ti.sil/pr-agent
1
0
Fork 0
mirror of https://github.com/qodo-ai/pr-agent.git synced 2025-12-12 10:55:17 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Fixed webhook security concern

Browse source
This commit is contained in:
Pinyoo Thotaboot 2025-05-22 15:03:15 +07:00
parent 000f0ba93e
commit 0f893bc492
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
pr_agent/servers/gitea_app.py
View file

@ -47,6 +47,10 @@ async def get_body(request: Request):
if webhook_secret: if webhook_secret:
body_bytes = await request.body() body_bytes = await request.body()
signature_header = request.headers.get('x-gitea-signature', None) signature_header = request.headers.get('x-gitea-signature', None)
if not signature_header:
get_logger().error("Missing signature header")
raise HTTPException(status_code=400, detail="Missing signature header")
verify_signature(body_bytes, webhook_secret, f"sha256={signature_header}") verify_signature(body_bytes, webhook_secret, f"sha256={signature_header}")
return body return body