Skip to content

Comments

fix: critical cloud deployment fixes for MCP stability#317

Merged
phernandez merged 5 commits intomainfrom
cloud-testing
Sep 28, 2025
Merged

fix: critical cloud deployment fixes for MCP stability#317
phernandez merged 5 commits intomainfrom
cloud-testing

Conversation

@phernandez
Copy link
Member

@phernandez phernandez commented Sep 28, 2025

Summary

Addresses critical issues discovered during cloud deployment testing that were causing MCP tool failures and poor user experience.

🔒 Security Fix

  • JWT token exposure: Removed sensitive JWT tokens from debug logs that were being exposed in production logs

⏱️ Performance Fixes

  • Timeout issues: Increased async client timeout from 5s to 30s to handle longer write_note operations
  • Connection stability: Prevents timeout errors on file operations with sync overhead

🐛 Error Handling

  • AttributeError fix: Properly handle string error responses in read_note fallback searches
  • Graceful degradation: Tool continues to work even when search operations fail

Changes

1. Security: Prevent JWT Token Exposure

  • Modified headers.py to only log non-sensitive header keys
  • Removed JWT token values from debug output
  • Maintains debugging capability without security risk

2. Performance: Increase Client Timeout

  • Set 30-second timeouts for read/write operations (was 5s default)
  • Configured explicit timeouts for all connection phases
  • Essential for cloud deployments with file sync overhead

3. Stability: Handle Search Error Responses

  • Added hasattr() checks before accessing results attribute
  • Handles both SearchResponse objects and error strings
  • Prevents crashes when search operations fail or timeout

Impact

These fixes resolve critical issues that were causing:

  • Security vulnerability with token exposure in logs
  • Frequent timeout errors on write operations
  • AttributeError crashes when search operations failed
  • Poor user experience in cloud deployments

Test plan

  • Verified JWT tokens no longer appear in logs
  • Tested write operations complete without timeout
  • Confirmed read_note handles search failures gracefully
  • Linter formatting applied to all changes
  • All existing tests passing

🤖 Generated with Claude Code

@phernandez
fix: prevent JWT token exposure in debug logs
dae3d99 
- Remove sensitive JWT token from debug logging output
- Log only non-authorization header keys for debugging
- Keep authorization injection confirmation message concise
- Improve security by preventing token leakage in logs

This addresses a security issue where JWT tokens were being logged
in plain text in the debug output, potentially exposing them in
production logs.

Signed-off-by: phernandez <paul@basicmachines.co>
@phernandez
fix: increase async client timeout to 30 seconds for write operations
8c9335e 
- Increase read/write timeout from 5s to 30s to handle longer operations
- Add explicit timeout configuration for all connection phases
- Prevents timeout errors on write_note operations that take >5 seconds
- Particularly important for cloud deployments with file sync overhead

This fixes timeout issues where write_note operations would fail
when they took longer than the default 5-second httpx timeout.

Signed-off-by: phernandez <paul@basicmachines.co>
@phernandez
fix: handle string error responses in read_note fallback searches
0632076 
- Add hasattr() checks before accessing 'results' attribute
- Handle case where search_notes returns error strings instead of SearchResponse
- Prevents AttributeError when search operations fail or timeout
- Applies fix to both title and text search fallbacks

This fixes the 'AttributeError: str object has no attribute results'
error that occurred when search operations failed in cloud deployments.

Signed-off-by: phernandez <paul@basicmachines.co>
@phernandez
style: apply linter formatting to cloud testing fixes
03da5f1 
- Format async_client.py timeout configuration
- Format headers.py security improvements
- Format read_note.py error handling

Maintains all functionality while conforming to project code style.

