fix: add error handling for file writes and HTTP response body cleanup

Author: CodeMonkeyCybersecurity

cmd/protocol.go

@@ -499,10 +499,16 @@ func saveProtocolResults(findings []types.Finding, output string) error {
 		}
 	}()
 
-	// Create report
-	fmt.Fprintf(file, "Protocol Security Scan Report\n")
-	fmt.Fprintf(file, "Generated: %s\n", time.Now().Format(time.RFC3339))
-	fmt.Fprintf(file, "=====================================\n\n")
+	// Create report - check all write errors
+	if _, err := fmt.Fprintf(file, "Protocol Security Scan Report\n"); err != nil {
+		return fmt.Errorf("failed to write report header: %w", err)
+	}
+	if _, err := fmt.Fprintf(file, "Generated: %s\n", time.Now().Format(time.RFC3339)); err != nil {
+		return fmt.Errorf("failed to write report timestamp: %w", err)
+	}
+	if _, err := fmt.Fprintf(file, "=====================================\n\n"); err != nil {
+		return fmt.Errorf("failed to write report separator: %w", err)
+	}
 
 	// Group by target
 	byTarget := make(map[string][]types.Finding)
@@ -517,28 +523,48 @@ func saveProtocolResults(findings []types.Finding, output string) error {
 	}
 
 	for target, targetFindings := range byTarget {
-		fmt.Fprintf(file, "Target: %s\n", target)
-		fmt.Fprintf(file, "-------------------\n")
+		if _, err := fmt.Fprintf(file, "Target: %s\n", target); err != nil {
+			return fmt.Errorf("failed to write target header: %w", err)
+		}
+		if _, err := fmt.Fprintf(file, "-------------------\n"); err != nil {
+			return fmt.Errorf("failed to write target separator: %w", err)
+		}
 
 		for _, finding := range targetFindings {
-			fmt.Fprintf(file, "\nTitle: %s\n", finding.Title)
-			fmt.Fprintf(file, "Type: %s\n", finding.Type)
-			fmt.Fprintf(file, "Severity: %s\n", finding.Severity)
-			fmt.Fprintf(file, "Description: %s\n", finding.Description)
+			if _, err := fmt.Fprintf(file, "\nTitle: %s\n", finding.Title); err != nil {
+				return fmt.Errorf("failed to write finding title: %w", err)
+			}
+			if _, err := fmt.Fprintf(file, "Type: %s\n", finding.Type); err != nil {
+				return fmt.Errorf("failed to write finding type: %w", err)
+			}
+			if _, err := fmt.Fprintf(file, "Severity: %s\n", finding.Severity); err != nil {
+				return fmt.Errorf("failed to write finding severity: %w", err)
+			}
+			if _, err := fmt.Fprintf(file, "Description: %s\n", finding.Description); err != nil {
+				return fmt.Errorf("failed to write finding description: %w", err)
+			}
 
 			if finding.Solution != "" {
-				fmt.Fprintf(file, "Remediation: %s\n", finding.Solution)
+				if _, err := fmt.Fprintf(file, "Remediation: %s\n", finding.Solution); err != nil {
+					return fmt.Errorf("failed to write finding remediation: %w", err)
+				}
 			}
 
 			if len(finding.References) > 0 {
-				fmt.Fprintf(file, "References:\n")
+				if _, err := fmt.Fprintf(file, "References:\n"); err != nil {
+					return fmt.Errorf("failed to write references header: %w", err)
+				}
 				for _, ref := range finding.References {
-					fmt.Fprintf(file, "  - %s\n", ref)
+					if _, err := fmt.Fprintf(file, "  - %s\n", ref); err != nil {
+						return fmt.Errorf("failed to write reference: %w", err)
+					}
 				}
 			}
 		}
 
-		fmt.Fprintf(file, "\n=====================================\n\n")
+		if _, err := fmt.Fprintf(file, "\n=====================================\n\n"); err != nil {
+			return fmt.Errorf("failed to write section separator: %w", err)
+		}
 	}
 
 	return nil

cmd/root.go

@@ -2252,7 +2252,10 @@ func runMainDiscovery(cmd *cobra.Command, args []string, log *logger.Logger, db
 	startTime := time.Now()
 
 	// Set bug bounty mode and reduce log noise
-	os.Setenv("SHELLS_BUG_BOUNTY_MODE", "true")
+	if err := os.Setenv("SHELLS_BUG_BOUNTY_MODE", "true"); err != nil {
+		fmt.Fprintf(os.Stderr, "Warning: failed to set bug bounty mode: %v\n", err)
+		fmt.Fprintf(os.Stderr, "Impact: Some features may not operate in optimized mode\n")
+	}
 
