chore: Update CodeQL configuration and improve linting workflow

- Added a new CodeQL configuration file to ignore paths in the frontend build directory.
- Updated the CodeQL workflow to reference the new configuration file for better analysis.
- Enhanced the Ruff linting workflow by adding permissions and ensuring consistent formatting.

These changes improve the quality assurance processes by refining static analysis and linting configurations.

Author: ewlarson

.github/codeql/codeql-config.yml

@@ -0,0 +1,2 @@
+paths-ignore:
+  - frontend/build/**

.github/workflows/codeql.yml

@@ -73,6 +73,7 @@ jobs:
       with:
         languages: ${{ matrix.language }}
         build-mode: ${{ matrix.build-mode }}
+        config-file: ./.github/codeql/codeql-config.yml
         # If you wish to specify custom queries, you can do so here or in a config file.
         # By default, queries listed here will override any specified in a config file.
         # Prefix the list here with "+" to use these queries and those in the config file.

.github/workflows/ruff.yml

@@ -6,6 +6,9 @@ on:
   pull_request:
     branches: [ develop ]
 
+permissions:
+  contents: read
+
 jobs:
   lint:
     name: Run Ruff
@@ -26,4 +29,4 @@ jobs:
           
       - name: Run Ruff formatter
         run: |
-          make format
+          make format

backend/app/api/ogc/endpoints.py

@@ -135,7 +135,9 @@ async def get_item(
 
     try:
         resource_response = await search_service.get_resource(recordId)
-    except HTTPException:
+    except HTTPException as e:
+        if e.status_code >= 500:
+            raise HTTPException(status_code=500, detail="Internal server error") from e
         raise
     except Exception as e:
         logger.error(f"Error fetching resource {recordId} for OGC endpoint", exc_info=True)

backend/app/api/v1/admin.py

@@ -46,12 +46,12 @@ async def clear_cache(
     try:
         result = await service.clear_cache(cache_type)
         return create_response(result)
-    except CacheManagementError as e:
-        logger.error(f"Cache management error: {str(e)}")
-        return create_response({"error": str(e)}, status_code=500)
-    except Exception as e:
-        logger.error(f"Unexpected error clearing cache: {str(e)}")
-        return create_response({"error": f"Failed to clear cache: {str(e)}"}, status_code=500)
+    except CacheManagementError:
+        logger.error("Cache management error while clearing cache", exc_info=True)
+        return create_response({"error": "Failed to clear cache"}, status_code=500)
+    except Exception:
+        logger.error("Unexpected error clearing cache", exc_info=True)
+        return create_response({"error": "Failed to clear cache"}, status_code=500)
 
 
 @router.post("/reindex")
@@ -64,15 +64,11 @@ async def reindex(
         result = await service.reindex_resources()
         return create_response(result, callback)
     except ReindexingError as e:
-        logger.error(f"Reindexing error: {str(e)}")
-        raise HTTPException(
-            status_code=500, detail={"message": "Reindexing failed", "error": str(e)}
-        ) from e
+        logger.error("Reindexing error", exc_info=True)
+        raise HTTPException(status_code=500, detail={"message": "Reindexing failed"}) from e
     except Exception as e:
-        logger.error(f"Unexpected error during reindexing: {str(e)}")
-        raise HTTPException(
-            status_code=500, detail={"message": "Reindexing failed", "error": str(e)}
-        ) from e
+        logger.error("Unexpected error during reindexing", exc_info=True)
+        raise HTTPException(status_code=500, detail={"message": "Reindexing failed"}) from e
 
 
 @router.post("/resources/{id}/summarize")
@@ -97,14 +93,18 @@ async def summarize_resource(
         sanitized_response = sanitize_for_json(result)
         return create_response(sanitized_response, callback)
     except ResourceNotFoundError as e:
-        logger.error(f"Resource not found: {str(e)}")
-        raise HTTPException(status_code=404, detail=str(e)) from e
+        logger.error("Resource not found while summarizing %s", id, exc_info=True)
+        raise HTTPException(status_code=404, detail="Resource not found") from e
     except ResourceProcessingError as e:
-        logger.error(f"Resource processing error: {str(e)}")
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error("Resource processing error while summarizing %s", id, exc_info=True)
+        raise HTTPException(status_code=500, detail="Failed to start summary generation") from e
     except Exception as e:
-        logger.error(f"Unexpected error triggering summary generation for resource {id}: {str(e)}")
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error(
+            "Unexpected error triggering summary generation for resource %s",
+            id,
+            exc_info=True,
+        )
+        raise HTTPException(status_code=500, detail="Failed to start summary generation") from e
 
