advanced-security
diff --git a/‎server/dist/codeql-development-mcp-server.js‎
Lines changed: 5 additions & 2 deletions b/‎server/dist/codeql-development-mcp-server.js‎
Lines changed: 5 additions & 2 deletions
@@ -64468,6 +64468,9 @@ var SUPPORTED_LANGUAGES = [
   "ruby",
   "swift"
 ];
+function sanitizeForInlineCode(value) {
+  return value.replace(/`/g, "'").replace(/\r?\n|\r/g, " ");
+}
 async function resolvePromptFilePath(filePath, workspaceRoot) {
   if (!filePath || filePath.trim() === "") {
     return {
@@ -64503,7 +64506,7 @@ async function resolvePromptFilePath(filePath, workspaceRoot) {
   } catch {
     return {
       resolvedPath: absolutePath,
-      warning: `\u26A0 **File path** \`${filePath}\` **does not exist.** Resolved to: \`${absolutePath}\``
+      warning: `\u26A0 **File path** \`${sanitizeForInlineCode(filePath)}\` **does not exist.** Resolved to: \`${sanitizeForInlineCode(absolutePath)}\``
     };
   }
   return { resolvedPath: absolutePath };
@@ -64599,7 +64602,7 @@ function formatValidationError(promptName, error2) {
     if (issue2.code === "invalid_enum_value" && "options" in issue2) {
       const opts = issue2.options.join(", ");
       lines.push(
-        `- **\`${field}\`**: received \`${String(issue2.received)}\` \u2014 must be one of: ${opts}`
+        `- **\`${field}\`**: received \`${sanitizeForInlineCode(String(issue2.received))}\` \u2014 must be one of: ${opts}`
       );
     } else if (issue2.code === "invalid_type") {
       lines.push(