Benjamin_Boenisch/breakpilot-compliance
1
0
Fork 0
Code Issues 24 Pull Requests Actions Packages Projects Releases Wiki Activity

Cap unbounded list endpoints with mandatory pagination #13

New Issue
Open
opened 2026-04-20 09:35:51 +00:00 by sharang · 0 comments
sharang commented 2026-04-20 09:35:51 +00:00
Owner
Copy Link
Copy Source

Problem

List endpoints return all matching records without a limit cap:

  • canonical_control_routes.py:276-293limit parameter is optional with no enforced maximum
  • Similar pattern across controls, obligations, VVT entries, and audit trail routes

A single query against a large tenant could return 100,000+ rows, causing memory exhaustion and timeouts.

Required Actions

  1. Add a shared PaginatedResponse base schema to compliance/schemas/pagination.py:
class PaginatedResponse(GenericModel, Generic[T]):
    items: List[T]
    total: int
    offset: int
    limit: int
  1. Update all list endpoints to use limit: int = Query(100, ge=1, le=1000) — default 100, hard cap 1000
  2. Return PaginatedResponse from every list endpoint
  3. Update frontend SDK client to handle paginated responses

Acceptance Criteria

  • No list endpoint returns more than 1000 records in a single response
  • All list responses include total, offset, limit metadata
  • Frontend handles total > limit case (shows load-more or page controls)
## Problem List endpoints return all matching records without a limit cap: - `canonical_control_routes.py:276-293` — `limit` parameter is optional with no enforced maximum - Similar pattern across controls, obligations, VVT entries, and audit trail routes A single query against a large tenant could return 100,000+ rows, causing memory exhaustion and timeouts. ## Required Actions 1. Add a shared `PaginatedResponse` base schema to `compliance/schemas/pagination.py`: ```python class PaginatedResponse(GenericModel, Generic[T]): items: List[T] total: int offset: int limit: int ``` 2. Update all list endpoints to use `limit: int = Query(100, ge=1, le=1000)` — default 100, hard cap 1000 3. Return `PaginatedResponse` from every list endpoint 4. Update frontend SDK client to handle paginated responses ## Acceptance Criteria - No list endpoint returns more than 1000 records in a single response - All list responses include `total`, `offset`, `limit` metadata - Frontend handles `total > limit` case (shows load-more or page controls)
sharang added this to the M2: Data Integrity & Reliability milestone 2026-04-20 09:35:51 +00:00
sharang added the severity: mediumdata-integrity labels 2026-04-20 09:35:51 +00:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
config
Env vars, secrets management, startup validation
 data-integrity
Transactions, indexes, pagination
 frontend
Next.js, client-side concerns
 observability
Logging, audit trails, health checks
 reliability
Error handling, retries, circuit breakers
 security
Auth, secrets, injection, tenant isolation
 severity: critical
System-level risk, data breach or full outage
 severity: high
Significant risk, must fix before go-live
 severity: medium
Important but not blocking go-live
 testing
Test coverage, integration tests
No Label data-integrity severity: medium
Milestone
No items
No Milestone M2: Data Integrity & Reliability
Projects
Clear projects
No project
Assignees
Clear assignees
sharang (Sharang Parnerkar) Benjamin_Boenisch
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Benjamin_Boenisch/breakpilot-compliance#13
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?