charieswei
/
TradingAgents
mirror of https://github.com/TauricResearch/TradingAgents.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #81 from aguzererler/fix-is-empty-dos-vulnerability-11032456762221174271

This commit is contained in:
ahmet guzererler 2026-03-22 06:49:05 +01:00 committed by GitHub
parent 26bbe853c1 2192a32d03
commit f293f6447c
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
cli/main.py
View File

@ -899,8 +899,6 @@ def extract_content_string(content):
"""Extract string content from various message formats. """Extract string content from various message formats.
Returns None if no meaningful text content is found. Returns None if no meaningful text content is found.
""" """
import ast
def is_empty(val): def is_empty(val):
"""Check if value is empty using Python's truthiness.""" """Check if value is empty using Python's truthiness."""
if val is None or val == "": if val is None or val == "":
@ -909,10 +907,11 @@ def extract_content_string(content):
s = val.strip() s = val.strip()
if not s: if not s:
return True return True
try: # Check for common string representations of "empty" values
return not bool(ast.literal_eval(s)) # to avoid using unsafe ast.literal_eval
except (ValueError, SyntaxError): if s.lower() in ("[]", "{}", "()", "none", "false", "0", "0.0", '""', "''"):
return False # Can't parse = real text return True
return False
return not bool(val) return not bool(val)
if is_empty(content): if is_empty(content):