Skip to content

Add resource limits to skill packager #32

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
rdimitrov merged 1 commit into from
Feb 19, 2026
Merged

Add resource limits to skill packager #32

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
21 changes: 21 additions & 0 deletions oci/skills/packager.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -96,6 +96,15 @@ type skillDirContent struct {
// maxFrontmatterSize limits frontmatter to prevent YAML parsing attacks.
const maxFrontmatterSize = 64 * 1024

// maxSkillFiles limits the number of files in a skill directory to prevent
// memory exhaustion during packaging. This matches the extraction-side limit
// (MaxExtractFileCount in toolhive/pkg/skills/installer.go).
const maxSkillFiles = 1_000

// maxSkillTotalSize limits the total aggregate size of all files in a skill
// directory to prevent memory exhaustion during packaging (100 MB).
const maxSkillTotalSize int64 = 100 * 1024 * 1024

// Compile-time assertion that Packager implements SkillPackager.
var _ SkillPackager = (*Packager)(nil)

Expand Down Expand Up @@ -266,8 +275,11 @@ func validateSkillDir(dir string) error {
}

// collectSkillFiles walks a skill directory and returns all regular files (excluding SKILL.md and hidden files).
// It enforces limits on file count (maxSkillFiles) and total aggregate size (maxSkillTotalSize)
// to prevent memory exhaustion.
func collectSkillFiles(dir string) (map[string][]byte, error) {
files := make(map[string][]byte)
var totalSize int64
err := filepath.WalkDir(dir, func(path string, d fs.DirEntry, walkErr error) error {
if walkErr != nil {
return walkErr
Expand Down Expand Up @@ -309,11 +321,20 @@ func collectSkillFiles(dir string) (map[string][]byte, error) {
return nil
}

if len(files) >= maxSkillFiles {
return fmt.Errorf("skill directory exceeds maximum of %d files", maxSkillFiles)
}

content, err := os.ReadFile(path) //#nosec G304 -- path from WalkDir, symlink-checked
if err != nil {
return fmt.Errorf("reading %s: %w", relPath, err)
}

totalSize += int64(len(content))
if totalSize > maxSkillTotalSize {
return fmt.Errorf("skill directory exceeds maximum total size of %d bytes", maxSkillTotalSize)
}

files[relPath] = content
return nil
})
Expand Down
25 changes: 25 additions & 0 deletions oci/skills/packager_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,7 @@ package skills
import (
"context"
"encoding/json"
"fmt"
"os"
"path/filepath"
"testing"
Expand Down Expand Up @@ -547,6 +548,30 @@ allowed-tools: Read, Grep, Glob
}
}

func TestCollectSkillFiles_ExceedsMaxFiles(t *testing.T) {
t.Parallel()

dir := t.TempDir()
skillMD := `---
name: too-many-files
description: A skill with too many files
version: 1.0.0
---
# Too Many Files Skill
`
require.NoError(t, os.WriteFile(filepath.Join(dir, "SKILL.md"), []byte(skillMD), 0600))

// Create maxSkillFiles + 1 extra files (SKILL.md is excluded from the count)
for i := range maxSkillFiles + 1 {
name := filepath.Join(dir, fmt.Sprintf("file_%05d.txt", i))
require.NoError(t, os.WriteFile(name, []byte("x"), 0600))
}

_, err := collectSkillFiles(dir)
require.Error(t, err)
assert.Contains(t, err.Error(), "exceeds maximum")
}

// Helper functions

func createTestSkillDir(t *testing.T) string {
Expand Down
Loading