Security Remediation: All Phases Complete (84 fixes) #348
@@ -434,11 +434,21 @@ SECRET=replace-me
|
||||
// Remove read permissions
|
||||
await fs.chmod(testFile, 0o000);
|
||||
|
||||
// Check if we're running as root (where chmod 0o000 won't prevent reads)
|
||||
const isRoot = process.getuid?.() === 0;
|
||||
|
||||
const result = await service.scanFile(testFile);
|
||||
|
||||
expect(result.scannedSuccessfully).toBe(false);
|
||||
expect(result.scanError).toBeDefined();
|
||||
expect(result.hasSecrets).toBe(false); // Not "clean", just unscanned
|
||||
if (isRoot) {
|
||||
// Root can still read the file, so it will scan successfully
|
||||
expect(result.scannedSuccessfully).toBe(true);
|
||||
expect(result.hasSecrets).toBe(true); // Contains AWS key
|
||||
} else {
|
||||
// Non-root user cannot read the file
|
||||
expect(result.scannedSuccessfully).toBe(false);
|
||||
expect(result.scanError).toBeDefined();
|
||||
expect(result.hasSecrets).toBe(false); // Not "clean", just unscanned
|
||||
}
|
||||
|
||||
// Cleanup - restore permissions first
|
||||
await fs.chmod(testFile, 0o644);
|
||||
|
||||
@@ -6,6 +6,7 @@ import { useState } from "react";
|
||||
import { KanbanBoard } from "@/components/kanban";
|
||||
import type { Task } from "@mosaic/shared";
|
||||
import { TaskStatus, TaskPriority } from "@mosaic/shared";
|
||||
import { ToastProvider } from "@mosaic/ui";
|
||||
|
||||
const initialTasks: Task[] = [
|
||||
{
|
||||
@@ -173,23 +174,27 @@ export default function KanbanDemoPage(): ReactElement {
|
||||
};
|
||||
|
||||
return (
|
||||
<div className="min-h-screen bg-gray-100 dark:bg-gray-950 p-6">
|
||||
<div className="max-w-7xl mx-auto space-y-6">
|
||||
{/* Header */}
|
||||
<div className="bg-white dark:bg-gray-900 rounded-lg shadow-sm border border-gray-200 dark:border-gray-800 p-6">
|
||||
<h1 className="text-2xl font-bold text-gray-900 dark:text-gray-100">Kanban Board Demo</h1>
|
||||
<p className="mt-2 text-gray-600 dark:text-gray-400">
|
||||
Drag and drop tasks between columns to update their status.
|
||||
</p>
|
||||
<p className="mt-1 text-sm text-gray-500 dark:text-gray-500">
|
||||
{tasks.length} total tasks •{" "}
|
||||
{tasks.filter((t) => t.status === TaskStatus.COMPLETED).length} completed
|
||||
</p>
|
||||
</div>
|
||||
<ToastProvider>
|
||||
<div className="min-h-screen bg-gray-100 dark:bg-gray-950 p-6">
|
||||
<div className="max-w-7xl mx-auto space-y-6">
|
||||
{/* Header */}
|
||||
<div className="bg-white dark:bg-gray-900 rounded-lg shadow-sm border border-gray-200 dark:border-gray-800 p-6">
|
||||
<h1 className="text-2xl font-bold text-gray-900 dark:text-gray-100">
|
||||
Kanban Board Demo
|
||||
</h1>
|
||||
<p className="mt-2 text-gray-600 dark:text-gray-400">
|
||||
Drag and drop tasks between columns to update their status.
|
||||
</p>
|
||||
<p className="mt-1 text-sm text-gray-500 dark:text-gray-500">
|
||||
{tasks.length} total tasks •{" "}
|
||||
{tasks.filter((t) => t.status === TaskStatus.COMPLETED).length} completed
|
||||
</p>
|
||||
</div>
|
||||
|
||||
{/* Kanban Board */}
|
||||
<KanbanBoard tasks={tasks} onStatusChange={handleStatusChange} />
|
||||
{/* Kanban Board */}
|
||||
<KanbanBoard tasks={tasks} onStatusChange={handleStatusChange} />
|
||||
</div>
|
||||
</div>
|
||||
</div>
|
||||
</ToastProvider>
|
||||
);
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user