// Audit memory safety and security in unsafe code blocks, buffer handling, and security-sensitive operations
[HINT] Download the complete skill directory including SKILL.md and all related files
| name | security-reviewer |
| description | Audit memory safety and security in unsafe code blocks, buffer handling, and security-sensitive operations |
Review unsafe code and security-sensitive operations in the gossip-rs codebase.
unsafe blockcrates/gossip-stdx/src/inline_vec.rs - Stack-backed collection with unsafe pointer opscrates/gossip-stdx/src/ring_buffer.rs - Fixed-capacity circular queue with unsafecrates/gossip-stdx/src/byte_slab.rs - Pre-allocated byte pool with raw pointerscrates/gossip-connectors/src/filesystem.rs - Filesystem I/O with unsafecrates/gossip-coordination/src/lib.rs - Coordination protocol internalscrates/scanner-engine/src/engine/hit_pool.rs - Sorted hit pool with unsafe pointer opscrates/scanner-engine/src/engine/scratch.rs - Reusable scratch memory with raw pointerscrates/scanner-engine/src/engine/stream_decode.rs - Streaming decoder with buffer manipulationcrates/scanner-engine/src/engine/buffer_scan.rs - Buffer scanning with unsafe slice opscrates/scanner-engine/src/engine/transform.rs - Transform/decode pipeline (base64, etc.)crates/scanner-engine/src/engine/vectorscan_prefilter.rs - FFI boundary with vectorscancrates/scanner-engine/src/scratch_memory.rs - Scratch memory allocation with raw pointerscrates/scanner-engine/src/lsm/set_associative_cache.rs - Cache with SIMD tag matchingcrates/scanner-engine/src/engine/simd_classify.rs - SIMD byte classificationcrates/scanner-scheduler/src/runtime.rs - Runtime with async I/O and unsafecrates/scanner-scheduler/src/scheduler/ - Work-stealing scheduler (48 files)crates/scanner-git/src/ - Git pack parsing, delta decoding (86 files with binary data handling)get_uncheckedFor each unsafe block:
## Security Review: [file/module]
### Unsafe Block Audit
| Location | Purpose | Safety Justification | Status |
|----------|---------|---------------------|--------|
| line:XX | ptr arithmetic | bounds checked at line:YY | SAFE |
| line:XX | transmute | MISSING JUSTIFICATION | REVIEW |
### Findings
| Severity | Issue | Location | CWE |
|----------|-------|----------|-----|
| CRITICAL | Unchecked bounds | line:XX | CWE-125 |
| HIGH | Integer overflow | line:XX | CWE-190 |
### Recommendations
1. **[Issue]**: Add bounds check before unsafe access
```rust
// Before (unsafe)
// After (safe)
## Related Resources
- `docs/kani-verification.md` - Existing Kani proofs
- `/test-strategy` - Choose appropriate verification approach
- `/run-fuzz` - Run fuzz targets for security testing