npm - ndomo - Versions diffs - 0.1.0 - Mend

ndomo 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (247) hide show

package/.bun-version +1 -0
package/.dockerignore +79 -0
package/.editorconfig +18 -0
package/.env.example +19 -0
package/.github/CODEOWNERS +8 -0
package/.github/ISSUE_TEMPLATE/bug_report.yml +62 -0
package/.github/ISSUE_TEMPLATE/config.yml +2 -0
package/.github/ISSUE_TEMPLATE/feature_request.yml +34 -0
package/.github/dependabot.yml +36 -0
package/.github/pull_request_template.md +24 -0
package/.github/release.yml +30 -0
package/.github/workflows/gitleaks.yml +28 -0
package/.github/workflows/release-please.yml +27 -0
package/.github/workflows/smoke.yml +29 -0
package/.husky/commit-msg +1 -0
package/CHANGELOG.md +114 -0
package/Dockerfile +32 -0
package/README.es.md +174 -0
package/README.md +187 -0
package/agents/chronicler.md +98 -0
package/agents/ci-smith.md +136 -0
package/agents/craftsman.md +341 -0
package/agents/deploy-smith.md +138 -0
package/agents/foreman.md +377 -0
package/agents/go-smith.md +164 -0
package/agents/guild.md +188 -0
package/agents/inspector.md +83 -0
package/agents/js-smith.md +127 -0
package/agents/ops-scout.md +173 -0
package/agents/painter.md +200 -0
package/agents/python-smith.md +120 -0
package/agents/ranger.md +307 -0
package/agents/release-smith.md +165 -0
package/agents/rust-smith.md +159 -0
package/agents/sage.md +178 -0
package/agents/scout.md +144 -0
package/agents/scribe.md +156 -0
package/agents/smith.md +201 -0
package/agents/vue-smith.md +155 -0
package/agents/warden.md +216 -0
package/agents/zig-smith.md +156 -0
package/bin/ndomo-analyses.ts +4 -0
package/bin/ndomo-status.ts +4 -0
package/biome.json +57 -0
package/bun.lock +514 -0
package/commitlint.config.js +3 -0
package/config/ndomo.config.json +258 -0
package/config/ndomo.schema.json +166 -0
package/docs/agents.md +375 -0
package/docs/bugs/plan-create-orphan-fk.md +131 -0
package/docs/bugs/task_create_batch-order-index-collision.md +158 -0
package/docs/configuration.md +276 -0
package/docs/database.md +364 -0
package/docs/features/feature-flexible-builder-v1.md +724 -0
package/docs/features/feature-flexible-builder-v2.md +882 -0
package/docs/features/feature-flexible-builder.md +974 -0
package/docs/http-server.md +244 -0
package/docs/installation.md +259 -0
package/docs/integrations.md +129 -0
package/docs/operations/anti-pattern-sub-agent-verify-2026-06-21.md +32 -0
package/docs/operations/audit-v1.md +417 -0
package/docs/operations/audit-v2.md +197 -0
package/docs/operations/audit-v3.md +306 -0
package/docs/operations/db-optimize-foundations.md +123 -0
package/docs/operations/verify-gate-architecture.md +82 -0
package/docs/workflows.md +448 -0
package/opencode.json +5 -0
package/package.json +65 -0
package/release-please-config.json +11 -0
package/scripts/dev-bust-cache.sh +164 -0
package/scripts/install.sh +688 -0
package/scripts/smoke-e2e.ts +704 -0
package/scripts/smoke-hot.ts +417 -0
package/scripts/smoke-http.sh +228 -0
package/scripts/smoke-v4.ts +256 -0
package/scripts/smoke-v5.ts +397 -0
package/scripts/smoke.sh +9 -0
package/scripts/uninstall.sh +224 -0
package/skills/api-security-best-practices/SKILL.md +915 -0
package/skills/bash-scripting/SKILL.md +201 -0
package/skills/bun/SKILL.md +313 -0
package/skills/cavecrew/SKILL.md +82 -0
package/skills/caveman/SKILL.md +74 -0
package/skills/caveman-review/README.md +33 -0
package/skills/caveman-review/SKILL.md +55 -0
package/skills/find-skills/SKILL.md +142 -0
package/skills/frontend-design/LICENSE.txt +177 -0
package/skills/frontend-design/SKILL.md +55 -0
package/skills/golang-patterns/SKILL.md +674 -0
package/skills/golang-security/SKILL.md +185 -0
package/skills/golang-security/evals/evals.json +595 -0
package/skills/golang-security/references/architecture.md +268 -0
package/skills/golang-security/references/checklist.md +80 -0
package/skills/golang-security/references/cookies.md +200 -0
package/skills/golang-security/references/cryptography.md +424 -0
