KeiSeiKit-1.0

keisei/KeiSeiKit-1.0

Fork 0

Commit graph

Author	SHA1	Message	Date
Parfii-bot	f12eb9f83c	fix(v0.21.1): wave-audit consolidated — 5 critic HIGH + 2 security HIGH + 3 polish Closes 10 audit findings from 4-agent wave (critic + security + architect + validator) on v0.21.0. CRITIC HIGH (5): H1 s3_cloud::commit() was listing with delimiter='/' — nested writes silently dropped from manifest hash. Added list_recursive() (no delimiter), filter manifest-.json from hash input. H2 S3Cfg access_key_env + secret_key_env were advertised in TOML but never read. Wired via resolve_explicit_creds() with aws-credential-types. Partial-set or empty-resolve → error. H3 display::sanitize_display missing in detach.rs + mount.rs (regression of v0.19.2 L9 ANSI injection fix). Applied at 8 print sites. 2 new integration tests. H4 adapters/jsonmcp.rs RESTORED (was lost in earlier merge). 107 LOC shared module: load_json_or_empty / upsert_under_key / remove_under_key / persist. claude_code 163→105, cursor 165→106, zed 178→114. Unified error handling via ConfigParseError. H5 ENV_LOCK shared across kei-store tests. New test_env.rs (24 LOC) exposed under cfg(any(test, feature='s3')). github.rs + s3_cloud/tests.rs + s3_smoke.rs all use shared mutex. Fixes parallel-test race on KEI_STORE_S3_ENDPOINT. SECURITY HIGH (2): SEC-H1 scripts/install-actionlint.sh — added sha256 verify (shasum/sha256sum) before extract. ACTIONLINT_SHA256_OVERRIDE env var for CI injection. Per-platform constants marked [UNVERIFIED: SKIP] pending live checksums.txt fetch (agent had no WebFetch this session — user follow-up: paste from https://github.com/rhysd/actionlint/releases/download/v1.7.12/checksums.txt). SEC-H2 S3 SSRF/IMDS guard. validate_endpoint() rejects: loopback (127/8, ::1, localhost), link-local (169.254/16, fe80::/10), metadata hostnames (google/azure). Override via KEI_STORE_S3_ALLOW_INTERNAL=1. HTTP rejected unless KEI_STORE_S3_ALLOW_INSECURE=1. Custom endpoint now REQUIRES explicit creds (no IMDS chain leak via third-party endpoint). 4 reject + 3 accept tests pass. POLISH (3): D1 docs/USB-BRAIN-GUIDE.md — ⚠️ WARNING block under Prerequisites: exFAT/FAT32 NOT safe for multi-client attach (SQLite WAL needs shared-mem mmap). Use ONE client at a time on those FSes. New Troubleshooting entry 'SQLite corruption on mount-attach'. D2 '~5 MB release binary growth' now labelled [estimate, E5 — not yet measured] in CHANGELOG.md + s3_cloud/mod.rs header. D3 scripts/validate-workflow-shas.sh exits 2 (not 0) when UNVERIFIED_COUNT > 0 and GITHUB_TOKEN absent. Distinguishes 'network denied' from 'all good'. REAL VERIFICATION (pasted by agent): cargo check -p keisei -p kei-store: Finished (clean) cargo test -p keisei --release: 30 passed 0 failed cargo test -p kei-store --release: 10 + 9 passed (default features) cargo test -p kei-store --features s3 --release: 31 + 9 + 6 = 46 passed (with s3) bash -n scripts/.sh: OK regen-counts.sh --check: no drift Constructor Pattern: largest new src 200 LOC (s3_cloud/mod.rs, at limit). jsonmcp.rs 107 LOC. test_env.rs 24 LOC. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-04-22 20:03:17 +08:00
Parfii-bot	2b3ba50ccb	docs(v0.21): .dockerignore + USB brain step-by-step guide .dockerignore — trim Docker build context (was trying to pack 2.6 GB target/ + 6 GB .claude/worktrees/ + 212 MB node_modules/ on 2026-04-22, causing daemon I/O error). Excludes Rust target, TS node_modules/dist/.turbo, agent worktrees, .git, IDE files, logs. Essential before any tests/battle/* docker build. docs/USB-BRAIN-GUIDE.md — 11-step recipe for the physical-USB exobrain workflow: 1-4. Prepare + download 5 platform binaries + verify sha256 5-6. keisei attach --scope=user → verify in Claude Code 7. keisei mount for multi-client fan-out 8. --scope=project for per-repo brains 9-10. status + detach cleanup 11. safe eject Plus Troubleshooting section (7 common errors with fixes), plus What-this-tests-end-to-end checklist (6 v0.21 features exercised). Target audience: first-time user of v0.21 exobrain feature on macOS (Linux adaptation notes inline). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-04-22 18:47:12 +08:00

Author

SHA1

Message

Date

Parfii-bot

f12eb9f83c

fix(v0.21.1): wave-audit consolidated — 5 critic HIGH + 2 security HIGH + 3 polish

Closes 10 audit findings from 4-agent wave (critic + security +
architect + validator) on v0.21.0.

