Danny Avila 381ed8539b 🪪 fix: Enforce Conversation Ownership Checks in Remote Agent Controllers (#12263) ... * 🔒 fix: Validate conversation ownership in remote agent API endpoints Add user-scoped ownership checks for client-supplied conversation IDs in OpenAI-compatible and Open Responses controllers to prevent cross-tenant file/message loading via IDOR. * 🔒 fix: Harden ownership checks against type confusion and unhandled errors - Add typeof string validation before getConvo to block NoSQL operator injection (e.g. { "$gt": "" }) bypassing the ownership check - Move ownership checks inside try/catch so DB errors produce structured JSON error responses instead of unhandled promise rejections - Add string type validation for conversation_id and previous_response_id in the upstream TS request validators (defense-in-depth) * 🧪 test: Add coverage for conversation ownership validation in remote agent APIs - Fix broken getConvo mock in openai.spec.js (was missing entirely) - Add tests for: owned conversation, unowned (404), non-string type (400), absent conversation_id (skipped), and DB error (500) — both controllers		2026-03-16 09:19:48 -04:00
..
callbacks.spec.js	🐛 fix: Normalize output_text blocks in Responses API input conversion (#11835)	2026-02-17 22:34:19 -05:00
jobReplacement.spec.js	🏁 fix: Message Race Condition if Cancelled Early (#11462)	2026-01-21 13:57:12 -05:00
openai.spec.js	🪪 fix: Enforce Conversation Ownership Checks in Remote Agent Controllers (#12263)	2026-03-16 09:19:48 -04:00
responses.unit.spec.js	🪪 fix: Enforce Conversation Ownership Checks in Remote Agent Controllers (#12263)	2026-03-16 09:19:48 -04:00
v1.duplicate-actions.spec.js	🛡️ refactor: Scope Action Mutations by Parent Resource Ownership (#12237)	2026-03-15 10:19:29 -04:00
v1.spec.js	🔄 refactor: Convert OCR Tool Resource to Context (#9699)	2025-09-18 20:06:59 -04:00