package/skills/golang-security/references/filesystem.md +285 -0
package/skills/golang-security/references/injection.md +315 -0
package/skills/golang-security/references/logging.md +163 -0
package/skills/golang-security/references/memory-safety.md +241 -0
package/skills/golang-security/references/network.md +253 -0
package/skills/golang-security/references/secrets.md +189 -0
package/skills/golang-security/references/third-party.md +159 -0
package/skills/golang-security/references/threat-modeling.md +189 -0
package/skills/golang-testing/SKILL.md +720 -0
package/skills/grill-me/SKILL.md +7 -0
package/skills/javascript-testing-patterns/SKILL.md +537 -0
package/skills/javascript-testing-patterns/references/advanced-testing-patterns.md +513 -0
package/skills/modern-javascript-patterns/SKILL.md +43 -0
package/skills/modern-javascript-patterns/references/advanced-patterns.md +487 -0
package/skills/modern-javascript-patterns/references/details.md +457 -0
package/skills/python-anti-patterns/SKILL.md +349 -0
package/skills/python-design-patterns/SKILL.md +85 -0
package/skills/python-design-patterns/references/details.md +353 -0
package/skills/python-error-handling/SKILL.md +193 -0
package/skills/python-error-handling/references/details.md +171 -0
package/skills/python-testing-patterns/SKILL.md +278 -0
package/skills/python-testing-patterns/references/advanced-patterns.md +411 -0
package/skills/python-testing-patterns/references/details.md +349 -0
package/skills/rust-patterns/SKILL.md +500 -0
package/skills/rust-testing/SKILL.md +501 -0
package/skills/security-review/SKILL.md +504 -0
package/skills/security-review/cloud-infrastructure-security.md +361 -0
package/skills/vue-best-practices/SKILL.md +154 -0
package/skills/vue-best-practices/references/animation-class-based-technique.md +254 -0
package/skills/vue-best-practices/references/animation-state-driven-technique.md +291 -0
package/skills/vue-best-practices/references/component-async.md +97 -0
package/skills/vue-best-practices/references/component-data-flow.md +307 -0
package/skills/vue-best-practices/references/component-fallthrough-attrs.md +174 -0
package/skills/vue-best-practices/references/component-keep-alive.md +137 -0
package/skills/vue-best-practices/references/component-slots.md +216 -0
package/skills/vue-best-practices/references/component-suspense.md +228 -0
package/skills/vue-best-practices/references/component-teleport.md +108 -0
package/skills/vue-best-practices/references/component-transition-group.md +128 -0
package/skills/vue-best-practices/references/component-transition.md +125 -0
package/skills/vue-best-practices/references/composables.md +290 -0
package/skills/vue-best-practices/references/directives.md +162 -0
package/skills/vue-best-practices/references/perf-avoid-component-abstraction-in-lists.md +159 -0
package/skills/vue-best-practices/references/perf-v-once-v-memo-directives.md +182 -0
package/skills/vue-best-practices/references/perf-virtualize-large-lists.md +187 -0
package/skills/vue-best-practices/references/plugins.md +166 -0
package/skills/vue-best-practices/references/reactivity.md +344 -0
package/skills/vue-best-practices/references/render-functions.md +201 -0
package/skills/vue-best-practices/references/sfc.md +310 -0
package/skills/vue-best-practices/references/state-management.md +135 -0
package/skills/vue-best-practices/references/updated-hook-performance.md +187 -0
package/skills/vue-pinia-best-practices/SKILL.md +21 -0
package/skills/vue-pinia-best-practices/reference/pinia-no-active-pinia-error.md +248 -0
package/skills/vue-pinia-best-practices/reference/pinia-setup-store-return-all-state.md +227 -0
package/skills/vue-pinia-best-practices/reference/pinia-store-destructuring-breaks-reactivity.md +193 -0
package/skills/vue-pinia-best-practices/reference/state-url-for-ephemeral-filters.md +238 -0
package/skills/vue-pinia-best-practices/reference/state-use-pinia-for-large-apps.md +262 -0
package/skills/vue-pinia-best-practices/reference/store-method-binding-parentheses.md +191 -0