 
 @router.post("/resources/{id}/identify-geo-entities")
@@ -125,14 +125,27 @@ async def identify_geo_entities(
         result = await service.identify_geo_entities(id)
         return create_response(result, callback)
     except ResourceNotFoundError as e:
-        logger.error(f"Resource not found: {str(e)}")
-        raise HTTPException(status_code=404, detail=str(e)) from e
+        logger.error(
+            "Resource not found while identifying geographic entities for %s",
+            id,
+            exc_info=True,
+        )
+        raise HTTPException(status_code=404, detail="Resource not found") from e
     except ResourceProcessingError as e:
-        logger.error(f"Resource processing error: {str(e)}")
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error(
+            "Resource processing error while identifying geographic entities for %s",
+            id,
+            exc_info=True,
+        )
+        raise HTTPException(
+            status_code=500, detail="Failed to start geographic entity identification"
+        ) from e
     except Exception as e:
         logger.error(
-            f"Unexpected error triggering geographic entity identification "
-            f"for resource {id}: {str(e)}"
+            "Unexpected error triggering geographic entity identification for resource %s",
+            id,
+            exc_info=True,
         )
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        raise HTTPException(
+            status_code=500, detail="Failed to start geographic entity identification"
+        ) from e

backend/app/api/v1/endpoint_modules/admin.py

@@ -11,6 +11,7 @@
 
 from app.api.v1.auth import verify_credentials
 from app.api.v1.utils import create_response, sanitize_for_json
+from app.security_utils import require_safe_filename
 from app.services.admin_service import (
     AdminService,
     CacheManagementError,
@@ -116,12 +117,12 @@ async def clear_cache(
     try:
         result = await service.clear_cache(cache_type)
         return create_response(result)
-    except CacheManagementError as e:
-        logger.error(f"Cache management error: {str(e)}")
-        return create_response({"error": str(e)}, status_code=500)
-    except Exception as e:
-        logger.error(f"Unexpected error clearing cache: {str(e)}")
-        return create_response({"error": f"Failed to clear cache: {str(e)}"}, status_code=500)
+    except CacheManagementError:
+        logger.error("Cache management error while clearing cache", exc_info=True)
+        return create_response({"error": "Failed to clear cache"}, status_code=500)
+    except Exception:
+        logger.error("Unexpected error clearing cache", exc_info=True)
+        return create_response({"error": "Failed to clear cache"}, status_code=500)
 
 
 class CachePurgeRequest(BaseModel):
@@ -162,8 +163,8 @@ async def purge_cache(
     except HTTPException:
         raise
     except Exception as e:
-        logger.error(f"Unexpected error purging cache: {e}", exc_info=True)
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error("Unexpected error purging cache", exc_info=True)
+        raise HTTPException(status_code=500, detail="Failed to purge cache") from e
 
 
 @router.post("/reindex")
@@ -176,15 +177,11 @@ async def reindex(
         result = await service.reindex_resources()
         return create_response(result, callback)
     except ReindexingError as e:
-        logger.error(f"Reindexing error: {str(e)}")
-        raise HTTPException(
-            status_code=500, detail={"message": "Reindexing failed", "error": str(e)}
-        ) from e
+        logger.error("Reindexing error", exc_info=True)
+        raise HTTPException(status_code=500, detail={"message": "Reindexing failed"}) from e
     except Exception as e:
-        logger.error(f"Unexpected error during reindexing: {str(e)}")
-        raise HTTPException(
-            status_code=500, detail={"message": "Reindexing failed", "error": str(e)}
-        ) from e
+        logger.error("Unexpected error during reindexing", exc_info=True)
+        raise HTTPException(status_code=500, detail={"message": "Reindexing failed"}) from e
 
