Andy 6c83790834 fix(monalisa): avoid leaking secrets and add worker safety ...

- Pass ML-Worker key via env/stdin instead of argv to reduce exposure in process listings/logs.

- Add a hard timeout to the ML-Worker subprocess call and convert timeouts into DecryptionFailed errors.

- Make ticket bytes decoding defensive: try UTF-8, fall back to ASCII (base64), otherwise raise a descriptive ValueError.

2026-02-07 19:24:15 -07:00

10 KiB

Raw Blame History

View Raw