commit #1773
Merged
commit #1773
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![ellipsis-dev[bot]](https://avatars.githubusercontent.com/in/64358?s=60&v=4){kind=small}
There was a problem hiding this comment.
👍 Looks good to me! Reviewed everything up to 1f8b3c3 in 1 minute and 38 seconds
More details
- Looked at
782lines of code in12files - Skipped
0files when reviewing. - Skipped posting
4drafted comments based on config settings.
1. js/sdk/src/v3/clients/users.ts:536
- Draft comment:
Consider adding validation for themetadatainput to ensure it conforms to expected formats and values before making the request. This will help prevent unexpected behavior if invalid data is passed. - Reason this comment was not posted:
Confidence changes required:50%
The PR introduces a new methodpatchMetadatain theUsersClientclass, which allows partial updates to user metadata. However, the method does not include any validation or error handling for the metadata input. This could lead to unexpected behavior if invalid data is passed. It's important to ensure that the metadata conforms to expected formats and values before making the request.
2. py/core/database/users.py:45
- Draft comment:
Clarify the intended behavior forNonevalues in thenew_metadatadictionary. Currently,Noneis treated as equivalent to an empty string, which may lead to unintended deletions of metadata keys. - Reason this comment was not posted:
Confidence changes required:50%
The_merge_metadatafunction inusers.pyis designed to merge new metadata with existing metadata. However, the function treatsNonevalues as equivalent to empty strings, which may not be the intended behavior. This could lead to unintended deletions of metadata keys ifNoneis passed. It's important to clarify the intended behavior forNonevalues and handle them accordingly.
3. py/core/main/services/auth_service.py:284
- Draft comment:
Ensure that thenameanddescriptioninputs for API keys are properly validated and sanitized to prevent potential security issues such as injection attacks. - Reason this comment was not posted:
Confidence changes required:50%
Thecreate_user_api_keymethod inauth_service.pynow accepts optionalnameanddescriptionparameters for API keys. However, there is no validation or sanitization of these inputs, which could lead to security issues such as injection attacks. It's important to ensure that these inputs are properly validated and sanitized before being stored or used.
4. py/core/pipes/ingestion/vector_storage_pipe.py:85
- Draft comment:
Ensure that the chunk limit is checked per user, not per batch. The current logiccurrent_usage + len(vector_batch) > max_chunksmay not accurately reflect the intended behavior ifvector_batchcontains entries for multiple users. - Reason this comment was not posted:
Confidence changes required:50%
TheVectorStoragePipeclass invector_storage_pipe.pychecks for user chunk limits before storing vector entries. However, the logic for checkingcurrent_usage + len(vector_batch) > max_chunksmay not accurately reflect the intended behavior ifvector_batchcontains entries for multiple users. It's important to ensure that the chunk limit is checked per user, not per batch.
Workflow ID: wflow_WC5EgqoivC1Z7LWv
You can customize Ellipsis with 👍 / 👎 feedback, review rules, user-specific overrides, quiet mode, and more.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Important
Enhancements in user management, API key handling, and metadata updates across SDK, database, and API components.
metadata,limitOverrides, anddocumentIdsfields toUserinterface intypes.ts.patchMetadatamethod inUsersClientandusers_router.pyfor partial metadata updates.createApiKeymethod inUsersClientto acceptnameanddescription.update_userinusers.pyto handlenew_metadata.descriptionfield toApiKeyNoPrivinresponses.py.store_user_api_keyinusers.pyto includenameanddescription.create_user_api_keyinauth_service.pyto handlenameanddescription.metadatacolumn touserstable inusers.py._merge_metadatafunction inusers.pyfor metadata merging.update_userinusers.pyto handlenew_metadata.R2RClientinsync_client.pyto wrap async methods.patch_metadatamethod inusers.pyfor metadata updates.package.jsonfrom0.4.10to0.4.11.This description was created by
for 1f8b3c3. It will automatically update as commits are pushed.