fix(security): harden untrusted web tool transcripts

2026-05-09 19:54:32 +00:00 · 2026-02-13 00:46:11 +01:00
parent 4543c401b4
commit da55d70fb0
13 changed files with 484 additions and 18 deletions
--- a/src/agents/tools/web-fetch.ts
+++ b/src/agents/tools/web-fetch.ts
@@ -444,6 +444,11 @@ async function runWebFetch(params: {
        title: wrappedTitle,
        extractMode: params.extractMode,
        extractor: "firecrawl",
+        externalContent: {
+          untrusted: true,
+          source: "web_fetch",
+          wrapped: true,
+        },
        truncated: wrapped.truncated,
        length: wrapped.wrappedLength,
        rawLength: wrapped.rawLength, // Actual content length, not wrapped
@@ -483,6 +488,11 @@ async function runWebFetch(params: {
          title: wrappedTitle,
          extractMode: params.extractMode,
          extractor: "firecrawl",
+          externalContent: {
+            untrusted: true,
+            source: "web_fetch",
+            wrapped: true,
+          },
          truncated: wrapped.truncated,
          length: wrapped.wrappedLength,
          rawLength: wrapped.rawLength, // Actual content length, not wrapped
@@ -560,6 +570,11 @@ async function runWebFetch(params: {
      title: wrappedTitle,
      extractMode: params.extractMode,
      extractor,
+      externalContent: {
+        untrusted: true,
+        source: "web_fetch",
+        wrapped: true,
+      },
      truncated: wrapped.truncated,
      length: wrapped.wrappedLength,
      rawLength: wrapped.rawLength, // Actual content length, not wrapped