proteus-ai

CRITICAL: The `SANDBOX_API_KEY` in `src/nodes/python_execute.py` has a hardcoded default value ('El0/osJhMJnaQMCYiyOAOD4WGgJb4vbiMhQgf7g1DXgHxz10KuWodvQr'). This is a severe vulnerability as it allows anyone with access to this default key to execute arbitrary code within the sandbox environment if not changed immediately upon deployment. Additionally, `MysqlNode` generates SQL queries based on LLM input, which introduces a risk of SQL injection through carefully crafted prompts. The system extensively relies on interaction with external services (LLMs, Serper, Caiyun, MCP servers, and a separate sandbox service), expanding the attack surface. Dynamic module imports in `ToolExecutor` and `NodeConfigManager` require careful management of the Python environment to prevent arbitrary code loading. The `BrowserAgentNode` also introduces risks associated with running a full browser. While some security practices like password hashing for user authentication and environment variable usage for most secrets are present, the identified hardcoded key significantly lowers the overall security posture.