Jason Woltje 3cfed1ebe3 fix(SEC-ORCH-19): Validate agentId path parameter as UUID ...

Add ParseUUIDPipe to getAgentStatus and killAgent endpoints to
reject invalid agentId values with a 400 Bad Request.

This prevents potential injection attacks and ensures type safety
for agent lookups.

Refs #339

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-02-05 19:21:35 -06:00

..

api

fix(SEC-ORCH-19): Validate agentId path parameter as UUID

2026-02-05 19:21:35 -06:00

budget

fix(#329): Harden BudgetService against security review findings

2026-02-05 13:15:33 -06:00

common/guards

fix(#338): Add rate limiting to orchestrator API

2026-02-05 18:26:50 -06:00

config

fix(#338): Add max concurrent agents limit

2026-02-05 18:30:42 -06:00

coordinator

fix(CQ-ORCH-4): Fix AbortController timeout cleanup using try-finally

2026-02-05 19:14:06 -06:00

git

fix(#337): Return error state from secret scanner on scan failures

2026-02-05 15:30:06 -06:00

killswitch

fix(orchestrator): resolve all M6 remediation issues (#260-#269)

2026-02-03 12:44:04 -06:00

monitor

feat(M6): Set up orchestrator service foundation

2026-02-02 13:16:19 -06:00

queue

fix(orchestrator): resolve all M6 remediation issues (#260-#269)

2026-02-03 12:44:04 -06:00

spawner

fix(#338): Add session cleanup on terminal states

2026-02-05 18:47:14 -06:00

valkey

fix(SEC-ORCH-16): Implement real health and readiness checks

2026-02-05 19:20:07 -06:00

app.module.ts

fix(#338): Add rate limiting to orchestrator API

2026-02-05 18:26:50 -06:00

main.ts

feat(M6): Set up orchestrator service foundation

2026-02-02 13:16:19 -06:00