feat: emit full query to posthog #2

cubic-dev-ai · 2025-09-19T12:34:23Z

This change introduces a potential sensitive data leak. The raw search query is being added to the PostHog analytics event, but the project's analytics guidelines in backend/airweave/analytics/README.md explicitly forbid including sensitive data in event properties. Search queries may contain PII or other sensitive information.

Prompt for AI agents

Address the following comment on backend/airweave/analytics/search_analytics.py at line 35: <comment>This change introduces a potential sensitive data leak. The raw search query is being added to the PostHog analytics event, but the project's analytics guidelines in `backend/airweave/analytics/README.md` explicitly forbid including sensitive data in event properties. Search queries may contain PII or other sensitive information.</comment> <file context> @@ -32,6 +32,7 @@ def build_search_properties( Dictionary of analytics properties """ properties = { + "query": query, # Full query text for PostHog history "query_length": len(query), "collection_slug": collection_slug, </file context>

[internal] Confidence score: 10/10

[internal] Posted by: System Design Agent

cubic-dev-local · 2025-09-23T10:43:27Z

This change sends the full search query text to PostHog, which violates the project's own analytics guidelines. The analytics/README.md states, 'Sensitive data should not be included in event properties.' Search queries can contain PII or other confidential information, making this a potential privacy and compliance issue.

Prompt for AI agents

Address the following comment on backend/airweave/analytics/search_analytics.py at line 35: <comment>This change sends the full search query text to PostHog, which violates the project's own analytics guidelines. The `analytics/README.md` states, 'Sensitive data should not be included in event properties.' Search queries can contain PII or other confidential information, making this a potential privacy and compliance issue.</comment> <file context> @@ -32,6 +32,7 @@ def build_search_properties( Dictionary of analytics properties """ properties = { + "query": query, # Full query text for PostHog history "query_length": len(query), "collection_slug": collection_slug, </file context>

[internal] Confidence score: 10/10

[internal] Posted by: System Design Agent

cubic-dev-local · 2025-09-23T10:43:27Z

The new query property isn’t documented in the Search Event Properties section; update docs to reflect this property for consistency.

DEV MODE: This violation would have been filtered out by screening filters. Failing filters: commentPurpose, documentationImpact.

DEV MODE: This violation would have been filtered out by GPT-5.

Reasoning:
• GPT-5: Only a docs mismatch; low severity with no functional impact. Not worth reporting compared to privacy issues.

Prompt for AI agents

Address the following comment on backend/airweave/analytics/search_analytics.py at line 35: <comment>The new `query` property isn’t documented in the Search Event Properties section; update docs to reflect this property for consistency. *DEV MODE: This violation would have been filtered out by screening filters. Failing filters: commentPurpose, documentationImpact.* DEV MODE: This violation would have been filtered out by GPT-5. Reasoning: • **GPT-5**: Only a docs mismatch; low severity with no functional impact. Not worth reporting compared to privacy issues.</comment> <file context> @@ -32,6 +32,7 @@ def build_search_properties( Dictionary of analytics properties """ properties = { + "query": query, # Full query text for PostHog history "query_length": len(query), "collection_slug": collection_slug, </file context>

[internal] Confidence score: 7/10

[internal] Posted by: General AI Review Agent

-Original file line number
+Diff line change
@@ Expand Up / @@ -32,6 +32,7 @@ def build_search_properties( @@
             Dictionary of analytics properties
         """
         properties = {
+            "query": query,  # Full query text for PostHog history
             "query_length": len(query),
             "collection_slug": collection_slug,
             "duration_ms": duration_ms,
@@ Expand Down Expand Up / @@ -71,6 +72,7 @@ def build_search_error_properties( @@
             Dictionary of analytics properties
         """
         return {
+            "query": query,  # Full query text for PostHog history
             "query_length": len(query) if query else 0,
             "collection_slug": collection_slug,
             "duration_ms": duration_ms,
@@ Expand Down @@

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

feat: emit full query to posthog #2

Uh oh!

Diff view

Diff view

There are no files selected for viewing

cubic-dev-ai bot Sep 19, 2025 •

edited

Loading

Uh oh!

cubic-dev-local bot Sep 23, 2025 •

edited

Loading

Uh oh!

cubic-dev-local bot Sep 23, 2025 •

edited

Loading

Uh oh!

feat: emit full query to posthog #2

Are you sure you want to change the base?

Uh oh!

feat: emit full query to posthog #2

Uh oh!

Uh oh!

Diff view

Diff view

There are no files selected for viewing

cubic-dev-ai bot Sep 19, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

cubic-dev-local bot Sep 23, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

cubic-dev-local bot Sep 23, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

cubic-dev-ai bot Sep 19, 2025 •

edited

Loading

cubic-dev-local bot Sep 23, 2025 •

edited

Loading

cubic-dev-local bot Sep 23, 2025 •

edited

Loading