 	// Force clean console output for bug bounty mode
 	viper.Set("log.format", "console")

cmd/scan.go

@@ -10,6 +10,7 @@ import (
 	"strings"
 	"time"
 
+	"github.com/CodeMonkeyCybersecurity/shells/internal/httpclient"
 	"github.com/CodeMonkeyCybersecurity/shells/pkg/security"
 	"github.com/CodeMonkeyCybersecurity/shells/pkg/types"
 	"github.com/google/uuid"
@@ -622,7 +623,7 @@ func executeDirScan(target string, options map[string]string, scanID string) ([]
 		if err != nil {
 			continue
 		}
-		resp.Body.Close()
+		httpclient.CloseBody(resp)
 
 		if resp.StatusCode < 400 {
 			log.Infow("Directory found", "path", path, "status", resp.StatusCode)
@@ -645,7 +646,7 @@ func executeSCIMScan(target string, options map[string]string, scanID string) ([
 		if err != nil {
 			continue
 		}
-		resp.Body.Close()
+		httpclient.CloseBody(resp)
 
 		if resp.StatusCode < 400 {
 			log.Infow("SCIM endpoint found", "path", path, "status", resp.StatusCode)
@@ -684,7 +685,7 @@ func executeOAuth2Scan(target string, options map[string]string, scanID string)
 		if err != nil {
 			continue
 		}
-		resp.Body.Close()
+		httpclient.CloseBody(resp)
 
 		if resp.StatusCode < 400 {
 			log.Infow("OAuth2 endpoint found", "path", path, "status", resp.StatusCode)
@@ -731,7 +732,7 @@ func executeJSScan(target string, options map[string]string, scanID string) ([]t
 		if err != nil {
 			continue
 		}
-		resp.Body.Close()
+		httpclient.CloseBody(resp)
 
 		contentType := resp.Header.Get("Content-Type")
 		if resp.StatusCode < 400 && strings.Contains(contentType, "javascript") {
@@ -754,7 +755,7 @@ func executeAPISecan(target string, options map[string]string, scanID string) ([
 		if err != nil {
 			continue
 		}
-		resp.Body.Close()
+		httpclient.CloseBody(resp)
 
 		if resp.StatusCode < 400 {
 			log.Infow("API endpoint found", "path", path, "status", resp.StatusCode)
@@ -921,7 +922,7 @@ func legacyDirScan(target string, options map[string]string) error {
 		if err != nil {
 			continue
 		}
-		resp.Body.Close()
+		httpclient.CloseBody(resp)
 
 		if resp.StatusCode < 400 {
 			log.Infow("Directory found", "path", path, "status", resp.StatusCode)
@@ -944,7 +945,7 @@ func legacySCIMScan(target string, options map[string]string) error {
 		if err != nil {
 			continue
 		}
-		resp.Body.Close()
+		httpclient.CloseBody(resp)
 
 		if resp.StatusCode < 400 {
 			log.Infow("SCIM endpoint found", "path", path, "status", resp.StatusCode)

cmd/scan_aws.go

@@ -274,7 +274,9 @@ func runAWSValidate(cmd *cobra.Command, args []string) error {
 		fmt.Printf("Checking AWS credentials (profile: %s)... ", awsProfile)
 
 		// Set AWS profile environment variable
-		os.Setenv("AWS_PROFILE", awsProfile)
+		if err := os.Setenv("AWS_PROFILE", awsProfile); err != nil {
+			return fmt.Errorf("failed to set AWS_PROFILE environment variable: %w", err)
+		}
 
 		// Test AWS credentials by calling STS GetCallerIdentity
 		cmd := exec.Command("aws", "sts", "get-caller-identity", "--profile", awsProfile)

internal/httpclient/factory.go

@@ -4,8 +4,10 @@ package httpclient
 import (
 	"context"
 	"fmt"
+	"io"
 	"net"
 	"net/http"
+	"os"
 	"time"
 )
 
@@ -238,3 +240,38 @@ func DoWithContext(ctx context.Context, client *http.Client, req *http.Request)
 
 	return resp, nil
 }
+
+// CloseBody safely closes an HTTP response body and logs any errors.
+// This is critical for connection pool health - unclosed bodies leak HTTP connections.
+//
+// Usage:
+//   defer httpclient.CloseBody(resp)
+//
+// Philosophy alignment: Transparent error handling (human-centric principle)
+func CloseBody(resp *http.Response) {
+	if resp == nil || resp.Body == nil {
+		return
+	}
+
+	// Drain body before closing to enable connection reuse
+	// HTTP/1.1 connections can only be reused if body is fully read
+	_, _ = io.Copy(io.Discard, resp.Body)
+
+	if err := resp.Body.Close(); err != nil {
+		fmt.Fprintf(os.Stderr, "Warning: failed to close HTTP response body: %v\n", err)
+		fmt.Fprintf(os.Stderr, "Impact: HTTP connection may leak (pool exhaustion possible)\n")
+	}
+}
+
+// MustCloseBody is like CloseBody but panics on error (use only in tests)
+func MustCloseBody(resp *http.Response) {
+	if resp == nil || resp.Body == nil {
+		return
+	}
+
+	_, _ = io.Copy(io.Discard, resp.Body)
+
+	if err := resp.Body.Close(); err != nil {
+		panic(fmt.Sprintf("failed to close response body: %v", err))
+	}
+}

internal/plugins/api/graphql.go

@@ -11,6 +11,7 @@ import (
 	"time"
 
