security: validate template variable injection #5
Labels
No labels
P1
P2
P3
PHP
agent-ready
bug
clotho
discovery
docs
refactor
review
security
testing
athena
athena-gemini
audit
clotho
clotho-gemini
codex
darbs-claude
security
wiki
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference: core/php-agentic#5
Loading…
Add table
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Issue
Location:
Services/PlanTemplateService.php::substituteVariables()Risk: Special characters in variables could corrupt JSON structure
Current Behavior
Template variable substitution uses
escapeForJsonbut lacks comprehensive input sanitisation. Malicious variable values could potentially inject template syntax.Expected Behavior
Variable values should be validated against allowed character sets before substitution.
Acceptance Criteria
References
ContentService.php:218-222has similar string replacement