package/skills/zig-0.16/SKILL.md +840 -0
package/skills/zig-0.16/scripts/check-zig-version.sh +21 -0
package/src/cli/analyses.ts +280 -0
package/src/cli/index.ts +108 -0
package/src/cli/serve.ts +192 -0
package/src/cli/smoke.ts +131 -0
package/src/cli/status.test.ts +204 -0
package/src/cli/status.ts +263 -0
package/src/cli/vacuum.test.ts +82 -0
package/src/cli/vacuum.ts +96 -0
package/src/config/schema.test.ts +88 -0
package/src/config/schema.ts +64 -0
package/src/db/analyses-migration.test.ts +210 -0
package/src/db/analyses.test.ts +466 -0
package/src/db/analyses.ts +375 -0
package/src/db/auto-checkpoint.ts +131 -0
package/src/db/client.test.ts +129 -0
package/src/db/client.ts +55 -0
package/src/db/fts-escape.ts +20 -0
package/src/db/incidents.test.ts +201 -0
package/src/db/incidents.ts +93 -0
package/src/db/index.ts +86 -0
package/src/db/migrations-v13.test.ts +141 -0
package/src/db/migrations-v8.test.ts +301 -0
package/src/db/migrations.ts +147 -0
package/src/db/plan-archive.test.ts +180 -0
package/src/db/plan-archive.ts +274 -0
package/src/db/plan-create.test.ts +276 -0
package/src/db/plan-create.ts +78 -0
package/src/db/plan-files.test.ts +289 -0
package/src/db/plan-update-status.ts +287 -0
package/src/db/plans.test.ts +490 -0
package/src/db/plans.ts +534 -0
package/src/db/resolve-project-dir.test.ts +143 -0
package/src/db/resolve-project-dir.ts +75 -0
package/src/db/rollbacks.test.ts +150 -0
package/src/db/rollbacks.ts +67 -0
package/src/db/schema.ts +907 -0
package/src/db/sessions.test.ts +80 -0
package/src/db/sessions.ts +135 -0
package/src/db/shutdown.test.ts +147 -0
package/src/db/shutdown.ts +45 -0
package/src/db/tasks.test.ts +921 -0
package/src/db/tasks.ts +747 -0
package/src/db/types.ts +619 -0
package/src/http/__tests__/auth.test.ts +196 -0
package/src/http/__tests__/routes.test.ts +465 -0
package/src/http/__tests__/sse.test.ts +317 -0
package/src/http/auth.ts +72 -0
package/src/http/middleware/cors.ts +53 -0
package/src/http/middleware/security-headers.ts +21 -0
package/src/http/routes/events.ts +112 -0
package/src/http/routes/health.ts +51 -0
package/src/http/routes/plans.ts +66 -0
package/src/http/routes/sessions.ts +50 -0
package/src/http/routes/tasks.ts +60 -0
package/src/http/server.ts +95 -0
package/src/http/sse.ts +116 -0
package/src/index.ts +37 -0
package/src/lib.ts +65 -0
package/src/mem/scoped.ts +65 -0
package/src/orchestrator/background.test.ts +268 -0
package/src/orchestrator/background.ts +293 -0
package/src/orchestrator/memory-hook.ts +182 -0
package/src/orchestrator/reconciler.ts +123 -0
package/src/orchestrator/scheduler.test.ts +300 -0
package/src/orchestrator/scheduler.ts +243 -0
package/src/plugin.test.ts +2574 -0
package/src/plugin.ts +1690 -0
package/src/sdk/client.ts +66 -0
package/src/worktrees/manager.ts +236 -0
package/src/worktrees/state.ts +87 -0
package/tests/integration/ranger-flow.test.ts +257 -0
package/tools/analysis_archive.ts +28 -0
package/tools/analysis_create.ts +55 -0
package/tools/analysis_get.ts +33 -0
package/tools/analysis_link_plan.ts +44 -0
package/tools/analysis_list.ts +48 -0
package/tools/analysis_search.ts +36 -0
package/tools/analysis_update.ts +44 -0
package/tools/plan_approve.ts +31 -0
package/tools/plan_create.ts +58 -0
package/tools/plan_get.ts +40 -0
package/tools/plan_list.ts +37 -0
package/tools/plan_search.ts +34 -0
package/tools/plan_update_status.ts +71 -0
package/tools/session_checkpoint.ts +31 -0
package/tools/session_end.ts +26 -0
package/tools/session_start.ts +43 -0
package/tools/task_create_batch.ts +70 -0
package/tools/task_list.ts +35 -0
package/tools/task_next_for_agent.ts +30 -0
package/tools/task_search.ts +34 -0
package/tools/task_update_status.ts +37 -0
package/tsconfig.json +31 -0

package/skills/golang-security/references/cryptography.md ADDED Viewed

@@ -0,0 +1,424 @@
+# Cryptography Security Rules
+Cryptography vulnerabilities threaten confidentiality and integrity of sensitive data.
