opensource
/
dify
mirror of https://github.com/langgenius/dify.git
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
dify/api/tests/test_containers_integration.../workflow
History
Devbyteai 26444d8b6c fix(template-transform): use base64 encoding for Jinja2 templates 
When Jinja2 templates containing special characters (quotes, newlines)
were embedded directly in the generated Python script using triple-quoted
strings, the script would break. This fix encodes the template as base64
before embedding, then decodes it at runtime.

Root cause: Templates were inserted via string replacement into a Python
script like `jinja2.Template('''...''')`. If the template contained `'''`,
the generated script had a syntax error.

Solution: Add serialize_code() method to base64-encode templates, then
override assemble_runner_script() in Jinja2TemplateTransformer to use
the encoded template with runtime decoding.

This specifically affects Jinja2 templates - Python3 and JavaScript
transformers insert user code at the top level (not inside strings),
so they don't have this vulnerability.

Fixes #26818
 		2025-12-26 20:08:12 +02:00
..
nodes fix(template-transform): use base64 encoding for Jinja2 templates 2025-12-26 20:08:12 +02:00
__init__.py Feat add testcontainers test (#23269) 2025-08-04 19:27:36 +08:00