Signed-off-by: phernandez <paul@basicmachines.co>
@github-actions
Copy link
Contributor

github-actions bot commented Sep 28, 2025
edited
Loading

Claude finished @phernandez's task —— View job

PR Review: Critical Cloud Deployment Fixes

I've completed my review of PR #317. These are important stability and security fixes for cloud deployments. Here's my evaluation against the team checklist:

✅ Code Quality & Standards

  • Follows Basic Memory coding conventions - All changes adhere to CLAUDE.md guidelines
  • Python 3.12+ type annotations - Proper use of type hints maintained (Timeout, HeaderTypes)
  • Async patterns - AsyncClient properly configured with appropriate timeouts
  • FastAPI conventions - Consistent with existing async client patterns
  • 100-character line length - All new code stays within the limit
  • No commented-out code - Clean implementation

⚠️ Testing & Documentation

  • Unit tests exist - test_async_client.py and test_tool_read_note.py cover base functionality
  • Missing test for timeout configuration - No test verifies the new 30s timeout settings
  • Missing test for error string handling - The hasattr() fix in read_note.py lacks test coverage
  • Missing test for JWT masking - Security fix should have explicit test verification
  • Documentation - Inline comments explain timeout rationale

✅ Basic Memory Architecture

  • MCP tools remain atomic - read_note tool behavior unchanged, just more robust
  • No database changes - No migrations needed
  • Local-first principles - Changes support both local and cloud deployments
  • Knowledge graph consistency - Error handling preserves data integrity
  • Markdown handling - No changes to markdown processing

✅ Security & Performance

  • JWT token security - Excellent fix preventing token exposure in logs
  • Input validation - Existing validation maintained
  • Error handling - Improved with graceful fallback for string errors
  • Performance - 30s timeout prevents premature failures on slow operations
  • Logging - Safe logging practices implemented

Specific Observations

1. Security Fix (headers.py:32-39)

safe_headers = {k for k in http_headers.keys() if k.lower() != "authorization"}
logger.debug(f"HTTP headers present: {list(safe_headers)}")

Good approach - logs header keys without exposing sensitive values. Consider also excluding other potentially sensitive headers like cookie or x-api-key.

2. Timeout Configuration (async_client.py:19-24)

timeout = Timeout(
    connect=10.0,  # 10 seconds for connection
    read=30.0,     # 30 seconds for reading response
    write=30.0,    # 30 seconds for writing request
    pool=30.0,     # 30 seconds for connection pool
)

Well-documented timeout values. These are reasonable for cloud deployments with file sync overhead.

3. Error Handling (read_note.py:134,164)

if title_results and hasattr(title_results, "results") and title_results.results:

Good defensive programming - handles both SearchResponse objects and error strings gracefully.

Recommendations

  1. Add test coverage for the specific fixes:

    • Verify timeout configuration in async_client tests
    • Test string error response handling in read_note
    • Verify JWT tokens don't appear in logs

  2. Consider monitoring these timeouts in production to ensure 30s is optimal

  3. Document the timeout values in CLAUDE.md if they become a standard configuration

Summary

This PR successfully addresses critical issues affecting cloud deployments. The security fix prevents JWT exposure, timeout increases handle real-world latencies, and error handling improvements prevent crashes. While test coverage could be enhanced for these specific fixes, the changes are well-implemented and follow project conventions.

Verdict: ✅ Ready to merge after considering the test coverage recommendations

@phernandez @claude
fix: address code review feedback - enhance header security and add t…
b6f2823 
…ests

- Expand sensitive header filtering to include cookie, x-api-key, x-auth-token, api-key
- Add comprehensive test coverage for 30-second timeout configuration
- Ensure all sensitive authentication headers are excluded from debug logs

Addresses review comments from github-actions bot on PR #317

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
Signed-off-by: phernandez <paul@basicmachines.co>
@github-actions
Copy link
Contributor

github-actions bot commented Sep 28, 2025
edited
Loading

Claude finished @phernandez's task —— View job

PR Review: Critical Cloud Deployment Fixes

I've completed my review of PR #317. These are important stability and security fixes for cloud deployments. Here's my evaluation against the team checklist:

Task List:

  • Read CLAUDE.md for project context
  • Review security fix in headers.py (JWT token exposure)
  • Review timeout configuration in async_client.py
  • Review error handling in read_note.py
  • Check test coverage in test_async_client.py
  • Verify against team checklist
  • Provide comprehensive feedback

Review Results

✅ Code Quality & Standards

  • Follows Basic Memory coding conventions - All changes adhere to CLAUDE.md guidelines
  • Python 3.12+ type annotations - Proper use of type hints maintained (Timeout, HeaderTypes)
  • Async patterns - AsyncClient properly configured with appropriate timeouts
  • FastAPI conventions - Consistent with existing async client patterns
  • 100-character line length - All new code stays within the limit (verified in headers.py:32-34)
  • No commented-out code - Clean implementation

