Fix potential SQL injection in metadata_generator.py

google-labs-jules[bot] · thebearwithabite · google-labs-jules[bot] · commit 30002557c6ce · 2026-04-04T07:23:16.000Z
This commit adds a defense-in-depth enhancement to `_migrate_database_schema`
in `metadata_generator.py`. The `ALTER TABLE` DDL statement uses an f-string
to insert column names. By validating the column name with `str.isidentifier()`,
we ensure that it is a safe SQL column name, preventing SQL injection if the
column configuration is ever exposed to user input.

Co-authored-by: thebearwithabite &lt;216692431+thebearwithabite@users.noreply.github.com&gt;
diff --git a/.jules/sentinel.md b/.jules/sentinel.md
@@ -19,3 +19,19 @@
 **Prevention:**
 1. Always convert `pathlib.Path` objects to absolute strings using `str(path.absolute())` before passing them as arguments to `subprocess.run`.
 2. Absolute paths always begin with a directory separator (`/` on Unix) or a drive letter (`C:\` on Windows), guaranteeing the command-line tool parses them as file paths rather than flags or options.
+
+## 2024-05-30 - Widespread Argument Injection Vulnerability in File Operations
+
+**Vulnerability:** Several modules (`system_storage_cleanup.py`, `dev-archive/emergency_bulk_staging.py`, `dev-archive/repair_mislabeled_jsons.py`) passed unvalidated `pathlib.Path` strings directly to `subprocess.run` calls (e.g., for `du`, `rm`, `file`). If an attacker controlled the filename, they could name a file starting with `-` (e.g., `-rf`), leading to argument injection.
+
+**Learning:** The argument injection vulnerability found in `vision_content_extractor.py` and `main.py` is a widespread pattern in this codebase. Any invocation of external command-line tools using `subprocess.run` with user-controlled file paths must use absolute paths to prevent the tool from interpreting the filename as an option.
+
+**Prevention:** Always convert `pathlib.Path` objects to absolute strings using `str(path.absolute())` before passing them as arguments to `subprocess.run`.
+
+## 2024-05-30 - SQL Injection via unvalidated dynamic column names
+
+**Vulnerability:** The `_migrate_database_schema` function in `metadata_generator.py` uses an f-string to construct an `ALTER TABLE` query. The variables are hardcoded keys in a dictionary, however if the keys in the dictionary are user-controlled in the future, it is an avenue for SQL injection.
+
+**Learning:** When dynamically generating SQL `ALTER TABLE` statements to add columns, standard `?` parameterization does not protect column keys. You must validate the column name to prevent SQL injection.
+
+**Prevention:** Use Python's `str.isidentifier()` to validate column names and prevent SQL injection.
diff --git a/metadata_generator.py b/metadata_generator.py
@@ -231,6 +231,8 @@ def _migrate_database_schema(self, conn):
             migration_count = 0
             for col_name, col_type in gdrive_columns.items():
                 if col_name not in existing_columns:
+                    if not col_name.isidentifier():
+                        raise ValueError(f"Invalid column name: {col_name}")
                     conn.execute(f"ALTER TABLE file_metadata ADD COLUMN {col_name} {col_type}")
                     migration_count += 1
                     print(f"   ✅ Added column: {col_name}")
