From adebfceeb00361cd4f91205a90c9bc684983e341 Mon Sep 17 00:00:00 2001
From: "google-labs-jules[bot]"
 <161369871+google-labs-jules[bot]@users.noreply.github.com>
Date: Tue, 28 Apr 2026 14:36:06 +0000
Subject: [PATCH] =?UTF-8?q?=F0=9F=94=92=20security:=20fix=20unhandled=20ex?=
 =?UTF-8?q?ception=20details=20exposure?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Replace detailed exception strings with generic error messages in
the health and generate endpoints to prevent information leakage.
Internal logs still contain full exception details for debugging.

Co-authored-by: LyAhn <27559362+LyAhn@users.noreply.github.com>
---
 server/vibevoice_server.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/server/vibevoice_server.py b/server/vibevoice_server.py
index e005c57..b60c3b8 100644
--- a/server/vibevoice_server.py
+++ b/server/vibevoice_server.py
@@ -192,7 +192,7 @@ def _load_model_sync() -> None:
 
         except Exception as exc:
             _model_status = "error"
-            _model_error = str(exc)
+            _model_error = "Internal server error during model initialization."
             logger.exception("Failed to initialise model: %s", exc)
 
 
@@ -355,7 +355,7 @@ async def generate(req: GenerateRequest, request: Request) -> StreamingResponse:
                 return
             except Exception as exc:
                 logger.exception("Generation failed: %s", exc)
-                yield _sse({"type": "error", "message": str(exc)})
+                yield _sse({"type": "error", "message": "Internal server error during generation."})
                 return
 
         elapsed = round(time.monotonic() - start, 1)