core/php-agentic
8
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
php-agentic/Mcp/Tools/Agent/State
History
Exact
Snider a2a9423ad6 security: fix SQL injection and add workspace scoping to MCP tools 
- Replace orderByRaw with parameterised CASE statements
- Add Task::scopeOrderByPriority() and scopeOrderByStatus()
- Add AgentPlan::scopeOrderByStatus()
- Add workspace validation to StateSet, StateGet, StateList tools
- Add workspace validation to PlanGet, PlanList tools
- Add SecurityTest.php with comprehensive isolation tests

Fixes SEC-002, SEC-003 from security audit.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-29 12:21:01 +00:00
..
StateGet.php security: fix SQL injection and add workspace scoping to MCP tools 2026-01-29 12:21:01 +00:00
StateList.php security: fix SQL injection and add workspace scoping to MCP tools 2026-01-29 12:21:01 +00:00
StateSet.php security: fix SQL injection and add workspace scoping to MCP tools 2026-01-29 12:21:01 +00:00