e43b13335e
Closes remaining MEDIUM/LOW audit findings not in v0.19.0 security wave.
M1 — marker file 0600 perms (unix)
config.rs::write() applies chmod 0o600 after write, cfg(unix) gated.
Test marker_file_has_0600_perms_on_unix asserts mode & 0o777 == 0o600.
L9 — ANSI-escape sanitization
New module display.rs (27 LOC) — sanitize_display(&str) replaces
ASCII < 0x20 OR == 0x7F with '?', leaves space + unicode alone.
Applied in status.rs + attach.rs to brain_name / brain_path /
attached_at / client_type / config_path / mcp_path before print.
Test status_sanitizes_control_chars_in_brain_name asserts
sanitize_display('evil\x1b[2Jpayload') → 'evil?[2Jpayload'.
L12 — manifest size bound
brain_validate.rs const MAX_MANIFEST_BYTES = 64 * 1024; metadata
check before read_to_string. New Error::ManifestTooLarge { size, max }
with thiserror Display impl. Test manifest_too_large_rejected
writes 100 KB manifest, asserts error + marker not written.
Dead-code cleanup:
- Error::NotAttached: #[allow(dead_code)] + comment (reserved for
future detach subcommand when no marker exists)
- config::has_client: #[allow(dead_code)] + comment (reserved for
future multi-brain support)
- mount.rs / detach.rs: dropped unused ClientAdapter import
brain.rs module doc-comment expanded — lists all v0.19 invariants:
path confinement, symlink reject, name regex, 64 KiB manifest cap,
schema v1; notes v2 (multi-platform) lands in v0.20.
Tests: 16 existing + 3 new = 19/19 pass.
cargo check -p keisei: zero warnings in keisei crate.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
73 lines
1.8 KiB
Rust
73 lines
1.8 KiB
Rust
//! keisei — exobrain attach/status CLI (v0.19 multi-client).
|
|
//!
|
|
//! Constructor Pattern: main.rs = clap parse + dispatch only. All
|
|
//! subcommand logic lives in sibling modules
|
|
//! (`attach.rs`, `status.rs`, `mount.rs`, `detach.rs`, `list.rs`).
|
|
|
|
mod adapter;
|
|
mod adapters;
|
|
mod attach;
|
|
mod brain;
|
|
mod brain_validate;
|
|
mod config;
|
|
mod detach;
|
|
mod display;
|
|
mod error;
|
|
mod fsx;
|
|
mod list;
|
|
mod mount;
|
|
mod paths;
|
|
mod status;
|
|
|
|
use clap::{Parser, Subcommand};
|
|
use std::path::PathBuf;
|
|
use std::process::ExitCode;
|
|
|
|
#[derive(Parser)]
|
|
#[command(
|
|
name = "keisei",
|
|
version,
|
|
about = "Exobrain CLI — mount a portable brain into any supported AI client"
|
|
)]
|
|
struct Cli {
|
|
#[command(subcommand)]
|
|
cmd: Cmd,
|
|
}
|
|
|
|
#[derive(Subcommand)]
|
|
enum Cmd {
|
|
/// Attach a brain to the single currently detected AI client.
|
|
Attach {
|
|
/// Path to the brain directory (must contain manifest.toml).
|
|
brain_path: PathBuf,
|
|
},
|
|
/// Attach a brain to EVERY detected AI client in one shot.
|
|
Mount {
|
|
/// Path to the brain directory (must contain manifest.toml).
|
|
brain_path: PathBuf,
|
|
},
|
|
/// Remove the brain from every client recorded in the marker.
|
|
Detach,
|
|
/// Show the currently attached brain + health checks.
|
|
Status,
|
|
/// List every registered adapter + whether it's detected here.
|
|
ListAdapters,
|
|
}
|
|
|
|
fn main() -> ExitCode {
|
|
let cli = Cli::parse();
|
|
let res = match cli.cmd {
|
|
Cmd::Attach { brain_path } => attach::run(&brain_path),
|
|
Cmd::Mount { brain_path } => mount::run(&brain_path),
|
|
Cmd::Detach => detach::run(),
|
|
Cmd::Status => status::run(),
|
|
Cmd::ListAdapters => list::run(),
|
|
};
|
|
match res {
|
|
Ok(()) => ExitCode::SUCCESS,
|
|
Err(e) => {
|
|
eprintln!("keisei: {e}");
|
|
ExitCode::from(1)
|
|
}
|
|
}
|
|
}
|