npm - claude-flow-novice - Versions diffs - 2.10.6 → 2.10.7 - Mend

claude-flow-novice 2.10.6 → 2.10.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (18) hide show

package/.claude/hooks/cfn-invoke-security-validation.sh ADDED Viewed

@@ -0,0 +1,70 @@
+#!/bin/bash
+# Security Validation Hook for Docker Hybrid Routing
+set -euo pipefail
+# Validate secret management configurations
+validate_secret_management() {
+    local file_path="$1"
+    # Check for hardcoded secrets
+    if grep -qE '(sk-ant-|token-|api_key=)' "$file_path"; then
+        echo "❌ SECURITY RISK: Potential secret exposure in $file_path"
+        return 1
+    fi
+    # Check for proper environment variable naming
+    if grep -qE 'API_KEY=|SECRET=|TOKEN=' "$file_path"; then
+        echo "⚠️ NAMING RISK: Inconsistent secret variable names in $file_path"
+        return 2
+    fi
+    return 0
+}
+# Validate Docker network configurations
+validate_docker_network() {
+    local compose_file="$1"
+    # Check for overly permissive network configurations
+    if ! grep -qE 'driver_opts:\n\s*encrypted:\s*"true"' "$compose_file"; then
+        echo "❌ NETWORK RISK: Network encryption not enabled"
+        return 1
+    fi
+    if ! grep -qE 'driver:\s*overlay' "$compose_file"; then
+        echo "⚠️ NETWORK CONFIG: Recommended to use overlay network for better isolation"
+        return 2
+    fi
+    return 0
+}
+# Main validation function
+main() {
+    local file_path="$1"
+    local file_name=$(basename "$file_path")
+    local exit_code=0
+    echo "🔒 Running security validation for $file_name"
+    case "$file_name" in
+        docker-compose.yml|docker-compose.*.yml)
+            validate_docker_network "$file_path" || exit_code=$?
+            ;;
+        .env|*.env)
+            validate_secret_management "$file_path" || exit_code=$?
+            ;;
+    esac
+    if [ $exit_code -eq 0 ]; then
+        echo "✅ Security validation passed for $file_name"
+    else
+        echo "🚨 Security validation failed for $file_name (Error code: $exit_code)"
+    fi
+    return $exit_code
+}
+# Execute main validation
+main "$@"

package/.claude/skills/cfn-hybrid-routing/spawn-worker.sh CHANGED Viewed

@@ -1,44 +1,44 @@
-#!/usr/bin/env bash
-set -euo pipefail
-# Hybrid Routing Worker Spawner
-# Dynamically configures and launches routing workers
-CONFIG_PATH="$(dirname "$0")/config.json"
-# Load configuration
-SKILL_NAME=$(jq -r '.skill_name' "$CONFIG_PATH")
-PRIMARY_CHANNEL=$(jq -r '.routing_strategies.primary.type' "$CONFIG_PATH")
-SECONDARY_CHANNEL=$(jq -r '.routing_strategies.secondary.type' "$CONFIG_PATH")
-# Worker spawning function
-spawn_routing_worker() {
-    local channel_type="$1"
-    local worker_id="$2"
-    case "$channel_type" in
-        "redis-pubsub")
-            ./.claude/skills/cfn-redis-coordination/spawn-agent.sh \
-                --skill-id "$SKILL_NAME" \
-                --agent-id "routing-worker-$worker_id" \
-                --strategy "$channel_type"
-            ;;
-        "websocket")
-            ./.claude/skills/cfn-agent-spawning/spawn-agent.sh \
-                --skill-id "$SKILL_NAME" \
-                --agent-id "routing-worker-$worker_id" \
-                --strategy "$channel_type"
-            ;;
-        *)
-            echo "Unsupported channel type: $channel_type"
-            exit 1
-            ;;
-    esac
-}
-# Spawn primary and secondary workers
-spawn_routing_worker "$PRIMARY_CHANNEL" "primary"
-spawn_routing_worker "$SECONDARY_CHANNEL" "secondary"
-# Final status report
+#!/usr/bin/env bash
+set -euo pipefail
+# Hybrid Routing Worker Spawner
+# Dynamically configures and launches routing workers
+CONFIG_PATH="$(dirname "$0")/config.json"
+# Load configuration
+SKILL_NAME=$(jq -r '.skill_name' "$CONFIG_PATH")
+PRIMARY_CHANNEL=$(jq -r '.routing_strategies.primary.type' "$CONFIG_PATH")
+SECONDARY_CHANNEL=$(jq -r '.routing_strategies.secondary.type' "$CONFIG_PATH")
+# Worker spawning function
+spawn_routing_worker() {
+    local channel_type="$1"
+    local worker_id="$2"
+    case "$channel_type" in
+        "redis-pubsub")
+            ./.claude/skills/cfn-redis-coordination/spawn-agent.sh \
+                --skill-id "$SKILL_NAME" \
+                --agent-id "routing-worker-$worker_id" \
+                --strategy "$channel_type"
+            ;;
+        "websocket")
+            ./.claude/skills/cfn-agent-spawning/spawn-agent.sh \
+                --skill-id "$SKILL_NAME" \
+                --agent-id "routing-worker-$worker_id" \
+                --strategy "$channel_type"
+            ;;
+        *)
+            echo "Unsupported channel type: $channel_type"
+            exit 1
+            ;;
+    esac
+}
+# Spawn primary and secondary workers
+spawn_routing_worker "$PRIMARY_CHANNEL" "primary"
+spawn_routing_worker "$SECONDARY_CHANNEL" "secondary"
+# Final status report
 echo "Hybrid Routing Workers Spawned Successfully"