tmpl/multi-agent-mux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(security): implement FW-N5, FW-N6, FW-N7 (HMAC-SHA256 protocol docs, auto-generate token, replay attack defense)

Browse Source
This commit is contained in:
Godopu
2026-06-21 10:39:29 +00:00
parent 8a4067ca91
commit 6a88f10a74
7 changed files with 28 additions and 26 deletions
Download Patch File Download Diff File Expand all files Collapse all files
DONE.md
+3
View File
@@ -41,6 +41,9 @@
| FW-N3 | Update log string "auth_token mismatch" -> "HMAC verify failed" | `5258b50` | Hermes Direct | Updated drop log text in `job_subscriber.py` (PASS) |
| FW-N4 | Update HMAC technical description and rollout definition in `MESSAGING.md` §2.4 | `5258b50` | Hermes Direct | Updated report §2.4 (PASS) |
| Infra | Improve analysis infrastructure (implemented pane snapshotting to prevent truncation) | `5258b50` | Hermes Direct | Documented the 3 pane capture rules in delegate-job `SKILL.md` (PASS) |
| FW-N5 | Update `job-protocol.md` security protocol spec (to HMAC signatures) | `cc77cdd` | Hermes Direct | Documentation/Design consistency pass completed (PASS) |
| FW-N6 | Support auto-generated `auth_token` and CLI integration in `registry.py` | `cc77cdd` | Hermes Direct | Added `--auth-token` argument, auto-generation on secure broker detection (PASS) |
| FW-N7 | Prevent Replay Attacks via sequence monotonic increase validation in `job_subscriber.py` | `cc77cdd` | Hermes Direct | Added seq tracking in watcher to verify monotonic increase (PASS) |
---