Merge pull request dubinc#805 from dubinc/fix-pangea-anthropic

Skip Pangea & Anthropic if API Keys are not defined

Author: steven-tey

apps/web/.env.example

@@ -106,4 +106,8 @@ ANTHROPIC_API_KEY=
 NEXT_PUBLIC_IS_DUB=
 
 # For cron jobs
-CRON_SECRET=
+CRON_SECRET=
+
+# Pangea - Retrieve reputation for a domain.
+# Get your Pange API Key here: https://pangea.cloud/docs/admin-guide/tokens/
+PANGEA_API_KEY=

apps/web/app/api/ai/completion/route.ts

@@ -26,6 +26,11 @@ export async function POST(req: NextRequest) {
   const { workspaceId } = searchParams;
   const workspace = await getWorkspaceViaEdge(workspaceId);
 
+  if (!anthropic) {
+    console.error("Anthropic is not configured. Skipping the request.");
+    return new Response(null, { status: 200 });
+  }
+
   if (!workspace) {
     return new Response("Workspace not found", { status: 404 });
   }

apps/web/app/api/ai/generate-support-title/route.ts

@@ -8,6 +8,11 @@ import { NextRequest } from "next/server";
 export const runtime = "edge";
 
 export async function POST(req: NextRequest) {
+  if (!anthropic) {
+    console.error("Anthropic is not configured. Skipping the request.");
+    return new Response(null, { status: 200 });
+  }
+
   try {
     const session = await getToken({
       req,

apps/web/lib/anthropic.ts

@@ -1,5 +1,5 @@
 import Anthropic from "@anthropic-ai/sdk";
 
-export const anthropic = new Anthropic({
-  apiKey: process.env.ANTHROPIC_API_KEY || "",
-});
+const apiKey = process.env.ANTHROPIC_API_KEY;
+
+export const anthropic = apiKey ? new Anthropic({ apiKey }) : null;

apps/web/lib/api/links/process-link.ts

@@ -323,35 +323,38 @@ async function maliciousLinkCheck(url: string) {
     return false;
   }
 
-  try {
-    const response = await getPangeaDomainIntel(domain);
+  // Check with Pangea for domain reputation
+  if (process.env.PANGEA_API_KEY) {
+    try {
+      const response = await getPangeaDomainIntel(domain);
 
-    const verdict = response.result.data[apexDomain].verdict;
-    console.log("Pangea verdict for domain", apexDomain, verdict);
+      const verdict = response.result.data[apexDomain].verdict;
+      console.log("Pangea verdict for domain", apexDomain, verdict);
 
-    if (verdict === "benign") {
-      await updateConfig({
-        key: "whitelistedDomains",
-        value: domain,
-      });
-      return false;
-    } else if (verdict === "malicious" || verdict === "suspicious") {
-      await Promise.all([
-        updateConfig({
-          key: "domains",
+      if (verdict === "benign") {
+        await updateConfig({
+          key: "whitelistedDomains",
           value: domain,
-        }),
-        log({
-          message: `Suspicious link detected via Pangea → ${url}`,
-          type: "links",
-          mention: true,
-        }),
-      ]);
+        });
+        return false;
+      } else if (verdict === "malicious" || verdict === "suspicious") {
+        await Promise.all([
+          updateConfig({
+            key: "domains",
+            value: domain,
+          }),
+          log({
+            message: `Suspicious link detected via Pangea → ${url}`,
+            type: "links",
+            mention: true,
+          }),
+        ]);
 
-      return true;
+        return true;
+      }
+    } catch (e) {
+      console.error("Error checking domain with Pangea", e);
     }
-  } catch (e) {
-    console.error("Error checking domain with Pangea", e);
   }
 
   return false;