search

RAHB-REALTORS-Association / chat2gpt

Chat²GPT is a ChatGPT (and DALL·E 2/3, and ElevenLabs) chat bot for Google Chat. 🤖💬
https://chat2gpt.oncornerstone.app
MIT License
11 stars 1 forks source link

Address CodeQL issues #68

Closed justinh-rahb closed 1 year ago

justinh-rahb commented 1 year ago

Summary

Refactored error handling in the code to prevent potential exposure of sensitive information.

Description

In order to address the concerns raised by the CodeQL alerts, we made the following changes:

  1. Modified the exception handling in various parts of the code to log detailed error messages for debugging while returning a generic error message to the end-user.
  2. Ensured that no sensitive details, technical data, or internal structures are revealed to the user in any error messages.

Related Issue(s)

CodeQL security alerts related to potential information exposure in error messages.

Motivation and Context

The changes were necessary to enhance the security of the application by preventing potential information exposure. By providing generic error messages to users and logging detailed errors internally, we protect the system from potential threats and vulnerabilities.

Types of changes

What types of changes does your code introduce? Put an x in all the boxes that apply:

Checklist:

Go over all the following points, and put an x in all the boxes that apply. If you're unsure about any of these, don't hesitate to ask. We're here to help!