fix(api-keys): preserve encrypted keys when saving providers (#1920)

* fix(api-keys): preserve encrypted keys when saving providers * test(api-keys): cover malformed raw key entries --------- Co-authored-by: Alexandre Teixeira <111787685+alteixeira20@users.noreply.github.com>
2026-06-19 11:15:24 -04:00 · 2026-06-11 20:23:54 +03:00
parent a79c0bd369
commit 2a4bba2b9e
2 changed files with 22 additions and 2 deletions
@@ -57,7 +57,12 @@ class APIKeyManager:
            # Legacy/wrong shape (e.g. a list) — .items() would raise. Ignore it.
            logger.warning("API keys file has unexpected shape (%s); ignoring", type(encrypted_keys).__name__)
            return {}
-        return encrypted_keys
+
+        return {
+            str(provider): key
+            for provider, key in encrypted_keys.items()
+            if isinstance(key, str)
+        }

    def save(self, provider: str, api_key: str):
        """Save encrypted API key to file.
@@ -82,4 +87,3 @@ class APIKeyManager:
            except (InvalidToken, ValueError) as e:
                logger.warning("Failed to decrypt API key for %s: %s", provider, e)
        return decrypted
-