+**Rules:**
+1. TLS MUST use 1.2+.
+2. NEVER use DES, RC4, MD5, or SHA1 for security purposes.
+3. SSH host keys MUST be verified — NEVER use `InsecureIgnoreHostKey`.
+4. Passwords MUST be hashed with Argon2id (preferred) or bcrypt.
+5. Security-critical randomness MUST use `crypto/rand`.
+---
+## Algorithm Selection Guide
+Choose the right algorithm for the job — using the wrong primitive (e.g. SHA256 for passwords) is as dangerous as using a broken one:
+| Use Case | Recommended | Avoid | Why |
+| --- | --- | --- | --- |
+| Symmetric encryption | AES-256-GCM, ChaCha20-Poly1305 | DES, 3DES, AES-ECB, RC4 | ECB reveals patterns; DES/RC4 are broken |
+| Password hashing | Argon2id (preferred), bcrypt, scrypt | MD5, SHA-1, plain SHA-256 | Fast hashes enable brute-force; memory-hard functions resist GPU attacks |
+| Message authentication | HMAC-SHA256, Poly1305 | HMAC-MD5, HMAC-SHA1 | MD5/SHA1 have known collision weaknesses |
+| Digital signatures | Ed25519, ECDSA P-256 | RSA-PKCS1v1.5 | PKCS1v1.5 has padding oracle vulnerabilities |
+| Key exchange | X25519, ECDH P-256 | Static RSA key transport | Forward secrecy requires ephemeral keys |
+| Random generation | `crypto/rand` | `math/rand` | `math/rand` output is predictable |
+| TLS | TLS 1.2+ (prefer 1.3) | TLS 1.0, 1.1, SSL | Known attacks (BEAST, POODLE) on older versions |
+### Key Size Requirements
+| Algorithm | Minimum Key Size         | Recommended      |
+| --------- | ------------------------ | ---------------- |
+| RSA       | 2048 bits                | 4096 bits        |
+| AES       | 128 bits                 | 256 bits         |
+| ECDSA     | P-256 (128-bit security) | P-256 or Ed25519 |
+---
+## Key Rotation Pattern
+Keys should be rotated periodically. Use envelope encryption so rotating the Key Encryption Key (KEK) doesn't require re-encrypting all data:
+```go
+// Envelope encryption: encrypt data with a DEK, encrypt DEK with KEK
+func EnvelopeEncrypt(kek, plaintext []byte) (encryptedDEK, ciphertext []byte, err error) {
+    // 1. Generate random Data Encryption Key
+    dek := make([]byte, 32)
+    if _, err := rand.Read(dek); err != nil {
+        return nil, nil, err
+    }
+    // 2. Encrypt data with DEK
+    ciphertext, err = EncryptAESGCM(dek, plaintext)
+    if err != nil {
+        return nil, nil, err
+    }
+    // 3. Encrypt DEK with KEK
+    encryptedDEK, err = EncryptAESGCM(kek, dek)
+    if err != nil {
+        return nil, nil, err
+    }
+    return encryptedDEK, ciphertext, nil
+}
+func EnvelopeDecrypt(kek, encryptedDEK, ciphertext []byte) ([]byte, error) {
+    dek, err := DecryptAESGCM(kek, encryptedDEK)
+    if err != nil {
+        return nil, err
+    }
+    return DecryptAESGCM(dek, ciphertext)
+}
+func EncryptAESGCM(key, plaintext []byte) ([]byte, error) {
+    block, err := aes.NewCipher(key)
+    if err != nil { return nil, err }
+    aead, err := cipher.NewGCM(block)
+    if err != nil { return nil, err }
+    nonce := make([]byte, aead.NonceSize())
+    if _, err := rand.Read(nonce); err != nil { return nil, err }
+    return aead.Seal(nonce, nonce, plaintext, nil), nil
