fix: Address high-severity bandit issues

2025-12-11 07:13:06 -03:00
parent bcb4475744
commit 5b2a328dd1
167 changed files with 7051 additions and 7168 deletions
--- a/dss-claude-plugin/strategies/remote/browser.py
+++ b/dss-claude-plugin/strategies/remote/browser.py
@@ -1,16 +1,16 @@
 """
 Remote Browser Strategy implementation.
+
 Connects to the DSS API to retrieve browser state and logs via Shadow State pattern.
 """

-import aiohttp
-import asyncio
 import logging
-import base64
-from typing import List, Dict, Any, Optional
+from typing import Any, Dict, List, Optional
+
+import aiohttp

-from ..base import BrowserStrategy
 from ...core.context import DSSContext
+from ..base import BrowserStrategy

 # Configure module logger
 logger = logging.getLogger(__name__)
@@ -19,6 +19,7 @@ logger = logging.getLogger(__name__)
 class RemoteBrowserStrategy(BrowserStrategy):
    """
    Implements browser interaction via remote API calls.
+
    Relies on the browser-side Logger to sync state to the server.
    """

@@ -42,7 +43,7 @@ class RemoteBrowserStrategy(BrowserStrategy):
        base_url = self.context.get_api_url()

        # Ensure base_url doesn't have trailing slash for clean concatenation
-        base_url = base_url.rstrip('/')
+        base_url = base_url.rstrip("/")
        url = f"{base_url}/api/browser-logs/{session_id}"

        try:
@@ -71,10 +72,7 @@ class RemoteBrowserStrategy(BrowserStrategy):
            return []

    async def get_console_logs(
-        self,
-        session_id: Optional[str] = None,
-        limit: int = 100,
-        level: Optional[str] = None
+        self, session_id: Optional[str] = None, limit: int = 100, level: Optional[str] = None
    ) -> List[Dict[str, Any]]:
        """
        Get browser console logs from the remote API.
@@ -88,7 +86,8 @@ class RemoteBrowserStrategy(BrowserStrategy):

        # Filter by console category mostly, but also capture uncaught errors
        console_logs = [
-            l for l in logs
+            l
+            for l in logs
            if l.get("category") in ["console", "uncaughtError", "unhandledRejection"]
        ]

@@ -102,9 +101,7 @@ class RemoteBrowserStrategy(BrowserStrategy):
        return console_logs[:limit]

    async def capture_screenshot(
-        self,
-        selector: Optional[str] = None,
-        full_page: bool = False
+        self, selector: Optional[str] = None, full_page: bool = False
    ) -> str:
        """
        Capture a screenshot.
@@ -133,8 +130,7 @@ class RemoteBrowserStrategy(BrowserStrategy):

        # Filter for snapshots
        snapshots = [
-            l for l in logs
-            if l.get("category") == "snapshot" and "snapshot" in l.get("data", {})
+            l for l in logs if l.get("category") == "snapshot" and "snapshot" in l.get("data", {})
        ]

        if not snapshots:
@@ -154,9 +150,7 @@ class RemoteBrowserStrategy(BrowserStrategy):
            return "<!-- Corrupted or unexpected snapshot data format -->"

    async def get_errors(
-        self,
-        severity: Optional[str] = None,
-        limit: int = 50
+        self, severity: Optional[str] = None, limit: int = 50
    ) -> List[Dict[str, Any]]:
        """
        Get error logs from the remote API.
@@ -178,10 +172,7 @@ class RemoteBrowserStrategy(BrowserStrategy):

        return errors[:limit]

-    async def run_accessibility_audit(
-        self,
-        selector: Optional[str] = None
-    ) -> Dict[str, Any]:
+    async def run_accessibility_audit(self, selector: Optional[str] = None) -> Dict[str, Any]:
        """
        Get accessibility audit results from Shadow State.

@@ -198,7 +189,8 @@ class RemoteBrowserStrategy(BrowserStrategy):

        # Look for accessibility audits in the logs
        audits = [
-            l for l in logs
+            l
+            for l in logs
            if l.get("category") == "accessibility" or l.get("category") == "accessibilitySnapshot"
        ]

@@ -207,7 +199,7 @@ class RemoteBrowserStrategy(BrowserStrategy):
                "violations": [],
                "passes": [],
                "incomplete": [],
-                "message": "No accessibility audit found in Shadow State. Trigger audit from browser console using __DSS_BROWSER_LOGS.audit()"
+                "message": "No accessibility audit found in Shadow State. Trigger audit from browser console using __DSS_BROWSER_LOGS.audit()",
            }

        # Get the latest audit
@@ -236,14 +228,13 @@ class RemoteBrowserStrategy(BrowserStrategy):

        # Look for performance metrics in the logs
        perf_logs = [
-            l for l in logs
-            if l.get("category") in ["performance", "accessibilitySnapshot"]
+            l for l in logs if l.get("category") in ["performance", "accessibilitySnapshot"]
        ]

        if not perf_logs:
            return {
                "error": "No performance data found in Shadow State.",
-                "message": "Performance metrics are captured automatically during page load."
+                "message": "Performance metrics are captured automatically during page load.",
            }

        # Get the latest performance entry
--- a/dss-claude-plugin/strategies/remote/filesystem.py
+++ b/dss-claude-plugin/strategies/remote/filesystem.py
@@ -1,14 +1,14 @@
 """
 Remote Filesystem Strategy implementation.
+
 Filesystem operations are restricted in REMOTE mode for security.
 """

 import logging
-from typing import List, Dict, Any
-from pathlib import Path
+from typing import Any, Dict, List

-from ..base import FilesystemStrategy
 from ...core.context import DSSContext
+from ..base import FilesystemStrategy

 # Configure module logger
 logger = logging.getLogger(__name__)