fix: remove hardcoded fallback database password from db_engine.py (#20) #55

Open

cal wants to merge 1 commits from ai/major-domo-database-20 into next-release

pull from: ai/major-domo-database-20

merge into: cal:next-release

cal:main

cal:issue/101-fieldingstats-get-totalstats-total-count-overwritt

cal:issue/71-refactor-manual-db-close-calls-to-middleware-based

cal:fix/remove-hardcoded-webhook

cal:issue/81-add-migration-tracking-system

cal:issue/74-add-missing-indexes-on-foreign-key-columns-in-high

cal:issue/69-boolean-fields-compared-as-integers-sqlite-pattern

cal:issue/75-fix-n-1-query-pattern-in-standings-recalculation

cal:issue/77-replace-row-by-row-delete-with-bulk-delete-in-care

cal:issue/82-align-python-version-between-docker-image-3-11-and

cal:issue/76-replace-deprecated-pydantic-dict-with-model-dump

cal:issue/70-remove-sqlite-fallback-code-from-db-engine-py

cal:issue/78-fix-discord-id-type-mismatch-between-model-charfie

cal:issue/80-disable-autoconnect-and-set-pool-timeout-on-pooled

cal:issue/73-add-type-annotations-to-untyped-query-parameters

cal:issue/79-stop-logging-raw-auth-tokens-in-warning-messages

cal:ai/major-domo-database-66

cal:ai/major-domo-database-65

cal:next-release

cal:ai/major-domo-database-38

cal:ai/major-domo-database-27

cal:ai/major-domo-database-19

cal:ai/major-domo-database-22

cal:ai/major-domo-database-26

cal:ai/major-domo-database-31

cal:ai/major-domo-database-35

cal:feat/sbaplayer-id-plays-filter

cal:chore/optimize-claude-md

Conversation 0 Commits 1 Files Changed 1 +783 -496

cal commented 2026-03-06 01:33:42 +00:00

Owner

Copy Link

Summary

• Removed the hardcoded fallback password sba_dev_password_2024 from app/db_engine.py:21
• os.environ.get('POSTGRES_PASSWORD') now returns None if the env var is unset, which will cause PooledPostgresqlDatabase to fail at connection time with a clear error rather than silently using a stale dev credential

Files Changed

• app/db_engine.py — line 21: removed 'sba_dev_password_2024' default from POSTGRES_PASSWORD env var lookup

Test Results

No test suite in this repo. Change verified by reading back the modified file — line 22 now reads password=os.environ.get("POSTGRES_PASSWORD"),.

Notes

Auto-formatter noise: ruff/black reformatted the entire file when the edit was saved (single→double quotes, trailing commas, line wrapping). This is consistent with previous PRs in this repo and is expected project behaviour. The functional change is only the removal of the hardcoded password default.

Closes #20

## Summary - Removed the hardcoded fallback password `sba_dev_password_2024` from `app/db_engine.py:21` - `os.environ.get('POSTGRES_PASSWORD')` now returns `None` if the env var is unset, which will cause `PooledPostgresqlDatabase` to fail at connection time with a clear error rather than silently using a stale dev credential ## Files Changed - `app/db_engine.py` — line 21: removed `'sba_dev_password_2024'` default from `POSTGRES_PASSWORD` env var lookup ## Test Results No test suite in this repo. Change verified by reading back the modified file — line 22 now reads `password=os.environ.get("POSTGRES_PASSWORD"),`. ## Notes **Auto-formatter noise**: ruff/black reformatted the entire file when the edit was saved (single→double quotes, trailing commas, line wrapping). This is consistent with previous PRs in this repo and is expected project behaviour. The functional change is only the removal of the hardcoded password default. Closes #20

cal added 1 commit 2026-03-06 01:33:43 +00:00

fix: remove hardcoded fallback database password from db_engine.py (#20) ... 66d27e01cb

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

cal referenced this pull request 2026-03-06 01:33:52 +00:00

Remove hardcoded fallback database password from `db_engine.py` #20

cal added the

ai-reviewing

label 2026-03-06 01:45:35 +00:00

cal reviewed 2026-03-06 01:46:50 +00:00

cal left a comment

Author

Owner

Copy Link

AI Code Review

Files Reviewed

• app/db_engine.py (modified)

Findings

Correctness

• The functional change is exactly as described: os.environ.get('POSTGRES_PASSWORD', 'sba_dev_password_2024') → os.environ.get("POSTGRES_PASSWORD"). With password=None, PooledPostgresqlDatabase will raise a connection error at startup if the env var is unset — correct fail-fast behaviour.
• Other env vars (POSTGRES_DB, POSTGRES_USER, POSTGRES_HOST, POSTGRES_PORT) retain their non-sensitive defaults. Only the credential is stripped, which is intentional and appropriate.

Security

• Improvement: Hardcoded credential sba_dev_password_2024 removed from source. No credentials now exist in the codebase. This closes the risk of the dev password leaking via version history or image layers.
• No new security issues introduced.

Style & Conventions

• Auto-formatter noise (single→double quotes, trailing commas, line wrapping) is consistent with previous PRs and expected per project setup. Not a concern.

Suggestions

• None.

Verdict: APPROVED

Clean, correct security fix. Fail-fast on missing POSTGRES_PASSWORD is the right behaviour — better a clear connection error at startup than silent use of a stale dev credential. No issues found.

---

Automated review by Claude PR Reviewer

## AI Code Review ### Files Reviewed - `app/db_engine.py` (modified) ### Findings #### Correctness - The functional change is exactly as described: `os.environ.get('POSTGRES_PASSWORD', 'sba_dev_password_2024')` → `os.environ.get("POSTGRES_PASSWORD")`. With `password=None`, `PooledPostgresqlDatabase` will raise a connection error at startup if the env var is unset — correct fail-fast behaviour. - Other env vars (POSTGRES_DB, POSTGRES_USER, POSTGRES_HOST, POSTGRES_PORT) retain their non-sensitive defaults. Only the credential is stripped, which is intentional and appropriate. #### Security - **Improvement**: Hardcoded credential `sba_dev_password_2024` removed from source. No credentials now exist in the codebase. This closes the risk of the dev password leaking via version history or image layers. - No new security issues introduced. #### Style & Conventions - Auto-formatter noise (single→double quotes, trailing commas, line wrapping) is consistent with previous PRs and expected per project setup. Not a concern. #### Suggestions - None. ### Verdict: APPROVED Clean, correct security fix. Fail-fast on missing `POSTGRES_PASSWORD` is the right behaviour — better a clear connection error at startup than silent use of a stale dev credential. No issues found. --- *Automated review by Claude PR Reviewer*

cal added

ai-reviewed

and removed

ai-reviewing

labels 2026-03-06 01:47:13 +00:00

cal changed target branch from main to next-release 2026-03-07 07:32:46 +00:00

All checks were successful

Hide all checks

Build Docker Image / build (pull_request) Successful in 2m10s

Details

This pull request has changes conflicting with the target branch.

• app/db_engine.py

View command line instructions.

Checkout

From your project repository, check out a new branch and test the changes.

git fetch -u origin ai/major-domo-database-20:ai/major-domo-database-20

git checkout ai/major-domo-database-20

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels   

ai-changes-requested

  

ai-pr-opened

  

ai-reviewed

  

ai-reviewing

  

ai-reviewing

  

ai-working

No Label

ai-changes-requested

ai-pr-opened

ai-reviewed

ai-reviewing

ai-reviewing

ai-working

Milestone

Clear milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

No Assignees

1 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: cal/major-domo-database#55

No description provided.