Skip to content

feat: bounded CLI input reading and CI hardening#20

Merged
T3pp31 merged 3 commits into
mainfrom
feat/bounded-input-and-ci-hardening
May 30, 2026
Merged

feat: bounded CLI input reading and CI hardening#20
T3pp31 merged 3 commits into
mainfrom
feat/bounded-input-and-ci-hardening

Conversation

@T3pp31
Copy link
Copy Markdown
Owner

@T3pp31 T3pp31 commented May 30, 2026

Summary

  • Add bounded_input module for chunked stdin reads (8 KB buffer) and streaming file reads with a 10 MB cap.
  • Reject non-regular file paths (directories, devices, FIFOs) and enforce limits while reading (TOCTOU-safe).
  • Apply bounded reading to CLI stdin, interactive mode, and shift prompts (MAX_SHIFT_LINE_SIZE).
  • Align decrypt_safe with decrypt to avoid duplicated logic.
  • Document Basic vs Safe APIs and per-input-path size limits in README and rustdoc.
  • Move config invariant checks to compile-time const _ block (fixes clippy::assertions_on_constants on tests).

CI follow-up (local commit not yet pushed)

A second commit (ci: run all-target clippy and rustsec audit-check) updates .github/workflows/ci.yml but could not be pushed automatically because the GitHub token lacks the workflow scope. After merging or before merge, run:

gh auth refresh -h github.com -s workflow
git push origin feat/bounded-input-and-ci-hardening

That push adds:

  • cargo clippy --all-targets --all-features -- -D warnings
  • rustsec/audit-check@v2.0.0 instead of per-job cargo install cargo-audit

Test plan

  • cargo test (150 tests)
  • cargo clippy --all-targets --all-features -- -D warnings
  • GitHub Actions on this PR (after CI commit is pushed)

Made with Cursor

T3pp31 and others added 3 commits May 30, 2026 09:33
@T3pp31 @cursoragent
feat: add bounded CLI input reading
08fdb00 
Introduce bounded stdin/file reads to prevent memory exhaustion from
untrusted input and document per-path size limits and API modes.

Co-authored-by: Cursor <cursoragent@cursor.com>
@T3pp31 @cursoragent
ci: run all-target clippy and rustsec audit-check
5d126ee 
Co-authored-by: Cursor <cursoragent@cursor.com>
@T3pp31 @cursoragent
style: apply rustfmt to cli.rs for CI
88f1518 
cargo fmt --check failed on import layout and chained call formatting.

Co-authored-by: Cursor <cursoragent@cursor.com>
@T3pp31 T3pp31 merged commit 453d250 into main May 30, 2026
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@T3pp31