Ejecuta cualquier Skill en Manus
con un clic

Ejecuta cualquier Skill en Manus con un clic

security-reviewer

Estrellas1

Forks0

Actualizado2 de abril de 2026, 03:56

Use when modifying unsafe blocks, adding parsing or decoding logic, changing buffer pool or scratch internals, or before merging changes to data structure implementations with raw pointers. Memory safety and security audit.

Instalación

Instalar con Codex o Claude Copia este prompt, pégalo en Codex, Claude u otro asistente, y deja que revise la página de la skill y la instale por ti.

Ejecutar en Manus

Fuente

ahrav

ahrav/Gossip-rs

Abrir repositorio de GitHub Ver repositorios del creador

Descarga

Ejecutar en Manus

Ocupaciones relacionadasSOC

Basado en la clasificación ocupacional SOC

Analistas de seguridad de la informaciónOcupaciones informáticas y matemáticas·SOC 15-1212

SKILL.md

readonly

name	security-reviewer
description	Use when modifying unsafe blocks, adding parsing or decoding logic, changing buffer pool or scratch internals, or before merging changes to data structure implementations with raw pointers. Memory safety and security audit.

Security Reviewer

Review unsafe code and security-sensitive operations in the gossip-rs codebase.

When to Use

After modifying any unsafe block
When adding new parsing or decoding logic
Before merging changes to data structure internals or buffer handling code
When implementing new protocol handling or serialization

Critical Areas in This Codebase

High-Risk Files

crates/gossip-stdx/src/inline_vec.rs - Stack-backed collection with unsafe pointer ops
crates/gossip-stdx/src/ring_buffer.rs - Fixed-capacity circular queue with unsafe
crates/gossip-stdx/src/byte_slab.rs - Pre-allocated byte pool with raw pointers
crates/gossip-connectors/src/filesystem.rs - Filesystem I/O with unsafe
crates/gossip-coordination/src/lib.rs - Coordination protocol internals

Scanner Engine High-Risk Files

crates/scanner-engine/src/engine/hit_pool.rs - Sorted hit pool with unsafe pointer ops
crates/scanner-engine/src/engine/scratch.rs - Reusable scratch memory with raw pointers
crates/scanner-engine/src/engine/stream_decode.rs - Streaming decoder with buffer manipulation
crates/scanner-engine/src/engine/buffer_scan.rs - Buffer scanning with unsafe slice ops
crates/scanner-engine/src/engine/transform.rs - Transform/decode pipeline (base64, etc.)
crates/scanner-engine/src/engine/vectorscan_prefilter.rs - FFI boundary with vectorscan
crates/scanner-engine/src/scratch_memory.rs - Scratch memory allocation with raw pointers
crates/scanner-engine/src/lsm/set_associative_cache.rs - Cache with SIMD tag matching
crates/scanner-engine/src/engine/simd_classify.rs - SIMD byte classification

Scanner Scheduler High-Risk Files

crates/scanner-scheduler/src/runtime.rs - Runtime with async I/O and unsafe
crates/scanner-scheduler/src/scheduler/ - Work-stealing scheduler (48 files)

Scanner Git High-Risk Files

crates/scanner-git/src/ - Git pack parsing, delta decoding (86 files with binary data handling)

Security Checklist

Memory Safety

All pointer arithmetic checked for overflow
Slice bounds validated before get_unchecked
Lifetimes correctly constrain returned references
No use-after-free in buffer pool operations
Alignment requirements satisfied for casts

Buffer Handling

No buffer overflows in write operations
Length checks before copying
Integer overflow checks on size calculations
Proper handling of truncated reads

Unsafe Block Audit

For each unsafe block:

Documented safety invariants (why this is safe)
Minimal scope (only unsafe operations inside)
Kani proof or extensive testing coverage
No undefined behavior paths

Input Validation

Untrusted input length-limited
Malformed input cannot cause panics
No amplification attacks (small input -> huge allocation)
Transform chains handle edge cases (empty, max-size)

Output Format

## Security Review: [file/module]

### Unsafe Block Audit

| Location | Purpose | Safety Justification | Status |
|----------|---------|---------------------|--------|
| line:XX | ptr arithmetic | bounds checked at line:YY | SAFE |
| line:XX | transmute | MISSING JUSTIFICATION | REVIEW |

### Findings

| Severity | Issue | Location | CWE |
|----------|-------|----------|-----|
| CRITICAL | Unchecked bounds | line:XX | CWE-125 |
| HIGH | Integer overflow | line:XX | CWE-190 |

### Recommendations

1. **[Issue]**: Add bounds check before unsafe access
   ```rust
   // Before (unsafe)
   // After (safe)

Verification

Add Kani proof for memory safety
Add fuzz target for this code path
Add property test for invariant


## Related Resources

- `docs/kani-verification.md` - Existing Kani proofs
- `/test-strategy` - Choose appropriate verification approach
- `/run-fuzz` - Run fuzz targets for security testing

Más de este repositorio

mismo repositorio

merge-reviews

ahrav/Gossip-rs

Consolidate all /review-capture drop files for the current branch into a single verified, deduplicated, conflict-annotated merged plan. Verifies each finding against HEAD (discarding stale ones), merges duplicates across reviewers, flags conflicting suggested fixes, groups findings into execution waves by file ownership, and deletes the individual drop files on success. Run after all parallel review terminals have completed.

2026-04-221

review-capture

ahrav/Gossip-rs

Wrapper skill that invokes any review skill/command and captures its findings into a structured YAML drop file under .claude/review-drops/<branch>/. Use when running parallel code reviews across multiple terminals (each terminal captures one reviewer's output) so a later /merge-reviews pass can dedup, verify, and consolidate before execution. Accepts any target review skill (e.g. ce:review, multi-reviewer-patterns, asm-forge, review-pipeline, perf-pipeline, cache-correctness-review, security-reviewer, etc.).

2026-04-221

create-task

ahrav/Gossip-rs

Use when creating any beads task — auto-researches the codebase, links related tasks, and produces a rich self-contained description from a structured template. Accepts minimal intent and outputs a complete task ready for agent implementation.

2026-04-201

review-pipeline

ahrav/Gossip-rs

Use when you want review AND automated fixes in one pass, when /review-dispatch alone would leave findings unaddressed, or before merging a feature branch that needs thorough diagnosis and remediation. Two-phase diagnose-then-fix pipeline.

2026-04-201

review-task

ahrav/Gossip-rs

Use when a beads task exists and needs validation before implementation — verifies codebase references, identifies edge cases and design flaws, assesses scope and feasibility, splits oversized tasks, dispatches domain-specific skills (test-strategy, unsafe-review, dist-sys-auditor, simd-optimize, asm-forge, performance-analyzer, security-reviewer, interface-design-review, sim-review, safe-over-unsafe) for specialized enrichment, and dispatches /deep-research or /deeper-research for ambiguous areas. The complement of /create-task — ensures tasks are buttoned up and ready for mechanical implementation.

2026-04-201

task-forge

ahrav/Gossip-rs

Use when creating implementation-ready beads tasks that need testing strategy, optimal implementation approach, and documentation requirements baked in — composes /create-task with parallel enrichment agents that analyze the codebase and produce concrete test specifications, algorithm/data-structure guidance, and doc quality standards so implementing agents don't need to re-research

2026-04-201