fix(googlechat): inherit shared defaults for multi-account webhook auth

[Takhoffman]

Summary

• make Google Chat account resolution inherit shared values from channels.googlechat.accounts.default for named accounts
• preserve precedence so top-level channel config and per-account config still override inherited defaults
• add regression tests covering inherited defaults and override precedence

Why

Fixes a regression where multi-account Google Chat setups can stop processing inbound webhook events when shared audience/webhook settings live under accounts.default.

Fixes #38369

Verification

• pnpm install --frozen-lockfile
• pnpm build
• pnpm check
• pnpm test:macmini

[aisle-research-bot]

🔒 Aisle Security Analysis

We found 1 potential security issue(s) in this PR:

#	Severity	Title
1	🟡 Medium	Named Google Chat accounts inherit access-control settings from accounts.default (policy/allowlists)

---

1. 🟡 Named Google Chat accounts inherit access-control settings from accounts.default (policy/allowlists)

Property	Value
Severity	Medium
CWE	CWE-284
Location	extensions/googlechat/src/accounts.ts:74-89

Description

mergeGoogleChatAccountConfig now merges most of channels.googlechat.accounts.default into every non-default account. While intended to share webhook/audience defaults, the implementation inherits all remaining fields, including security-relevant access-control settings (DM/group policies and allowlists).

Impact in multi-account deployments:

• A named account that previously fell back to safe defaults (e.g., dm.policy defaulting to "pairing") will now silently inherit accounts.default.dm / groupPolicy / allowlists.
• If accounts.default is configured more permissively (e.g., dm.policy: "open" or dm.allowFrom: ["*"]), then every named account without an explicit override becomes equally permissive, potentially allowing unauthorized Google Chat users/spaces to trigger automations/commands on those accounts.

Vulnerable code:

const {
  enabled: _ignoredEnabled,
  dangerouslyAllowNameMatching: _ignoredDangerouslyAllowNameMatching,
  serviceAccount: _ignoredServiceAccount,
  serviceAccountRef: _ignoredServiceAccountRef,
  serviceAccountFile: _ignoredServiceAccountFile,
  ...defaultAccountShared
} = defaultAccountConfig;

return { ...defaultAccountShared, ...base, ...account } as GoogleChatAccountConfig;

This is security-sensitive because account.config is later used to enforce inbound access policy (DM/group allowlists, mention-gating, etc.), so inherited permissive defaults change the authorization behavior of other accounts.

Recommendation

Limit what is inherited from accounts.default to an explicit allowlist of fields that are safe/intended to be shared (e.g., webhook/audience routing fields), rather than inheriting almost everything.

For example:

const defaultAccountConfig = resolveAccountConfig(cfg, DEFAULT_ACCOUNT_ID) ?? {};
const sharedFromDefault: Partial<GoogleChatAccountConfig> = {
  audienceType: defaultAccountConfig.audienceType,
  audience: defaultAccountConfig.audience,
  webhookPath: defaultAccountConfig.webhookPath,
  webhookUrl: defaultAccountConfig.webhookUrl,
  ​// optionally: botUser if it is truly shared
};

return { ...sharedFromDefault, ...base, ...account } as GoogleChatAccountConfig;

Alternatively, if broader inheritance is desired, explicitly exclude access-control and policy keys (e.g., dm, dms, groupPolicy, groupAllowFrom, groups, requireMention, allowBots, etc.) so named accounts keep their own safe defaults unless configured.

---

Analyzed PR: #38492 at commit 5592999

_{Last updated on: 2026-03-07T03:54:25Z}

[greptile-apps]

Greptile Summary

This PR fixes a regression in multi-account Google Chat webhook authentication by making mergeGoogleChatAccountConfig inherit shared fields from accounts.default for named accounts. The new merge order — { ...defaultAccountConfig, ...base, ...account } — correctly gives accounts.default the lowest priority while still allowing top-level and per-account values to override it.

• Core fix is sound: named accounts can now inherit shared audience, audienceType, and webhookPath from accounts.default without duplicating those fields, which matches the stated regression scenario.
• Precedence is correct: the two regression tests confirm that top-level channel config beats accounts.default, and per-account config beats both — consistent with the documented intent.
• enabled inheritance is a footgun: because the inheritance is unconditional, setting enabled: false inside accounts.default (e.g. to disable the anonymous/default account) will silently disable every named account too. This was not possible before the change. The fix would be to strip lifecycle-only fields (enabled, name) from the inherited defaults before merging, or at minimum to document this behavior.
• Minor inefficiency: when resolving the default account itself, resolveAccountConfig is called twice with DEFAULT_ACCOUNT_ID; the result stored in account is never used in that branch.

Confidence Score: 3/5

• Safe to merge for the primary use case, but the unconditional inheritance of enabled: false from accounts.default introduces a subtle regression risk for users who disable just the default account.
• The fix correctly addresses the stated regression and the precedence logic is sound. However, the enabled field inheritance side-effect is a real behavioral change that could silently disable all named accounts in edge-case configurations, warranting attention before merging.
• extensions/googlechat/src/accounts.ts — specifically the enabled field propagation in mergeGoogleChatAccountConfig

_{Last reviewed commit: 3a621e6}

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 3a621e6d7e

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: eb75ca6332

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 62744e9b3e

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".