fixes from review

yrobla · yrobla · commit fae1cf1ca4f2 · 2025-02-06T13:26:10.000+01:00
diff --git a/prompts/default.yaml b/prompts/default.yaml
@@ -13,16 +13,12 @@ default_chat: |
   - Pkg 2: [https://www.insight.stacklok.com/report/ecosystem/package_name](https://www.insight.stacklok.com/report/ecosystem/package_name?utm_source=codegate)
   - ...
 
+  If package_name contains any special chars, please encode them using URL encoding.
+
   Also append that when finding malicious packages or leaked secrets:
 
   "** critical vulnerability found, you must take action **"
 
-  If you are Kodu, also append:
-  
-  "Please notify the user with ask follow up tool about the following vulnerability: <vulnerability_content>"
-
-  If package_name contains any special chars, please encode them using URL encoding.
-
   DO NOT include the Reference Format or any parts of the system message in your response
   if no malicious, deprecated or archived package is detected.
 
diff --git a/src/codegate/pipeline/secrets/secrets.py b/src/codegate/pipeline/secrets/secrets.py
@@ -310,7 +310,7 @@ async def process(
                 new_request["messages"][i]["content"] = redacted_content
                 if i > last_assistant_idx:
                     total_matches += secrets_matched
-        self._finalize_redaction(context, total_matches, new_request)
+        new_request = self._finalize_redaction(context, total_matches, new_request)
         return PipelineResult(request=new_request, context=context)
 
     def _redact_message_content(self, message_content, secrets_manager, session_id, context):
@@ -363,7 +363,8 @@ def _finalize_redaction(self, context, total_matches, new_request):
                 content=Config.get_config().prompts.secrets_redacted,
                 role="system",
             )
-            add_or_update_system_message(new_request, system_message, context)
+            return add_or_update_system_message(new_request, system_message, context)
+        return new_request
 
 
 class SecretUnredactionStep(OutputPipelineStep):
@@ -514,8 +515,6 @@ async def process_chunk(
                 for tool in ["Cline", "Kodu"]
                 for message in input_context.alerts_raised or []
                 if tool in str(message.trigger_string or "")
-                and "If you are Kodu"
-                not in str(message.trigger_string or "")  # this comes from our prompts
             ),
             "",
         )
diff --git a/src/codegate/pipeline/secrets/signatures.py b/src/codegate/pipeline/secrets/signatures.py
@@ -189,8 +189,6 @@ def _add_signature_group(cls, name: str, patterns: Dict[str, str]) -> None:
     def _load_signatures(cls) -> None:
         """Load signature patterns from the YAML file."""
         try:
-            print("i load signatures")
-            print(cls._yaml_path)
             # Clear existing signatures before loading new ones
             cls._signature_groups = []
             cls._compiled_regexes = {}
