Potential fix for code scanning alert no. 132: Log entries created from user input

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

Author: ericcurtin

pkg/ollama/handler.go

@@ -448,7 +448,10 @@ func (h *Handler) unloadModel(ctx context.Context, w http.ResponseWriter, modelN
 		return
 	}
 
-	h.log.Infof("unloadModel: sending POST /engines/unload with body: %s", string(reqBody))
+	// Sanitize the user-provided request body before logging to avoid log injection
+	safeReqBody := strings.ReplaceAll(string(reqBody), "\n", "")
+	safeReqBody = strings.ReplaceAll(safeReqBody, "\r", "")
+	h.log.Infof("unloadModel: sending POST /engines/unload with body: %s", safeReqBody)
 
 	// Create a new request to the scheduler
 	newReq, err := http.NewRequestWithContext(ctx, "POST", "/engines/unload", strings.NewReader(string(reqBody)))