MikeWatch Forks of the Mike legal-AI codebase, distilled for legal-tech readers
Home · WilliamACLove/mike-harvey-competition-legal-research- · this thread

WilliamACLove closes three paths to other tenants' data

Three separate bugs let one client's chats, documents and folder layout leak into another client's view. This PR shuts all three.

securitymulti-tenant

The big one is a database-permissions oversight. Only the user-profile table had row-level access controls turned on. Every other table - projects, documents, chats, the AI-extracted excerpt grids, even folders - was reachable from the public web key that ships inside the browser app. In practice, anyone on the internet could query chat history and extracted excerpts across every tenant. Switching the controls on for the rest is enough to lock outsiders out without breaking legitimate server reads.

The other two are quieter. The endpoints that ask the model to pull fields out of a document stack were accepting any document ID supplied - including ones belonging to another tenant. And folder-move handlers weren't checking that the folder lived in the project being edited. Both now verify ownership before any work happens.

So what If you're running a Mike fork for a firm or a client base, this is the failure mode you can't ship - and a useful checklist of what to audit in your own deployment.

View this fork on GitHub →

Spotted something wrong? Or know the PR text has fresher detail than the writeup above?