 
 @router.post("/resources/{id}/summarize")
@@ -209,14 +206,18 @@ async def summarize_resource(
         sanitized_response = sanitize_for_json(result)
         return create_response(sanitized_response, callback)
     except ResourceNotFoundError as e:
-        logger.error(f"Resource not found: {str(e)}")
-        raise HTTPException(status_code=404, detail=str(e)) from e
+        logger.error("Resource not found while summarizing %s", id, exc_info=True)
+        raise HTTPException(status_code=404, detail="Resource not found") from e
     except ResourceProcessingError as e:
-        logger.error(f"Resource processing error: {str(e)}")
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error("Resource processing error while summarizing %s", id, exc_info=True)
+        raise HTTPException(status_code=500, detail="Failed to start summary generation") from e
     except Exception as e:
-        logger.error(f"Unexpected error triggering summary generation for resource {id}: {str(e)}")
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error(
+            "Unexpected error triggering summary generation for resource %s",
+            id,
+            exc_info=True,
+        )
+        raise HTTPException(status_code=500, detail="Failed to start summary generation") from e
 
 
 @router.post("/resources/{id}/identify-geo-entities")
@@ -237,17 +238,30 @@ async def identify_geo_entities(
         result = await service.identify_geo_entities(id)
         return create_response(result, callback)
     except ResourceNotFoundError as e:
-        logger.error(f"Resource not found: {str(e)}")
-        raise HTTPException(status_code=404, detail=str(e)) from e
+        logger.error(
+            "Resource not found while identifying geographic entities for %s",
+            id,
+            exc_info=True,
+        )
+        raise HTTPException(status_code=404, detail="Resource not found") from e
     except ResourceProcessingError as e:
-        logger.error(f"Resource processing error: {str(e)}")
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error(
+            "Resource processing error while identifying geographic entities for %s",
+            id,
+            exc_info=True,
+        )
+        raise HTTPException(
+            status_code=500, detail="Failed to start geographic entity identification"
+        ) from e
     except Exception as e:
         logger.error(
-            f"Unexpected error triggering geographic entity identification "
-            f"for resource {id}: {str(e)}"
+            "Unexpected error triggering geographic entity identification for resource %s",
+            id,
+            exc_info=True,
         )
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        raise HTTPException(
+            status_code=500, detail="Failed to start geographic entity identification"
+        ) from e
 
 
 # API Key Management Endpoints
@@ -279,8 +293,8 @@ async def create_api_key(
     except HTTPException:
         raise
     except Exception as e:
-        logger.error(f"Error creating API key: {str(e)}")
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error("Error creating API key", exc_info=True)
+        raise HTTPException(status_code=500, detail="Failed to create API key") from e
 
 
 @router.get("/api-keys")
@@ -290,8 +304,8 @@ async def list_api_keys():
         keys = await api_key_service.list_api_keys()
         return create_response({"keys": keys})
     except Exception as e:
-        logger.error(f"Error listing API keys: {str(e)}")
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error("Error listing API keys", exc_info=True)
+        raise HTTPException(status_code=500, detail="Failed to list API keys") from e
 
 
 @router.patch("/api-keys/{key_id}")
@@ -329,8 +343,8 @@ async def update_api_key(
     except HTTPException:
         raise
     except Exception as e:
-        logger.error(f"Error updating API key: {str(e)}")
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error("Error updating API key", exc_info=True)
+        raise HTTPException(status_code=500, detail="Failed to update API key") from e
 
 
 @router.delete("/api-keys/{key_id}")
@@ -348,8 +362,8 @@ async def revoke_api_key(key_id: int):
     except HTTPException:
         raise
     except Exception as e:
-        logger.error(f"Error revoking API key: {str(e)}")
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error("Error revoking API key", exc_info=True)
+        raise HTTPException(status_code=500, detail="Failed to revoke API key") from e
 
 
 @router.get("/api-tiers")
@@ -359,8 +373,8 @@ async def list_api_tiers():
         tiers = await api_key_service.list_tiers()
         return create_response({"tiers": tiers})
     except Exception as e:
-        logger.error(f"Error listing API tiers: {str(e)}")
-        raise HTTPException(status_code=500, detail=str(e)) from e
+        logger.error("Error listing API tiers", exc_info=True)
+        raise HTTPException(status_code=500, detail="Failed to list API tiers") from e
 
 
 # --- OpenGeoMetadata (OGM) admin endpoints ---
@@ -818,20 +832,26 @@ async def download_ogm_dump_file(run_id: int, filename: str):
     if not run or not run.get("ogm_dump_dir"):
         raise HTTPException(status_code=404, detail="Dump not found for run")
 
+    try:
+        safe_filename = require_safe_filename(filename)
+    except ValueError as exc:
+        raise HTTPException(status_code=400, detail="Invalid filename") from exc
+
     dump_dir = Path(run["ogm_dump_dir"])
+    resolved_dump_dir = dump_dir.resolve()
     # Prevent path traversal
-    candidate = (dump_dir / filename).resolve()
-    if dump_dir.resolve() not in candidate.parents and candidate != dump_dir.resolve():
+    candidate = (resolved_dump_dir / safe_filename).resolve()
+    if resolved_dump_dir not in candidate.parents:
         raise HTTPException(status_code=400, detail="Invalid filename")
 
     if not candidate.exists() or not candidate.is_file():
         raise HTTPException(status_code=404, detail="File not found")
 
     # Basic content type mapping
     media_type = "application/octet-stream"
-    if filename.endswith(".json") or filename.endswith(".ndjson"):
+    if safe_filename.endswith(".json") or safe_filename.endswith(".ndjson"):
         media_type = "application/json"
-    elif filename.endswith(".parquet"):
+    elif safe_filename.endswith(".parquet"):
         media_type = "application/octet-stream"
 
-    return FileResponse(str(candidate), media_type=media_type, filename=filename)
+    return FileResponse(str(candidate), media_type=media_type, filename=safe_filename)

backend/app/api/v1/endpoint_modules/resources/citation.py

@@ -57,9 +57,9 @@ async def get_resource_citation(
         }
 
         return create_response(response_payload, callback)
-    except Exception as e:
-        logger.error(f"Error getting citation for resource {id}: {str(e)}", exc_info=True)
-        return JSONResponse(content={"error": str(e)}, status_code=500)
+    except Exception:
+        logger.error("Error getting citation for resource %s", id, exc_info=True)
+        return JSONResponse(content={"error": "Failed to get citation"}, status_code=500)
 
 
 @router.get("/resources/{id}/citation/json-ld")
@@ -81,9 +81,9 @@ async def get_resource_citation_json_ld(id: str):
         )
         ld = service.to_json_ld(id)
         return JSONResponse(content=ld, media_type="application/ld+json")
-    except Exception as e:
-        logger.error(f"Error getting JSON-LD for resource {id}: {str(e)}", exc_info=True)
-        return JSONResponse(content={"error": str(e)}, status_code=500)
+    except Exception:
+        logger.error("Error getting JSON-LD for resource %s", id, exc_info=True)
+        return JSONResponse(content={"error": "Failed to get citation metadata"}, status_code=500)
 
 
 @router.get("/resources/{id}/citation/ris")
@@ -109,9 +109,9 @@ async def get_resource_citation_ris(id: str):
             media_type="application/x-research-info-systems",
             headers={"Content-Disposition": f'attachment; filename="{id}.ris"'},
         )
-    except Exception as e:
-        logger.error(f"Error getting RIS for resource {id}: {str(e)}", exc_info=True)
-        return JSONResponse(content={"error": str(e)}, status_code=500)
+    except Exception:
+        logger.error("Error getting RIS for resource %s", id, exc_info=True)
+        return JSONResponse(content={"error": "Failed to get RIS citation"}, status_code=500)
 
 
 @router.get("/resources/{id}/citation/bibtex")
@@ -137,6 +137,6 @@ async def get_resource_citation_bibtex(id: str):
             media_type="application/x-bibtex",
             headers={"Content-Disposition": f'attachment; filename="{id}.bib"'},
         )
-    except Exception as e:
-        logger.error(f"Error getting BibTeX for resource {id}: {str(e)}", exc_info=True)
-        return JSONResponse(content={"error": str(e)}, status_code=500)
+    except Exception:
+        logger.error("Error getting BibTeX for resource %s", id, exc_info=True)
+        return JSONResponse(content={"error": "Failed to get BibTeX citation"}, status_code=500)