github/AutoGPT
1
1
Fork 0
mirror of https://github.com/Significant-Gravitas/AutoGPT.git synced 2026-01-30 09:28:19 -05:00
Code Issues Packages Projects Releases Wiki Activity

fix(workspace): use sanitized filename for non-ASCII Content-Disposition

Browse Source 
The RFC5987 encoding path was using the original filename instead of
the sanitized version, bypassing CR/LF/null byte removal.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
Nicholas Tindle
2026-01-28 02:10:30 -06:00
parent e3a389ba00
commit 2b0afc348e
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
autogpt_platform/backend/backend/api/features/workspace/routes.py
View File

@@ -33,7 +33,7 @@ def _sanitize_filename_for_header(filename: str) -> str:
return f'attachment; filename="{sanitized}"'
except UnicodeEncodeError:
# Use RFC5987 encoding for UTF-8 filenames
encoded = quote(filename, safe="")
encoded = quote(sanitized, safe="")
return f"attachment; filename*=UTF-8''{encoded}"