+}
+func DecryptAESGCM(key, ciphertext []byte) ([]byte, error) {
+    block, err := aes.NewCipher(key)
+    if err != nil { return nil, err }
+    aead, err := cipher.NewGCM(block)
+    if err != nil { return nil, err }
+    nonceSize := aead.NonceSize()
+    if len(ciphertext) < nonceSize {
+        return nil, errors.New("ciphertext too short")
+    }
+    return aead.Open(nil, ciphertext[:nonceSize], ciphertext[nonceSize:], nil)
+}
+```
+When the KEK is rotated, only re-encrypt the DEKs (small), not the data (potentially large).
+---
+## Common Cryptographic Mistakes
+### Mistake 1: AES-ECB reveals patterns — High
+ECB encrypts each block independently — identical plaintext blocks produce identical ciphertext blocks, revealing data structure:
+```go
+// Bad — ECB mode reveals patterns in structured data
+block, _ := aes.NewCipher(key)
+// Using block.Encrypt directly = ECB mode
+// Good — GCM provides authenticated encryption
+aead, err := cipher.NewGCM(block) // randomized, authenticated
+if err != nil {
+    return nil, err
+}
+nonce := make([]byte, aead.NonceSize())
+if _, err := rand.Read(nonce); err != nil {
+    return nil, err
+}
+ciphertext := aead.Seal(nonce, nonce, plaintext, nil)
+```
+### Mistake 2: Reusing nonces — Critical
+A nonce reuse with AES-GCM completely breaks confidentiality and authentication:
+```go
+// Bad — static or reused nonce
+nonce := []byte("fixed_nonce!") // catastrophic with GCM
+// Good — random nonce per encryption
+nonce := make([]byte, 12) // 96-bit for GCM
+if _, err := rand.Read(nonce); err != nil {
+    return nil, err
+}
+```
+### Mistake 3: Non-constant-time comparison for secrets — Medium
+Comparing secrets with `==` short-circuits on the first differing byte, leaking timing information. See [Network/Web Security — Observable Timing](./network.md) for constant-time comparison patterns using `crypto/subtle`.
+---
+## Insecure TLS Configuration — High
+Using insecure TLS configurations can expose your application to man-in-the-middle attacks.
+**Bad:**
+```go
+transport := &http.Transport{
+    TLSClientConfig: &tls.Config{
+        InsecureSkipVerify: true, // DON'T: verify certificates
+    },
+}
+```
+**Good:**
+```go
+import "crypto/tls"
+func secureConfig() *tls.Config {
+    return &tls.Config{
+        MinVersion:       tls.VersionTLS12,
+        CurvePreferences: []tls.CurveID{tls.X25519, tls.CurveP256},
+    }
+}
+```
+---
+## DES Encryption — High
+DES is cryptographically broken.
+**Bad:**
+```go
+import "crypto/des"
+block, _ := des.NewCipher(key) // DON'T: broken
+```
+**Good:**
+```go
+import "crypto/aes"
+block, _ := aes.NewCipher(key)     // OK: AES
+cipher.NewGCM(block)              // OK: GCM for auth
+```
+---
+## Insecure SSH Host Key Verification — High
+**Bad:**
+```go
+import "golang.org/x/crypto/ssh"
+&ssh.ClientConfig{
+    HostKeyCallback: ssh.InsecureIgnoreHostKey(), // DON'T
+}
+```
+**Good:**
+```go
+import "golang.org/x/crypto/ssh"
+&ssh.ClientConfig{
+    HostKeyCallback: ssh.FixedHostKey(publicKey),
+}
+```
+---
+## MD5 Hash — High
+MD5 is collision-prone and weak for security.
