github/OpenHands
1
1
Fork 0
mirror of https://github.com/All-Hands-AI/OpenHands.git synced 2026-04-29 03:00:45 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
0c7ce4ad486fbeeb01ac5f734d2e36de71dc12e4
OpenHands/openhands/security/llm/analyzer.py
Engel Nyst 25076ee44c chore: mark security/ and resolver/ as Legacy V0 (#13062) 
Co-authored-by: openhands <openhands@all-hands.dev>
2026-02-28 04:22:47 +01:00

50 lines
2.2 KiB
Python
Raw Blame History

# IMPORTANT: LEGACY V0 CODE - Deprecated since version 1.0.0, scheduled for removal April 1, 2026
# This file is part of the legacy (V0) implementation of OpenHands and will be removed soon as we complete the migration to V1.
# OpenHands V1 uses the Software Agent SDK for the agentic core and runs a new application server. Please refer to:
# - V1 agentic core (SDK): https://github.com/OpenHands/software-agent-sdk
# - V1 application server (in this repo): openhands/app_server/
# Unless you are working on deprecation, please avoid extending this legacy file and consult the V1 codepaths above.
# Tag: Legacy-V0
"""Security analyzer that uses LLM-provided risk assessments."""
from typing import Any
from fastapi import Request
from openhands.core.logger import openhands_logger as logger
from openhands.events.action.action import Action, ActionSecurityRisk
from openhands.security.analyzer import SecurityAnalyzer
class LLMRiskAnalyzer(SecurityAnalyzer):
"""Security analyzer that respects LLM-provided risk assessments."""
async def handle_api_request(self, request: Request) -> Any:
"""Handles the incoming API request."""
return {'status': 'ok'}
async def security_risk(self, action: Action) -> ActionSecurityRisk:
"""Evaluates the Action for security risks and returns the risk level.
This analyzer checks if the action has a 'security_risk' attribute set by the LLM.
If it does, it uses that value. Otherwise, it returns UNKNOWN.
"""
# Check if the action has a security_risk attribute set by the LLM
if not hasattr(action, 'security_risk'):
return ActionSecurityRisk.UNKNOWN
security_risk = getattr(action, 'security_risk')
if security_risk in {
ActionSecurityRisk.LOW,
ActionSecurityRisk.MEDIUM,
ActionSecurityRisk.HIGH,
}:
return security_risk
elif security_risk == ActionSecurityRisk.UNKNOWN:
return ActionSecurityRisk.UNKNOWN
else:
# Default to UNKNOWN if security_risk value is not recognized
logger.warning(f'Unrecognized security_risk value: {security_risk}')
return ActionSecurityRisk.UNKNOWN
Reference in New Issue View Git Blame Copy Permalink