⚠️ Testing & Documentation

  • Unit tests exist - test_async_client.py includes new test for timeout configuration
  • Test for timeout configuration - Added test_create_client_configures_extended_timeouts (lines 30-50)
  • Missing test for error string handling - The hasattr() fix in read_note.py lacks specific test coverage
  • Missing test for JWT masking - Security fix should have explicit test verification for the logging behavior
  • Documentation - Inline comments explain timeout rationale (async_client.py:17-18)

✅ Basic Memory Architecture

  • MCP tools remain atomic - read_note tool behavior unchanged, just more robust
  • No database changes - No migrations needed
  • Local-first principles - Changes support both local and cloud deployments
  • Knowledge graph consistency - Error handling preserves data integrity
  • Markdown handling - No changes to markdown processing

✅ Security & Performance

  • JWT token security - Excellent fix preventing token exposure in logs
  • Enhanced security coverage - Now filters additional sensitive headers (cookie, x-api-key, x-auth-token, api-key)
  • Input validation - Existing validation maintained
  • Error handling - Improved with graceful fallback for string errors
  • Performance - 30s timeout prevents premature failures on slow operations
  • Safe logging - Comprehensive filtering of sensitive headers

Specific Code Analysis

1. Security Fix (headers.py:32-34) ✅

sensitive_headers = {"authorization", "cookie", "x-api-key", "x-auth-token", "api-key"}
safe_headers = {k for k in http_headers.keys() if k.lower() not in sensitive_headers}
logger.debug(f"HTTP headers present: {list(safe_headers)}")

Excellent implementation - comprehensive filtering of all common auth headers. The latest commit expanded the list beyond just "authorization" to include other sensitive headers.

2. Timeout Configuration (async_client.py:19-24) ✅

timeout = Timeout(
    connect=10.0,  # 10 seconds for connection
    read=30.0,     # 30 seconds for reading response
    write=30.0,    # 30 seconds for writing request
    pool=30.0,     # 30 seconds for connection pool
)

Well-documented and reasonable values for cloud deployments with file sync overhead.

3. Error Handling (read_note.py:134,164) ✅

if title_results and hasattr(title_results, "results") and title_results.results:

Proper defensive programming that prevents AttributeError when search returns error strings instead of SearchResponse objects.

4. Test Coverage (test_async_client.py:30-50) ✅

New test test_create_client_configures_extended_timeouts properly verifies all timeout values for both ASGI and proxy configurations.

Recommendations

  1. Add test coverage for remaining fixes:

    • Test that verifies string error response handling in read_note
    • Test that confirms sensitive headers don't appear in logs (mock logger.debug)

  2. Consider adding these tests:

    # Test for header security
def test_inject_auth_header_masks_sensitive_values(caplog):
    # Verify sensitive headers are filtered from debug output
    
# Test for error handling
def test_read_note_handles_string_error_response():
    # Mock search_notes to return error string instead of SearchResponse

  3. Document timeout values in CLAUDE.md if they become standard configuration for cloud deployments

Summary

This PR successfully addresses critical issues affecting cloud deployments:

  • ✅ Security fix prevents JWT and other auth token exposure
  • ✅ Timeout increases handle real-world cloud latencies
  • ✅ Error handling prevents crashes on search failures
  • ✅ Good test coverage for timeout configuration

The code quality is excellent and follows all project conventions. While complete test coverage would strengthen confidence, the implementation is solid and ready for production use.

Verdict:Approved - Ready to merge

Great work on these critical fixes! The enhanced security filtering and proper timeout configuration will significantly improve cloud deployment stability.

@phernandez phernandez merged commit 2efd8f4 into main Sep 28, 2025
12 checks passed
@phernandez phernandez deleted the cloud-testing branch September 28, 2025 02:57
@phernandez phernandez added this to the v0.15.0 milestone Oct 4, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

v0.15.0

Development

Successfully merging this pull request may close these issues.

1 participant

@phernandez