steve
6fec627503
- Reject duplicate uploads at the API boundary (HTTP 409) instead of silently skipping in the background worker. Checks both ingested documents and in-flight jobs via content_hash on the jobs table. - Go client handles 409 with distinct messages for already-imported documents vs already-queued jobs. - Sanitize FTS5 search queries by quoting each token to prevent syntax errors from special characters like ?, *, ", (), AND, OR, NOT. - Add try/except safety net around FTS5 execute for edge cases. - Add main branch guard to release.sh to prevent releasing from feature branches. - Update specs and README to reflect new behaviour. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
910 B
910 B
1. Query Sanitization
- 1.1 Add
_sanitize_fts_query(query)function toengine/kb/search.pythat splits on whitespace, strips double quotes from each token, wraps each token in double quotes, and joins with spaces - 1.2 Handle edge case: if no valid tokens remain after sanitization, return empty dict from
_fts_searchwithout executing the query
2. Integration
- 2.1 Call
_sanitize_fts_query()in_fts_search()before adding the query to params (line 92) - 2.2 Add try/except
sqlite3.OperationalErroraround the FTS5 execute call — log a warning and return empty results on error
3. Testing
- 3.1 Test:
kb search "what color is grass?"returns results, not a 500 error - 3.2 Test:
kb search "NOT something OR (other)"returns results, treating input as literal terms - 3.3 Test: query with only special characters returns empty results, not an error