Skip to content

Fix policy exploits and add upgrade enforcement mechanism #149

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
aldro61 merged 4 commits into from
Jan 22, 2026
Merged

Fix policy exploits and add upgrade enforcement mechanism #149

aldro61 merged 4 commits into from
Jan 22, 2026

Conversation

@aldro61
Copy link
Collaborator

@aldro61 aldro61 commented Jan 22, 2026
edited
Loading

Summary

  • Add mechanism to force package version upgrades via the instance pool (error entries trigger RuntimeError)
  • Add early playwright version check at import time to prevent cryptic errors
  • Update instance pool filename to instances_v2.json
  • Remove UI elements that allowed agents to exploit tasks (Personalize Form/List buttons, Additional Actions, Add content, header decorations, More Options buttons)

Test plan

  • Verify package import fails gracefully with wrong playwright version
  • Verify error entries in instance pool raise appropriate RuntimeError
  • Confirm removed UI elements no longer appear on form, list, and service catalog pages
  • Test that normal task workflows still function correctly

🤖 Generated with Claude Code

aldro61 and others added 4 commits January 22, 2026 09:46
@aldro61 @claude
Add mechanism to force package version upgrades on demand
80c473d 
Add error-checking in fetch_instances() that allows the instance pool
to signal errors to users. When an entry in the pool contains an
"error" field, a RuntimeError is raised with the associated message.

This enables maintainers to push upgrade notices to the instance pool
that will interrupt users running outdated package versions, prompting
them to upgrade to continue using the service.

Also adds an optional filename parameter to fetch_instances() for
flexibility in fetching different files from the HF dataset.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
@aldro61 @claude
Add early playwright version check to prevent cryptic errors
90559f8 
Check that playwright==1.44.0 is installed at import time and raise
a clear error message if the wrong version is detected. This prevents
users from encountering confusing errors later due to version mismatch.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
@aldro61 @claude
Update instance filename to instances_v2.json
49a6ee7 
Switch to the new versioned instance pool file that will be used
to enforce package upgrades and manage instance access.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
@aldro61 @claude
Bump version to 0.5.2
066daf5 
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
@aldro61 aldro61 merged commit 613f0bb into main Jan 22, 2026
4 of 7 checks passed
@aldro61 aldro61 deleted the fix-policy-exploits branch January 22, 2026 13:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@aldro61