+**Bad:**
+```go
+import "crypto/md5"
+hash := md5.Sum([]byte(data)) // DON'T: weak
+```
+**Good:**
+```go
+// For password hashing:
+import "golang.org/x/crypto/argon2"
+hash := argon2.IDKey([]byte(pw), salt, 3, 64*1024, 4, 32)
+// Or bcrypt (simpler API, no salt management):
+import "golang.org/x/crypto/bcrypt"
+hash, err := bcrypt.GenerateFromPassword([]byte(pw), bcrypt.DefaultCost)
+if err != nil {
+    return nil, err
+}
+// For general-purpose hashing (not passwords):
+import "crypto/sha256"
+digest := sha256.Sum256(data)
+```
+---
+## RC4 Cipher — High
+RC4 is cryptographically broken.
+**Bad:**
+```go
+import "crypto/rc4"
+cipher, _ := rc4.NewCipher(key) // DON'T: broken
+```
+**Good:**
+```go
+import "crypto/cipher"
+import "crypto/aes"
+aead, _ := cipher.NewGCM(block) // OK: AES-GCM
+// Or ChaCha20:
+import "golang.org/x/crypto/chacha20poly1305"
+aead, _ := chacha20poly1305.New(key)
+```
+---
+## SHA1 Hash — Medium
+SHA1 provides insufficient collision resistance.
+**Bad:**
+```go
+import "crypto/sha1"
+hash := sha1.Sum(data) // DON'T: weak
+```
+**Good:**
+```go
+import "crypto/sha256"
+hash := sha256.Sum256(data)
+```
+---
+## Weak Cryptographic Algorithms — Medium
+**Bad:**
+```go
+import "crypto/hmac"
+import "crypto/md5"
+mac := hmac.New(md5.New, key) // DON'T: HMAC-MD5
+```
+**Good:**
+```go
+import "crypto/sha256"
+mac := hmac.New(sha256.New, key)
+```
+---
+## Insufficient Key Strength — Medium
+RSA keys smaller than 2048 bits are insufficient.
+**Bad:**
+```go
+import "crypto/rsa"
+key, _ := rsa.GenerateKey(rand.Reader, 1024) // DON'T: too weak
+```
+**Good:**
+```go
+key, _ := rsa.GenerateKey(rand.Reader, 4096) // OK: 2048+ bits
+```
+---
+## Weak Random Number Generators — High
+`math/rand` is predictable, never use for security.
+**Bad:**
+```go
+import "math/rand"
+bytes := make([]byte, 16)
+rand.Read(bytes) // DON'T: predictable
+```
+**Good:**
+```go
+import "crypto/rand"
+_, err := rand.Read(bytes) // OK: cryptographically secure
+```
+---
+## Weak TLS Versions — High
+TLS 1.0 and 1.1 have known vulnerabilities.
+**Bad:**
+```go
+import "crypto/tls"
+&tls.Config{MinVersion: tls.VersionTLS10} // DON'T
+```
+**Good:**
+```go
+&tls.Config{MinVersion: tls.VersionTLS12} // OK
+```
+---
+## Password Hashing — High
+Don't use MD5, SHA1, or single-iteration hashes for passwords.
+**Bad:**
+```go
+import "crypto/sha256"
+hash := sha256.Sum256([]byte(password)) // DON'T: too fast
+```
+**Good:**
+```go
+// Argon2id (preferred) — memory-hard, resists GPU attacks:
+import "golang.org/x/crypto/argon2"
+key := argon2.IDKey([]byte(password), salt, 3, 64*1024, 4, 32)
+// Or bcrypt (simpler API, widely supported):
+import "golang.org/x/crypto/bcrypt"
+hash, err := bcrypt.GenerateFromPassword([]byte(pw), bcrypt.DefaultCost)
+if err != nil {
+    return nil, err
+}
+// Or PBKDF2 with 600,000+ iterations (Go 1.24+ stdlib):
+import "crypto/pbkdf2"
+key, err := pbkdf2.Key(sha512.New, password, salt, 600_000, 32)
+if err != nil {
+    return err
+}
+// Or scrypt:
+import "golang.org/x/crypto/scrypt"
+key, err := scrypt.Key([]byte(password), salt, 32768, 8, 1, 32)
+if err != nil {
+    return err
+}
+```
+For Go 1.24+, prefer stdlib `crypto/hkdf`, `crypto/pbkdf2`, and `crypto/sha3`. Use `golang.org/x/crypto/...` fallbacks only for modules targeting older Go versions or for algorithms still outside the standard library.
