fix(security): sanitize verbose error in rag controller scan endpoint

2026-03-28 03:29:25 +01:00 · 2026-03-25 21:30:17 -03:00 · 2026-03-25 21:30:17 -03:00 · fa1036bd31
commit fa1036bd31
parent c8693b81c1
1 changed files with 3 additions and 1 deletions
--- a/admin/app/controllers/rag_controller.ts
+++ b/admin/app/controllers/rag_controller.ts
@ -6,6 +6,7 @@ import app from '@adonisjs/core/services/app'
 import { randomBytes } from 'node:crypto'
 import { sanitizeFilename } from '../utils/fs.js'
 import { deleteFileSchema, getJobStatusSchema } from '#validators/rag'
+import logger from '@adonisjs/core/services/logger'

@inject()
 export default class RagController {
@ -79,7 +80,8 @@ export default class RagController {
      const syncResult = await this.ragService.scanAndSyncStorage()
      return response.status(200).json(syncResult)
    } catch (error) {
-      return response.status(500).json({ error: 'Error scanning and syncing storage', details: error.message })
+      logger.error({ err: error }, '[RagController] Error scanning and syncing storage')
+      return response.status(500).json({ error: 'Error scanning and syncing storage' })
    }
  }
 }