🟠 [HIGH] CB-005: Security Plugin Fails Open #14

New issue

Open

opened 2026-02-20 08:50:03 +00:00 by Alpha · 0 comments

Alpha commented

2026-02-20 08:50:03 +00:00

Security Finding from Audit

Parent issue: #1

Severity

HIGH 🟠

CVSS Score

N/A

CWE

CWE-636 (Not Failing Securely)

Location

security/plugin.py, _check_injection()

Description

When the prompt injection shield script is not found, times out, or produces a parse error, the security check returns {"flagged": False} — allowing the message through. This fail-open design means any deployment without the external shield script has zero prompt injection protection.

def _check_injection(self, text: str) -> dict:
    if not self._shield_script or not self._shield_script.exists():
        return {"flagged": False, "reason": "shield_not_found"}
    # ... timeout and parse errors also return flagged: False

Recommendation

Fail closed. If the security check cannot be performed, block the message and alert the operator.

From: Cobot Whitebox Security Audit (February 14, 2026)
Finding ID: CB-005

## Security Finding from Audit > Parent issue: #1 ### Severity **HIGH** 🟠 ### CVSS Score N/A ### CWE CWE-636 (Not Failing Securely) ### Location `security/plugin.py, _check_injection()` --- ### Description When the prompt injection shield script is not found, times out, or produces a parse error, the security check returns `{"flagged": False}` — allowing the message through. This fail-open design means any deployment without the external shield script has **zero prompt injection protection**. ```python def _check_injection(self, text: str) -> dict: if not self._shield_script or not self._shield_script.exists(): return {"flagged": False, "reason": "shield_not_found"} # ... timeout and parse errors also return flagged: False ``` --- ### Recommendation **Fail closed.** If the security check cannot be performed, block the message and alert the operator. --- *From: Cobot Whitebox Security Audit (February 14, 2026)* *Finding ID: CB-005*