+---
+## CWE References
+- **CWE-327**: Use of a Broken or Risky Cryptographic Algorithm
+- **CWE-331**: Insufficient Entropy
+- **CWE-326**: Inadequate Encryption Strength
+- **CWE-295**: Improper Certificate Validation
+- **CWE-330**: Use of Insufficiently Random Values
+- **CWE-916**: Use of Password Hash With Insufficient Computational Effort

package/skills/golang-security/references/filesystem.md ADDED Viewed

@@ -0,0 +1,285 @@
+# Filesystem Security Rules
+Filesystem vulnerabilities can lead to unauthorized file access, data leakage, and denial-of-service attacks.
+**Rules:**
+1. User-controlled file paths MUST be confined to an allowed root.
+2. `os.Root` SHOULD be used for scoped file access (Go 1.24+).
+3. Zip extraction MUST check for ZipSlip path traversal.
+4. Temporary files MUST use `os.CreateTemp` — NEVER predictable names.
+5. File permissions MUST be restrictive (0600 for secrets, 0750 for directories).
+---
+## Directory Traversal — High
+Paths like `../../etc/passwd` access files outside intended directory.
+**Bad:**
+```go
+filepath := filepath.Join("/var/www", filename) // DON'T
+http.ServeFile(w, r, filepath)
+```
+**Good (Go 1.24+) — use `os.Root` for safe, scoped directory access:**
+```go
+root, err := os.OpenRoot("/var/www")
+if err != nil { return err }
+defer root.Close()
+f, err := root.Open(filename) // cannot escape root directory
+```
+`os.Root` prevents ordinary path traversal at the OS level. All operations (`Open`, `Create`, `Stat`, `OpenFile`, etc.) are confined to the root directory, and symlinks that resolve outside the root are rejected. It is not a full sandbox: it does not by itself block bind mounts, special device files, or all `/proc`-style filesystem behavior. For archive extraction and uploads, still reject special files and choose a root without attacker-controlled mounts.
+**Good (pre-Go 1.24 fallback):**
+```go
+func safeJoin(baseDir, userPath string) (string, error) {
+    if userPath == "" || filepath.IsAbs(userPath) || !filepath.IsLocal(userPath) {
+        return "", errors.New("invalid relative path")
+    }
+    full := filepath.Join(baseDir, userPath)
+    rel, err := filepath.Rel(baseDir, full)
+    if err != nil {
+        return "", fmt.Errorf("checking path: %w", err)
+    }
+    if rel == ".." || strings.HasPrefix(rel, ".."+string(os.PathSeparator)) {
+        return "", errors.New("path escapes base directory")
+    }
+    return full, nil
+}
+```
+This lexical fallback is not a full symlink-resistant substitute for `os.Root`.
+**Bad:**
+```go
+fullPath := filepath.Join(baseDir, filename)
+if !strings.HasPrefix(filepath.Clean(fullPath), filepath.Clean(baseDir)) {
+    return errors.New("access denied")
+}
+```
+---
+## Zip Archive Path Traversal — High
+Malicious zip files can escape extraction directory.
+**Bad:**
+```go
+for _, file := range reader.File {
+    path := filepath.Join(dest, file.Name) // DON'T: No validation
+    file.Create(path)
+}
+```
+**Good (Go 1.24+) — use `os.Root` to scope extraction:**
+```go
+root, err := os.OpenRoot(dest)
+if err != nil { return err }
+defer root.Close()
+for _, file := range reader.File {
+    f, err := root.OpenFile(file.Name, os.O_CREATE|os.O_WRONLY, 0644)
+    if err != nil { return err } // rejects paths escaping root
+    // ... copy contents ...
