internal Server Error` response. ✅ Verification: Added `scripts/test_web_dashboard_security.py` which mocks an exception and asserts that the response does NOT contain the exception details. Existing tests in `scripts/test_web_dashboard.py` also pass.	2026-02-13 11:13:14 +00:00

Author

SHA1

Message

Date

google-labs-jules[bot]

3b3aca33bf

🛡️ Sentinel: [MEDIUM] Fix error handling info leak in web dashboard

🚨 Severity: MEDIUM
💡 Vulnerability: The web dashboard previously returned raw exception strings to the user upon error. This could leak sensitive internal details (e.g., file paths, stack traces).
🎯 Impact: Attackers could gain reconnaissance data about the server environment.
🔧 Fix: Replaced `return f"Error: {str(e)}", 500` with `logger.exception(...)` and a generic `Internal Server Error` response.
✅ Verification: Added `scripts/test_web_dashboard_security.py` which mocks an exception and asserts that the response does NOT contain the exception details. Existing tests in `scripts/test_web_dashboard.py` also pass.

2026-02-13 11:13:14 +00:00

1 commit