Skip to content

fix: code rabbit#19

Merged
mahimairaja merged 1 commit intomainfrom
fix/load-test
Feb 15, 2026
Merged

fix: code rabbit#19
mahimairaja merged 1 commit intomainfrom
fix/load-test

Conversation

@mahimairaja
Copy link
Copy Markdown
Collaborator

@mahimairaja mahimairaja commented Feb 15, 2026
edited by coderabbitai bot
Loading

Summary by CodeRabbit

Release Notes

  • Bug Fixes

    • Improved error handling for LiveKit session initialization with clearer error messages upon failure.

  • Improvements

    • Strengthened input sanitization for enhanced security.
    • Refined deployment configuration with stricter host validation.

  • Chores

    • Updated load testing infrastructure to support authorization headers.

@mahimairaja mahimairaja self-assigned this Feb 15, 2026
@vercel
Copy link
Copy Markdown

vercel bot commented Feb 15, 2026

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
waterloo-ai-agents-hackathon2026 Building Building Preview, Comment Feb 15, 2026 8:03am

@mahimairaja mahimairaja merged commit c3fc03d into main Feb 15, 2026
2 of 4 checks passed
@coderabbitai
Copy link
Copy Markdown

coderabbitai bot commented Feb 15, 2026
edited
Loading

Caution

Review failed

The pull request is closed.

📝 Walkthrough

Walkthrough

This pull request strengthens error handling for LiveKit token generation, simplifies input validation by standardizing on bleach sanitization, refactors the health endpoint to use container-provided database sessions instead of direct instantiation, adds bearer token authorization to load tests, and tightens the allowed hosts configuration by removing localhost and test server entries.

Changes

Cohort / File(s) Summary
Error Handling & Database Access
backend/src/api/v1/endpoints/sessions.py, backend/src/main.py		 Added try/except wrapping around LiveKit token generation with 502 Bad Gateway error response on failure. Refactored health endpoint to use container's db.session() instead of direct Database(config) instantiation.
Input Validation Simplification
backend/src/core/validators.py		 Removed conditional bleach availability check and regex fallback; sanitize_input now unconditionally uses bleach.clean() with tags stripped.
Load Testing & Configuration
locustfile.py, render.yaml		 Added on_start() lifecycle hook to initialize bearer token headers from environment variables for authenticated POST requests. Narrowed ALLOWED_HOSTS to remove localhost and test server entries.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

Poem

🐰 Token guards now catch the falls,
bleach makes input clean and small,
containers serve the DB's call,
auth headers hop through load test halls,
hosts stand firm—no test backdoor at all! 🔐

✨ Finishing touches
  • 📝 Generate docstrings
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch fix/load-test

Comment @coderabbitai help to get the list of available commands and usage tips.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@mahimairaja mahimairaja

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mahimairaja