MQL5-Google-Onedrive

Name: MQL5 Algo Forge
Brand: MQL5

A6-9V/MQL5-Google-Onedrive

Fork 0

forked from LengKundee/MQL5-Google-Onedrive

Commit graph

Author	SHA1	Message	Date
google-labs-jules[bot]	b18d80793f	🛡️ Sentinel: Fix error leakage in web dashboard - Prevent raw exception messages from being returned to the client - Log errors securely using app.logger - Return generic "Internal Server Error" - Add regression test case in scripts/test_web_dashboard.py	2026-02-11 11:23:48 +00:00
google-labs-jules[bot]	9b6778cba0	Fix CRITICAL authorization bypass in Telegram Bot - Changed `check_authorized` in `scripts/telegram_deploy_bot.py` to fail closed (deny all) if `TELEGRAM_ALLOWED_USER_IDS` is unset or empty. - Updated `scripts/TELEGRAM_BOT_SETUP.md` and `QUICK_DEPLOY.md` to document that `TELEGRAM_ALLOWED_USER_IDS` is now mandatory for bot access. - Added Sentinel Journal entry in `.jules/sentinel.md` documenting the vulnerability and learning. - Verified fix with reproduction script.	2026-02-07 11:33:43 +00:00

Author

SHA1

Message

Date

google-labs-jules[bot]

b18d80793f

🛡️ Sentinel: Fix error leakage in web dashboard

- Prevent raw exception messages from being returned to the client
- Log errors securely using app.logger
- Return generic "Internal Server Error"
- Add regression test case in scripts/test_web_dashboard.py

2026-02-11 11:23:48 +00:00

google-labs-jules[bot]

9b6778cba0

Fix CRITICAL authorization bypass in Telegram Bot

- Changed `check_authorized` in `scripts/telegram_deploy_bot.py` to fail closed (deny all) if `TELEGRAM_ALLOWED_USER_IDS` is unset or empty.
- Updated `scripts/TELEGRAM_BOT_SETUP.md` and `QUICK_DEPLOY.md` to document that `TELEGRAM_ALLOWED_USER_IDS` is now mandatory for bot access.
- Added Sentinel Journal entry in `.jules/sentinel.md` documenting the vulnerability and learning.
- Verified fix with reproduction script.

2026-02-07 11:33:43 +00:00

2 commits