From e673dfe61cd9eb40a04299751ef0f9239c277aab Mon Sep 17 00:00:00 2001
From: Kynan Ware <47394200+BagToad@users.noreply.github.com>
Date: Tue, 23 Sep 2025 09:28:08 -0600
Subject: [PATCH] Add TODO for better integer handling in
 GetPullRequestDatabaseID

---
 pkg/cmd/agent-task/capi/sessions.go | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/pkg/cmd/agent-task/capi/sessions.go b/pkg/cmd/agent-task/capi/sessions.go
index 4d109ea26..5b3342b56 100644
--- a/pkg/cmd/agent-task/capi/sessions.go
+++ b/pkg/cmd/agent-task/capi/sessions.go
@@ -412,6 +412,13 @@ func (c *CAPIClient) hydrateSessionPullRequestsAndUsers(sessions []session) ([]*
 
 // GetPullRequestDatabaseID retrieves the database ID and URL of a pull request given its number in a repository.
 func (c *CAPIClient) GetPullRequestDatabaseID(ctx context.Context, hostname string, owner string, repo string, number int) (int64, string, error) {
+	// TODO: better int handling so we don't need to do bounds checks
+	// to both ensure a panic is impossible and that we do not trigger
+	// CodeQL alerts.
+	if number <= 0 || number > math.MaxInt32 {
+		return 0, "", fmt.Errorf("pull request number %d out of bounds", number)
+	}
+
 	var resp struct {
 		Repository struct {
 			PullRequest struct {