 	"github.com/CodeMonkeyCybersecurity/shells/internal/core"
+	"github.com/CodeMonkeyCybersecurity/shells/internal/httpclient"
 	"github.com/CodeMonkeyCybersecurity/shells/pkg/types"
 )
 
@@ -311,7 +312,7 @@ func (s *graphQLScanner) isGraphQLEndpoint(ctx context.Context, url string) bool
 	if err != nil {
 		return false
 	}
-	defer resp.Body.Close()
+	defer httpclient.CloseBody(resp)
 
 	body, err := io.ReadAll(resp.Body)
 	if err != nil {
@@ -474,7 +475,7 @@ func (s *graphQLScanner) testIntrospection(ctx context.Context, endpoint string,
 	if err != nil {
 		return findings
 	}
-	defer resp.Body.Close()
+	defer httpclient.CloseBody(resp)
 
 	body, err := io.ReadAll(resp.Body)
 	if err != nil {
@@ -833,7 +834,7 @@ func (s *graphQLScanner) testBatchingAttacks(ctx context.Context, endpoint strin
 	if err != nil {
 		return findings
 	}
-	defer resp.Body.Close()
+	defer httpclient.CloseBody(resp)
 
 	body, err := io.ReadAll(resp.Body)
 	if err != nil {
@@ -937,7 +938,7 @@ func (s *graphQLScanner) testQueryComplexity(ctx context.Context, endpoint strin
 		if err != nil {
 			continue
 		}
-		resp.Body.Close()
+		httpclient.CloseBody(resp)
 
 		// If complex queries execute without limits, it's a finding
 		if resp.StatusCode == 200 && duration > 3*time.Second {
@@ -1018,7 +1019,7 @@ func (s *graphQLScanner) testDepthLimits(ctx context.Context, endpoint string, o
 	if err != nil {
 		return findings
 	}
-	defer resp.Body.Close()
+	defer httpclient.CloseBody(resp)
 
 	if resp.StatusCode == 200 {
 		severity := types.SeverityMedium
@@ -1098,7 +1099,7 @@ func (s *graphQLScanner) testFieldSuggestion(ctx context.Context, endpoint strin
 		if err != nil {
 			continue
 		}
-		defer resp.Body.Close()
+		defer httpclient.CloseBody(resp)
 
 		body, err := io.ReadAll(resp.Body)
 		if err != nil {
@@ -1177,7 +1178,7 @@ func (s *graphQLScanner) testAuthorizationBypass(ctx context.Context, endpoint s
 		if err != nil {
 			continue
 		}
-		defer resp.Body.Close()
+		defer httpclient.CloseBody(resp)
 
 		body, err := io.ReadAll(resp.Body)
 		if err != nil {
@@ -1329,7 +1330,7 @@ func (s *graphQLScanner) testInjectionQuery(ctx context.Context, endpoint, query
 	if err != nil {
 		return false
 	}
-	defer resp.Body.Close()
+	defer httpclient.CloseBody(resp)
 
 	body, err := io.ReadAll(resp.Body)
 	if err != nil {
@@ -1412,7 +1413,7 @@ func (s *graphQLScanner) testInformationDisclosure(ctx context.Context, endpoint
 		if err != nil {
 			continue
 		}
-		defer resp.Body.Close()
+		defer httpclient.CloseBody(resp)
 
 		body, err := io.ReadAll(resp.Body)
 		if err != nil {
@@ -1494,7 +1495,7 @@ func (s *graphQLScanner) testCSRFProtection(ctx context.Context, endpoint string
 		if err != nil {
 			continue
 		}
-		defer resp.Body.Close()
+		defer httpclient.CloseBody(resp)
 
 		if resp.StatusCode == http.StatusOK {
 			var result GraphQLResponse
@@ -1569,7 +1570,7 @@ func (s *graphQLScanner) testRateLimiting(ctx context.Context, endpoint string,
 		if resp.StatusCode == http.StatusOK {
 			successCount++
 		}
-		resp.Body.Close()
+		httpclient.CloseBody(resp)
 
 		// Don't delay between requests to test rate limiting
 	}