CRITIC HIGH (5):
  H1 s3_cloud::commit() was listing with delimiter='/' — nested
     writes silently dropped from manifest hash. Added
     list_recursive() (no delimiter), filter manifest-*.json from
     hash input.
  H2 S3Cfg access_key_env + secret_key_env were advertised in TOML
     but never read. Wired via resolve_explicit_creds() with
     aws-credential-types. Partial-set or empty-resolve → error.
  H3 display::sanitize_display missing in detach.rs + mount.rs
     (regression of v0.19.2 L9 ANSI injection fix). Applied at 8
     print sites. 2 new integration tests.
  H4 adapters/jsonmcp.rs RESTORED (was lost in earlier merge).
     107 LOC shared module: load_json_or_empty / upsert_under_key /
     remove_under_key / persist. claude_code 163→105, cursor 165→106,
     zed 178→114. Unified error handling via ConfigParseError.
  H5 ENV_LOCK shared across kei-store tests. New test_env.rs (24 LOC)
     exposed under cfg(any(test, feature='s3')). github.rs +
     s3_cloud/tests.rs + s3_smoke.rs all use shared mutex. Fixes
     parallel-test race on KEI_STORE_S3_ENDPOINT.

SECURITY HIGH (2):
  SEC-H1 scripts/install-actionlint.sh — added sha256 verify
     (shasum/sha256sum) before extract. ACTIONLINT_SHA256_OVERRIDE
     env var for CI injection. Per-platform constants marked
     [UNVERIFIED: SKIP] pending live checksums.txt fetch (agent had
     no WebFetch this session — user follow-up: paste from
     https://github.com/rhysd/actionlint/releases/download/v1.7.12/checksums.txt).
  SEC-H2 S3 SSRF/IMDS guard. validate_endpoint() rejects:
     loopback (127/8, ::1, localhost), link-local (169.254/16,
     fe80::/10), metadata hostnames (google/azure). Override via
     KEI_STORE_S3_ALLOW_INTERNAL=1. HTTP rejected unless
     KEI_STORE_S3_ALLOW_INSECURE=1. Custom endpoint now REQUIRES
     explicit creds (no IMDS chain leak via third-party endpoint).
     4 reject + 3 accept tests pass.

POLISH (3):
  D1 docs/USB-BRAIN-GUIDE.md — ⚠️ WARNING block under Prerequisites:
     exFAT/FAT32 NOT safe for multi-client attach (SQLite WAL needs
     shared-mem mmap). Use ONE client at a time on those FSes.
     New Troubleshooting entry 'SQLite corruption on mount-attach'.
  D2 '~5 MB release binary growth' now labelled [estimate, E5 —
     not yet measured] in CHANGELOG.md + s3_cloud/mod.rs header.
  D3 scripts/validate-workflow-shas.sh exits 2 (not 0) when
     UNVERIFIED_COUNT > 0 and GITHUB_TOKEN absent. Distinguishes
     'network denied' from 'all good'.

REAL VERIFICATION (pasted by agent):
  cargo check -p keisei -p kei-store: Finished (clean)
  cargo test -p keisei --release: 30 passed 0 failed
  cargo test -p kei-store --release: 10 + 9 passed (default features)
  cargo test -p kei-store --features s3 --release:
    31 + 9 + 6 = 46 passed (with s3)
  bash -n scripts/*.sh: OK
  regen-counts.sh --check: no drift

Constructor Pattern: largest new src 200 LOC (s3_cloud/mod.rs, at
limit). jsonmcp.rs 107 LOC. test_env.rs 24 LOC.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-22 20:03:17 +08:00

Parfii-bot

2b3ba50ccb

docs(v0.21): .dockerignore + USB brain step-by-step guide

.dockerignore — trim Docker build context (was trying to pack
2.6 GB target/ + 6 GB .claude/worktrees/ + 212 MB node_modules/
on 2026-04-22, causing daemon I/O error). Excludes Rust target,
TS node_modules/dist/.turbo, agent worktrees, .git, IDE files,
logs. Essential before any tests/battle/* docker build.

docs/USB-BRAIN-GUIDE.md — 11-step recipe for the physical-USB
exobrain workflow:
  1-4. Prepare + download 5 platform binaries + verify sha256
  5-6. keisei attach --scope=user → verify in Claude Code
  7.   keisei mount for multi-client fan-out
  8.   --scope=project for per-repo brains
  9-10. status + detach cleanup
  11.  safe eject
Plus Troubleshooting section (7 common errors with fixes),
plus What-this-tests-end-to-end checklist (6 v0.21 features
exercised).

Target audience: first-time user of v0.21 exobrain feature on
macOS (Linux adaptation notes inline).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-22 18:47:12 +08:00

2 commits