andre/crewAI
1
0
Fork 0
mirror of https://github.com/crewAIInc/crewAI.git synced 2026-05-07 02:02:35 +00:00
Code Issues Actions 6 Packages Projects Releases Wiki Activity
Files
devin/1769951149-fix-xss-vulnerability-interactive-js
crewAI/lib/crewai/tests
History
Devin AI ff98f2a878 fix: Add XSS protection to flow visualization (issue #4326) 
- Add DOMPurify CDN to HTML template for sanitizing HTML content
- Add escapeHtml helper function to escape user-controlled text
- Add sanitizeHtml function using DOMPurify with allowed tags/attributes
- Apply sanitization to drawer content before setting innerHTML
- Escape user-controlled values in renderTriggerCondition, renderConditionTree, and renderMetadata methods
- Add tests to verify XSS protection is in place

Co-Authored-By: João <joao@crewai.com>
2026-02-01 13:10:35 +00:00
..
a2a
feat: add a2a liteagent, auth, transport negotiation, and file support
2026-01-30 17:10:00 -05:00
agents
feat: add a2a liteagent, auth, transport negotiation, and file support
2026-01-30 17:10:00 -05:00
cassettes
feat: add a2a liteagent, auth, transport negotiation, and file support
2026-01-30 17:10:00 -05:00
cli
feat: keycloak sso provider support (#4241)
2026-01-15 15:38:40 -03:00
config
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00
crew
feat: async crew support
2025-12-04 16:53:19 -05:00
events
feat: add event ordering and parent-child hierarchy
2026-01-21 11:12:10 -05:00
experimental
fix: ensure otel span is closed
2025-12-05 13:23:26 -05:00
hooks
feat: implement before and after tool call hooks in CrewAgentExecutor… (#4287)
2026-01-27 14:56:50 -08:00
knowledge
feat: async knowledge support (#4023)
2025-12-04 10:27:52 -08:00
llms
fix: improve output handling and response model integration in agents (#4307)
2026-01-30 12:27:46 -08:00
mcp
fix: remove invalid param from sse client (#3980)
2025-11-26 21:37:55 -08:00
memory
feat: add event ordering and parent-child hierarchy
2026-01-21 11:12:10 -05:00
pipeline
chore: restructure test env, cassettes, and conftest; fix flaky tests
2025-11-29 16:55:24 -05:00
project
fix: hash callback args correctly to ensure caching works
2025-11-05 07:19:09 -05:00
rag
Lorenze/supporting vertex embeddings (#4282)
2026-01-26 14:55:03 -08:00
security
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00
storage
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00
task
feat: async task support (#4024)
2025-12-04 13:34:29 -08:00
telemetry
fix: ensure otel span is closed
2025-12-05 13:23:26 -05:00
tools
feat: native multimodal file handling; openai responses api
2026-01-23 15:13:25 -05:00
tracing
chore: restructure test env, cassettes, and conftest; fix flaky tests
2025-11-29 16:55:24 -05:00
utilities
fix: improve output handling and response model integration in agents (#4307)
2026-01-30 12:27:46 -08:00
__init__.py
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00
test_agent_multimodal.py
feat: native multimodal file handling; openai responses api
2026-01-23 15:13:25 -05:00
test_async_human_feedback.py
Adding HITL for Flows (#4143)
2025-12-25 21:04:10 -03:00
test_context.py
Lorenze/imp/native tool calling (#4258)
2026-01-22 17:44:03 -08:00
test_crew_multimodal.py
feat: native multimodal file handling; openai responses api
2026-01-23 15:13:25 -05:00
test_crew_thread_safety.py
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00
test_crew.py
fix: ensure verbosity flag is applied
2026-01-28 11:52:47 -05:00
test_custom_llm.py
feat: async llm support
2025-12-01 18:56:56 -05:00
test_flow_default_override.py
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00
test_flow_human_input_integration.py
Improve EventListener and TraceCollectionListener for improved event… (#4160)
2025-12-30 11:36:31 -08:00
test_flow_multimodal.py
feat: native multimodal file handling; openai responses api
2026-01-23 15:13:25 -05:00
test_flow_persistence.py
Lorenze/enh decouple executor from crew (#4209)
2026-01-20 21:44:45 -08:00
test_flow_resumability_regression.py
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00
test_flow_visualization.py
fix: Add XSS protection to flow visualization (issue #4326)
2026-02-01 13:10:35 +00:00
test_flow.py
feat: native multimodal file handling; openai responses api
2026-01-23 15:13:25 -05:00
test_hallucination_guardrail.py
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00
test_human_feedback_decorator.py
Adding HITL for Flows (#4143)
2025-12-25 21:04:10 -03:00
test_human_feedback_integration.py
Adding HITL for Flows (#4143)
2025-12-25 21:04:10 -03:00
test_imports.py
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00
test_llm.py
feat: native multimodal file handling; openai responses api
2026-01-23 15:13:25 -05:00
test_markdown_task.py
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00
test_multimodal_validation.py
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00
test_project.py
chore: restructure test env, cassettes, and conftest; fix flaky tests
2025-11-29 16:55:24 -05:00
test_streaming_integration.py
chore: restructure test env, cassettes, and conftest; fix flaky tests
2025-11-29 16:55:24 -05:00
test_streaming.py
feat: native multimodal file handling; openai responses api
2026-01-23 15:13:25 -05:00
test_task_guardrails.py
fix: improve output handling and response model integration in agents (#4307)
2026-01-30 12:27:46 -08:00
test_task.py
fix: gracefully terminate the future when executing a task async
2025-12-11 12:03:33 -05:00
utils.py
Release/v1.0.0 (#3618)
2025-10-20 14:10:19 -07:00