[HIGH] Information disclosure through metrics

## Security Issue
Metrics expose sensitive information including absolute file paths, session IDs, and internal architecture details.

## Exposed Data
- Full database paths: `/Users/emilianoperez/Projects/...`
- Session IDs (even truncated)
- Agent names revealing internal logic
- Error details with stack traces

## Location
Multiple locations in `prometheus_exporter.py`

## Fix Tasks
1. **Hash sensitive identifiers**
```python
import hashlib
def hash_session_id(session_id):
    return hashlib.sha256(session_id.encode()).hexdigest()[:8]
```

2. **Remove absolute paths**
```python
database_info.info({
    'database': 'agent_workflow.db',  # Not full path
    'total_invocations': str(total_invocations),
})
```

3. **Add metric filtering**
```python
SENSITIVE_LABELS = ['file_path', 'session_id', 'error_details']

def sanitize_metric_value(label, value):
    if label in SENSITIVE_LABELS:
        return hash_value(value)
    return value
```

## Effort: 2 hours

## References
- PR #1
- Related to #6 (Authentication)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[HIGH] Information disclosure through metrics #7

Security Issue

Exposed Data

Location

Fix Tasks

Effort: 2 hours

References

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

[HIGH] Information disclosure through metrics #7

Description

Security Issue

Exposed Data

Location

Fix Tasks

Effort: 2 hours

References

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions