From 8ca8c6c6b88e23d97589300fc7191d1435568b16 Mon Sep 17 00:00:00 2001
From: LuisMIguelFurlanettoSousa <lfurlanettosousa@gmail.com>
Date: Wed, 25 Mar 2026 21:30:49 -0300
Subject: [PATCH] fix(security): sanitize verbose error in system controller
 version fetch

---
 admin/app/controllers/system_controller.ts | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/admin/app/controllers/system_controller.ts b/admin/app/controllers/system_controller.ts
index fbc872a..8967e6d 100644
--- a/admin/app/controllers/system_controller.ts
+++ b/admin/app/controllers/system_controller.ts
@@ -6,6 +6,7 @@ import { CheckServiceUpdatesJob } from '#jobs/check_service_updates_job'
 import { affectServiceValidator, checkLatestVersionValidator, installServiceValidator, subscribeToReleaseNotesValidator, updateServiceValidator } from '#validators/system';
 import { inject } from '@adonisjs/core'
 import type { HttpContext } from '@adonisjs/core/http'
+import logger from '@adonisjs/core/services/logger'
 
 @inject()
 export default class SystemController {
@@ -144,7 +145,8 @@ export default class SystemController {
             )
             response.send({ versions: updates })
         } catch (error) {
-            response.status(500).send({ error: `Failed to fetch versions: ${error.message}` })
+            logger.error({ err: error }, `[SystemController] Failed to fetch versions for ${serviceName}`)
+            response.status(500).send({ error: 'Failed to fetch available versions for this service.' })
         }
     }