+    f.Close()
+}
+```
+**Good (pre-Go 1.24 fallback):**
+```go
+for _, file := range reader.File {
+    if !filepath.IsLocal(file.Name) {
+        return fmt.Errorf("unsafe archive path: %q", file.Name)
+    }
+    targetPath, err := safeJoin(dest, file.Name)
+    if err != nil {
+        return err
+    }
+    // create parent directories, then write targetPath
+    _ = targetPath
+}
+```
+---
+## Decompression Bomb — Medium
+Tiny compressed files can expand to GBs.
+**Bad:**
+```go
+gr, _ := gzip.NewReader(f)
+out, _ := os.Create(dst)
+io.Copy(out, gr) // DON'T: No size limits
+```
+**Good:**
+```go
+const maxDecompressedSize = 100 * 1024 * 1024 // 100MB limit
+var errDecompressedSizeLimitExceeded = errors.New("decompressed size limit exceeded")
+type limitedReader struct {
+    r    io.Reader
+    read int64
+}
+func (l *limitedReader) Read(p []byte) (int, error) {
+    if l.read >= maxDecompressedSize {
+        // Return a sentinel error — io.EOF would be treated as success by io.Copy
+        return 0, errDecompressedSizeLimitExceeded
+    }
+    n, err := l.r.Read(p)
+    l.read += int64(n)
+    return n, err
+}
+lr := &limitedReader{r: gr}
+if _, err := io.Copy(out, lr); err != nil {
+    return fmt.Errorf("decompressing: %w", err)
+}
+```
+---
+## Insecure Temporary File Creation — Medium
+Creating temp files without proper permissions.
+**Bad:**
+```go
+f, _ := os.Create("/tmp/myapp.temp") // DON'T: Predictable name
+f.WriteString(data)
+```
+**Good:**
+```go
+f, err := os.CreateTemp("", "myapp.*")
+defer os.Remove(f.Name())
+f.Chmod(0600) // Restrictive permissions
+```
+---
+## Insecure File Permissions — Medium
+Opening files with excessive permissions.
+**Bad:**
+```go
+f, _ := os.OpenFile("config.json", os.O_CREATE, 0644) // DON'T: World-readable
+```
+**Good:**
+```go
+f, _ := os.OpenFile("config.json", os.O_CREATE, 0600) // OK: Owner only
+```
+---
+## Insecure mkdir — Low
+Creating directories with overly permissive permissions.
+**Bad:**
+```go
+os.MkdirAll("/var/myapp/cache", 0777) // DON'T: World-writable
+```
+**Good:**
+```go
+os.MkdirAll("/var/myapp/cache", 0750) // OK: Group-writable
+```
+---
+## Insecure File Write Permissions — Medium
+Opening files for writing with inappropriate permissions.
+**Bad:**
+```go
+os.OpenFile("app.log", os.O_CREATE, 0666) // DON'T: World-writable
+```
+**Good:**
+```go
+os.OpenFile("app.log", os.O_CREATE|os.O_APPEND, 0640) // OK
+```
+---
+## Tainted File Read — High
+Reading files based on unvalidated input.
+**Bad:**
+```go
+func readFile(filename string) ([]byte, error) {
+    return os.ReadFile(filename) // DON'T: No validation
+}
+```
+**Good (Go 1.24+):**
+```go
+const allowedDir = "/var/www/public/"
+func readFile(filename string) ([]byte, error) {
+    root, err := os.OpenRoot(allowedDir)
+    if err != nil { return nil, err }
+    defer root.Close()
+    f, err := root.Open(filename) // cannot escape root directory
+    if err != nil { return nil, err }
+    defer f.Close()
+    return io.ReadAll(f)
+}
+```
+**Good (pre-Go 1.24 fallback):**
+```go
+const allowedDir = "/var/www/public/"
+func readFile(filename string) ([]byte, error) {
+    fullPath, err := safeJoin(allowedDir, filename)
+    if err != nil {
+        return nil, err
+    }
+    return os.ReadFile(fullPath)
+}
+```
+---
+## CWE References
+- **CWE-22**: Path Traversal (Directory Traversal)
+- **CWE-409**: Zip Bomb Decompression
+- **CWE-379**: Insecure Temp File Creation
+- **CWE-732**: Incorrect File Permissions