From 8a6d783dfb439c4369b1567f8cb5a60bf3d5a21e Mon Sep 17 00:00:00 2001
From: -LAN- <laipz8200@outlook.com>
Date: Mon, 14 Jul 2025 14:28:03 +0800
Subject: [PATCH] 
 docs(api/repositories/api_workflow_node_execution_repository.py): Add note on
 tenant isolation responsibility

Signed-off-by: -LAN- <laipz8200@outlook.com>
---
 api/repositories/api_workflow_node_execution_repository.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/api/repositories/api_workflow_node_execution_repository.py b/api/repositories/api_workflow_node_execution_repository.py
index 507787a997..00a2d1f87d 100644
--- a/api/repositories/api_workflow_node_execution_repository.py
+++ b/api/repositories/api_workflow_node_execution_repository.py
@@ -184,6 +184,10 @@ class DifyAPIWorkflowNodeExecutionRepository(WorkflowNodeExecutionRepository, Pr
         This method deletes specific executions by their IDs,
         typically used after backing up the data.
 
+        This method does not perform tenant isolation checks. The caller is responsible for ensuring proper
+        data isolation between tenants. When execution IDs come from untrusted sources (e.g., API requests),
+        additional tenant validation should be implemented to prevent unauthorized access.
+
         Args:
             execution_ids: List of execution IDs to delete