|
159 | 159 | - [ ] Consent env vars docs |
160 | 160 | - [ ] Incident response guide |
161 | 161 |
|
| 162 | +#### Detailed Todo List (Phase 6.2 Security Hardening) |
| 163 | + |
| 164 | +##### Critical Issues (Pre-Release Blocker) |
| 165 | +- [ ] sec-1: Command Injection: Dangerous pattern detect (rm -rf /, fork bombs) |
| 166 | +- [ ] sec-2: Command Injection: Command validation layer pre-exec |
| 167 | +- [ ] sec-3: Command Injection: bash-parser security checks |
| 168 | +- [ ] sec-4: Privilege Escalation Bypass: Enhance sudo detect (exec path: /usr/bin/sudo, doas, su, run0) |
| 169 | +- [ ] sec-5: Privilege Escalation Bypass: Validate normalized commands post-bash-parser |
| 170 | +- [ ] sec-6: Privilege Escalation Bypass: Exec basename check in checkExecutablePermission |
| 171 | +- [ ] sec-7: PTY Write Injection: Filter dangerous ANSI escapes |
| 172 | +- [ ] sec-8: PTY Write Injection: Control char whitelist/blacklist |
| 173 | +- [ ] sec-9: PTY Write Injection: Rate limiting for writes |
| 174 | +- [ ] sec-10: Shell Metachar Attacks: Restrict globs (*, ?, []) in sensitive contexts |
| 175 | +- [ ] sec-11: Shell Metachar Attacks: Validate redirects (>, >>, <, <<) |
| 176 | +- [ ] sec-12: Shell Metachar Attacks: Path traversal protection |
| 177 | +- [ ] sec-13: Env Var Pollution: Safe default env (whitelist) |
| 178 | +- [ ] sec-14: Env Var Pollution: Block dangerous vars (LD_PRELOAD, LD_LIBRARY_PATH) |
| 179 | +- [ ] sec-15: Env Var Pollution: Per-session env isolation |
| 180 | + |
| 181 | +##### Medium Priority (Post v1.0) |
| 182 | +- [ ] sec-16: Resource Exhaustion: PTY count limit/session (default: 10) |
| 183 | +- [ ] sec-17: Resource Exhaustion: Memory monitoring/limits |
| 184 | +- [ ] sec-18: Resource Exhaustion: Exec timeout (default: 30min) |
| 185 | +- [ ] sec-19: Resource Exhaustion: xterm buffer size limits |
| 186 | +- [ ] sec-20: Session Security: Eval ULID predictability |
| 187 | +- [ ] sec-21: Session Security: Configurable idle timeout (current: 5min) |
| 188 | +- [ ] sec-22: Session Security: Session auth (HTTP mode) |
| 189 | +- [ ] sec-23: Session Security: Rate limit session creation |
| 190 | +- [ ] sec-24: Info Disclosure: Log sanitization (commands/outputs) |
| 191 | +- [ ] sec-25: Info Disclosure: Redaction patterns (tokens, passwords) |
| 192 | +- [ ] sec-26: Info Disclosure: Separate audit log |
| 193 | + |
162 | 194 | #### 6.3 Observability |
163 | 195 | - [ ] Structured logging (consola) |
164 | 196 | - [ ] Error tracking/reporting |
|
0 commit comments