Skip to content

fix(security): require explicit opt-in for Telegram bridge open chat access#699

Draft
ericksoa wants to merge 1 commit intomainfrom
fix/telegram-allowed-chats
Draft

fix(security): require explicit opt-in for Telegram bridge open chat access#699
ericksoa wants to merge 1 commit intomainfrom
fix/telegram-allowed-chats

Conversation

@ericksoa
Copy link
Contributor

@ericksoa ericksoa commented Mar 23, 2026

Summary

Draft — seeking feedback on approach before finalizing.

The Telegram bridge silently accepts messages from ALL chats when ALLOWED_CHAT_IDS is unset. This PR adds a visible warning and logs new chat IDs so users can build their allowlist, without breaking existing deployments.

Behavior:

  • No ALLOWED_CHAT_IDS, no ALLOW_ALL_CHATS: Bridge starts with a loud warning; logs each new chat ID + username so the user can copy-paste into ALLOWED_CHAT_IDS
  • ALLOW_ALL_CHATS=true: Brief warning, no per-message logging (explicit opt-in)
  • ALLOWED_CHAT_IDS set: Existing filtering, no warnings, no change

Open question

Should we hard-fail instead of warn? Current approach is non-breaking but the bridge still accepts all messages. The alternative (exit with error) is more secure but breaks every existing Telegram bridge deployment that doesn't have ALLOWED_CHAT_IDS set.

Test plan

  • 1 regression test verifies bridge references both ALLOWED_CHAT_IDS and ALLOW_ALL_CHATS
  • All tests pass
  • Manual: start bridge without env vars → verify warning + chat ID logging
  • Manual: start bridge with ALLOW_ALL_CHATS=true → verify brief warning only
  • Manual: start bridge with ALLOWED_CHAT_IDS → verify no warnings

@ericksoa
fix(security): require explicit opt-in for Telegram bridge open chat …
b25e151 
…access

When ALLOWED_CHAT_IDS is unset, the bridge now refuses to start unless
ALLOW_ALL_CHATS=true is explicitly set. This changes the default from
open-access to fail-closed, preventing arbitrary Telegram users from
driving the sandboxed agent without operator intent.

Addresses NVBUG 6007062.
@ericksoa ericksoa requested a review from jacobtomlinson March 23, 2026 05:04
@coderabbitai
Copy link

coderabbitai bot commented Mar 23, 2026

Important

Review skipped

Draft detected.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 939c3972-2e30-4c74-9547-8f8bc6f2d914

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

  • 🔍 Trigger review
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch fix/telegram-allowed-chats

Comment @coderabbitai help to get the list of available commands and usage tips.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jacobtomlinson jacobtomlinson Awaiting requested review from jacobtomlinson

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ericksoa