Дмитрий
832fadbcc3
spec(router-gate): v3.2 closes 18 holes from v4 adversarial audit
7 секций фиксов A-G закрывают 16 из 18 новых holes (2 → §9 acceptable residual):
- A §3.1 protected paths +7 (registry, helpers, prompt-prefix, gate-config, package.json, composer.json) — закрывает C1-C5
- B §3 chain-state: user-content-only substring (H1), keyword list trimmed (S7), PostToolUse chain_step++ (S3), transcript SoT clarified (S2)
- C §5.1 Bash: tokenizer +& (H3), session-scoped file-watcher (C6), git --output blacklist (C8), path-deny на все read commands (C9/S4), node -r blacklist (C10). §5.2 glob-aware (C11) + 1-level imports (E1)
- D §4.5 default-CLOSE: unmatched answer → gate remains locked (H4)
- E §3.2.0 smoke-test env propagation pre-impl (H2) + §3.2 path hardening derive from session-id (C7) + §3.4 BLOCKED-protocol enforced parent-side (S5)
- F §4 Поведение 1 case-insensitive + morphology (E3) + stale-registry fall-through (S1). §4.7 length-ratio 4× (E2)
- G §9 open questions: S6 (2-AskUser limit) UX-tradeoff acceptable, S8 (BRANCH-SWITCH controller-writable) → follow-up эпик
Implementation budget: 13.5-20h → 18-27h (+5-7h за smoke-test, PostToolUse migration, Bash hardening, path-args overlay).
Audit methodology: audit-context-building skill + ручной adversarial разбор по 13 attack-зонам. Brainstorming через superpowers:brainstorming для дизайна правок (scope=all, H4=default-CLOSE, H2=smoke-test через AskUserQuestion).
cspell-words.txt sync: +4 валидных терминов (уйте/инкрементирован/матчащий/неверифицирована).
Verify-sentinel: 1179/1179 vitest tools-only GREEN.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-29 07:31:27 +03:00
..
2026-05-28 04:50:10 +03:00
2026-05-17 15:19:19 +03:00
2026-05-17 11:15:34 +03:00
2026-05-25 14:28:24 +03:00
2026-05-23 10:03:14 +03:00
2026-05-21 04:21:26 +03:00
2026-05-25 14:23:11 +03:00
2026-05-20 12:10:21 +03:00
2026-05-23 09:47:18 +03:00
2026-05-17 17:17:20 +03:00
2026-05-29 07:31:27 +03:00
2026-05-18 04:33:52 +03:00
2026-05-17 09:10:44 +03:00
2026-05-28 04:50:10 +03:00
2026-05-25 14:23:11 +03:00
2026-05-19 13:12:30 +03:00
2026-05-29 07:31:27 +03:00
2026-05-10 23:33:52 +03:00
2026-05-08 07:11:58 +03:00
2026-05-09 17:40:25 +03:00
2026-05-14 10:08:08 +03:00
2026-05-22 17:59:46 +03:00
2026-05-22 18:19:10 +03:00
2026-05-15 11:22:14 +03:00
2026-05-08 15:24:55 +03:00
2026-05-08 07:11:58 +03:00
2026-05-28 04:50:10 +03:00
2026-05-28 04:50:10 +03:00
2026-05-10 06:32:17 +03:00
2026-05-22 17:59:45 +03:00
2026-05-28 04:50:10 +03:00
2026-05-08 07:11:58 +03:00
2026-05-15 07:04:57 +03:00
2026-05-15 07:04:57 +03:00
2026-05-28 04:50:10 +03:00
2026-05-08 07:11:58 +03:00
2026-05-08 10:35:31 +03:00
2026-05-06 04:45:22 +07:00
2026-05-08 10:35:31 +03:00
2026-05-08 07:11:58 +03:00
2026-05-16 20:14:04 +03:00
2026-05-08 08:31:14 +03:00
2026-05-22 11:11:47 +03:00
2026-05-07 18:27:08 +03:00
