#786 HIGH: Approval tokens not invalidated when workflow completes
Description
EditTokens stored in DB without automatic invalidation on workflow completion. Stale tokens could be used maliciously after workflow ends. Location: engine/services/gateway_token_service.py:118-173. Fix: Add workflow completion trigger to delete associated approval tokens.
Comments
Loading comments...
Context
Loading context...
Audit History
View AllLoading audit history...