Skip to content

Migrate to proper secret passing using OpenHands SDK pattern #6

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
rbren wants to merge 2 commits into from
Closed

Migrate to proper secret passing using OpenHands SDK pattern #6

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
56a9ebd
Migrate to proper secret passing using OpenHands SDK pattern
openhands-agent Nov 19, 2025
e9aeaad
Remove documentation and example files
openhands-agent Nov 19, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
16 changes: 9 additions & 7 deletions src/agents/base_agent.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -48,8 +48,8 @@ def clone_repository(self, repo_url: str, target_dir: str) -> bool:

return clone_result.exit_code == 0

def create_agent_conversation(self) -> tuple[Agent, Conversation]:
"""Create an agent and conversation instance."""
def create_agent_conversation(self, secrets: Optional[Dict[str, str]] = None) -> tuple[Agent, Conversation]:
"""Create an agent and conversation instance with optional secrets."""
agent = Agent(
llm=self.llm,
tools=get_default_tools(enable_browser=False),
Expand All @@ -61,13 +61,15 @@ def create_agent_conversation(self) -> tuple[Agent, Conversation]:
visualizer=None,
)

# Add secrets to the conversation if provided
if secrets:
conversation.update_secrets(secrets)

return agent, conversation

def setup_git_environment(self):
"""Set up git environment variables."""
github_token = os.getenv('GITHUB_TOKEN')
if github_token:
self.workspace.execute_command(f"export GITHUB_TOKEN={github_token}")
def get_github_token(self) -> Optional[str]:
"""Get GitHub token from environment if available."""
return os.getenv('GITHUB_TOKEN')

def cleanup_directory(self, directory: str):
"""Clean up a workspace directory."""
Expand Down
9 changes: 8 additions & 1 deletion src/agents/cve_scanner.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -47,7 +47,14 @@ def scan_repository(self, repo_url: str) -> List[Dict[str, Any]]:

# Create agent with default tools
print("🔍 CVE Scanner Status: Initializing AI agent")
agent, conversation = self.create_agent_conversation()

# Prepare secrets for the conversation
secrets = {}
github_token = self.get_github_token()
if github_token:
secrets["GITHUB_TOKEN"] = github_token

agent, conversation = self.create_agent_conversation(secrets if secrets else None)

# Send scanning instructions to the agent
scan_message = self.prompt_manager.get_scanner_main_prompt(
Expand Down
9 changes: 6 additions & 3 deletions src/agents/cve_solver.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -62,10 +62,13 @@ def solve_vulnerability(self, vulnerability: Dict[str, Any], repo_url: str, port
if activity_callback:
activity_callback("Initializing AI agent")

agent, conversation = self.create_agent_conversation()
# Prepare secrets for the conversation
secrets = {}
github_token = self.get_github_token()
if github_token:
secrets["GITHUB_TOKEN"] = github_token

# Set up environment variables for the agent
self.setup_git_environment()
agent, conversation = self.create_agent_conversation(secrets if secrets else None)

# Create fix instructions
fix_message = self.prompt_manager.get_solver_main_prompt(
Expand Down