zeroclaw

harald/zeroclaw

Fork 0

Commit graph

Author	SHA1	Message	Date
argenis de la rosa	976c5bbf3c	hardening: fix 7 production weaknesses found in codebase scan Scan findings and fixes: 1. Gateway buffer overflow (8KB → 64KB) - Fixed: Increased request buffer from 8,192 to 65,536 bytes - Large POST bodies (long prompts) were silently truncated 2. Gateway slow-loris attack (no read timeout → 30s) - Fixed: tokio::time::timeout(30s) on stream.read() - Malicious clients could hold connections indefinitely 3. Webhook secret timing attack (== → constant_time_eq) - Fixed: Now uses constant_time_eq() for secret comparison - Prevents timing side-channel on webhook authentication 4. Pairing brute force (no limit → 5 attempts + 5min lockout) - Fixed: PairingGuard tracks failed attempts with lockout - Returns 429 Too Many Requests with retry_after seconds 5. Shell tool hang (no timeout → 60s kill) - Fixed: tokio::time::timeout(60s) on Command::output() - Commands that hang are killed and return error 6. Shell tool OOM (unbounded output → 1MB cap) - Fixed: stdout/stderr truncated at 1MB with warning - Prevents memory exhaustion from verbose commands 7. Provider HTTP timeout (none → 120s request + 10s connect) - Fixed: All 5 providers (OpenRouter, Anthropic, OpenAI, Ollama, Compatible) now have reqwest timeouts - Ollama gets 300s (local models are slower) 949 tests passing, 0 clippy warnings, cargo fmt clean	2026-02-14 01:47:08 -05:00
argenis de la rosa	05cb353f7f	feat: initial release — ZeroClaw v0.1.0 - 22 AI providers (OpenRouter, Anthropic, OpenAI, Mistral, etc.) - 7 channels (CLI, Telegram, Discord, Slack, iMessage, Matrix, Webhook) - 5-step onboarding wizard with Project Context personalization - OpenClaw-aligned system prompt (SOUL.md, IDENTITY.md, USER.md, AGENTS.md, etc.) - SQLite memory backend with auto-save - Skills system with on-demand loading - Security: autonomy levels, command allowlists, cost limits - 532 tests passing, 0 clippy warnings	2026-02-13 12:19:14 -05:00

Author

SHA1

Message

Date

argenis de la rosa

976c5bbf3c

hardening: fix 7 production weaknesses found in codebase scan

Scan findings and fixes:

1. Gateway buffer overflow (8KB → 64KB)
   - Fixed: Increased request buffer from 8,192 to 65,536 bytes
   - Large POST bodies (long prompts) were silently truncated

2. Gateway slow-loris attack (no read timeout → 30s)
   - Fixed: tokio::time::timeout(30s) on stream.read()
   - Malicious clients could hold connections indefinitely

3. Webhook secret timing attack (== → constant_time_eq)
   - Fixed: Now uses constant_time_eq() for secret comparison
   - Prevents timing side-channel on webhook authentication

4. Pairing brute force (no limit → 5 attempts + 5min lockout)
   - Fixed: PairingGuard tracks failed attempts with lockout
   - Returns 429 Too Many Requests with retry_after seconds

5. Shell tool hang (no timeout → 60s kill)
   - Fixed: tokio::time::timeout(60s) on Command::output()
   - Commands that hang are killed and return error

6. Shell tool OOM (unbounded output → 1MB cap)
   - Fixed: stdout/stderr truncated at 1MB with warning
   - Prevents memory exhaustion from verbose commands

7. Provider HTTP timeout (none → 120s request + 10s connect)
   - Fixed: All 5 providers (OpenRouter, Anthropic, OpenAI,
     Ollama, Compatible) now have reqwest timeouts
   - Ollama gets 300s (local models are slower)

949 tests passing, 0 clippy warnings, cargo fmt clean

2026-02-14 01:47:08 -05:00

argenis de la rosa

05cb353f7f

feat: initial release — ZeroClaw v0.1.0

- 22 AI providers (OpenRouter, Anthropic, OpenAI, Mistral, etc.)
- 7 channels (CLI, Telegram, Discord, Slack, iMessage, Matrix, Webhook)
- 5-step onboarding wizard with Project Context personalization
- OpenClaw-aligned system prompt (SOUL.md, IDENTITY.md, USER.md, AGENTS.md, etc.)
- SQLite memory backend with auto-save
- Skills system with on-demand loading
- Security: autonomy levels, command allowlists, cost limits
- 532 tests passing, 0 clippy warnings

2026-02-13 12:19:14 -05:00

2 commits