Skip to content

Feat/hcg smoke unknown path canary#239

Closed
hyperpolymath wants to merge 5 commits into
mainfrom
feat/hcg-smoke-unknown-path-canary
Closed

Feat/hcg smoke unknown path canary#239
hyperpolymath wants to merge 5 commits into
mainfrom
feat/hcg-smoke-unknown-path-canary

Conversation

@hyperpolymath

@hyperpolymath hyperpolymath commented Jun 24, 2026

Copy link
Copy Markdown
Owner

Summary

Changes

RSR Quality Checklist

Required

  • Tests pass (just test or equivalent)
  • Code is formatted (just fmt or equivalent)
  • Linter is clean (no new warnings or errors)
  • No banned language patterns (no TypeScript, no npm/bun, no Go/Python)
  • No unsafe blocks without // SAFETY: comments
  • No banned functions (believe_me, unsafeCoerce, Obj.magic, Admitted, sorry)
  • SPDX license headers present on all new/modified source files
  • No secrets, credentials, or .env files included

As Applicable

  • .machine_readable/STATE.a2ml updated (if project state changed)
  • .machine_readable/ECOSYSTEM.a2ml updated (if integrations changed)
  • .machine_readable/META.a2ml updated (if architectural decisions changed)
  • Documentation updated for user-facing changes
  • TOPOLOGY.md updated (if architecture changed)
  • CHANGELOG or release notes updated
  • New dependencies reviewed for license compatibility (MPL-2.0 / MPL-2.0)
  • ABI/FFI changes validated (src/abi/ and ffi/zig/ consistent)

Testing

Screenshots

hyperpolymath and others added 5 commits June 14, 2026 15:47
@hyperpolymath @claude
feat(scripts): hcg-policy-smoke.sh — unknown-path default-deny canary…
ccd31df 
… (Phase E)

Adds one new probe to `scripts/hcg-policy-smoke.sh` so the §1.5 operator
pre-check isolates the no-match → default-deny branch of the gateway's
three-tier lookup (exact → regex → global) at the `{:error, :no_match}`
clause in `http-capability-gateway/lib/http_capability_gateway/gateway.ex`.

Before this PR the smoke script's verb-canary block covered six
unknown-method regressions (DELETE/PUT/PATCH on listed exact paths,
OPTIONS on a listed path, DELETE on a regex-matched route, GET on a
POST-only public route). All six exercise a known path with a verb
outside `global_verbs`. None of them exercises the symmetric pathway: a
verb that *is* in `global_verbs` against a path that has no matching
rule at all. That branch is independently possible to break (a regression
in the global-fallback handling alone would leak there without
triggering any of the existing canaries) so the operator pre-check now
fails closed on both classes.

The new probe targets `GET /__phase-e-canary-unknown-path__` — a
synthetic path that cannot collide with any real route in
`config/gateway-policy-boj.yaml` or any future addition (the prefix is
reserved for this probe by the comment in the script). GET is in
`global_verbs`, so the only way this can default-deny is the no-match
branch.

Runbook §1.5 prose updated to describe the new canary alongside the
existing verb canaries; version bumped 0.5 → 0.6. The §1.5 checkbox
itself stays open — it requires the operator to actually run the script
against staging, which is unchanged.

`bash -n scripts/hcg-policy-smoke.sh` passes. No Elixir / Idris / CI
workflow files touched.

Refs hyperpolymath/standards#91
Refs hyperpolymath/standards#100

(Per rollout runbook §6.5 — single-lane channel discipline — this PR
deliberately does NOT `Closes #100`. Phase E close is owner-driven and
gated on §3.3 (100% soak), §6.4 (Trustfile flip), and cerro-torre
`.ctp` signing. Each Phase E sub-task PR is a `Refs`-only advance.)

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
@hyperpolymath
fix(ci): repair bridge boot gates
b53bba6
@hyperpolymath
ci: adopt standards reusable workflows for Scorecard, Hypatia, and Go…
5e9ef53 
…vernance
@hyperpolymath
ci: adopt standards reusable workflows for Scorecard, Hypatia, and Go…
fb516fa 
…vernance
@hyperpolymath
ci: adopt standards reusable workflows for Scorecard, Hypatia, and Go…
595f3b1 
…vernance
@hyperpolymath hyperpolymath enabled auto-merge (squash) June 24, 2026 10:52
@hyperpolymath hyperpolymath disabled auto-merge June 24, 2026 11:26
@hyperpolymath hyperpolymath enabled auto-merge (rebase) June 24, 2026 11:26
@hyperpolymath

hyperpolymath commented Jun 24, 2026

Copy link
Copy Markdown
Owner Author

Closing as superseded by current main: the HCG unknown-path canary and runbook update are present, and the bridge boot/runtime fixes from this branch have also landed. Main additionally preserves the newer workflow wrapper pins and stealth-profile canary work, so merging this older branch would regress CI/workflow state.

auto-merge was automatically disabled June 24, 2026 11:30

Pull request was closed

@hyperpolymath hyperpolymath deleted the feat/hcg-smoke-unknown-path-canary branch June 24, 2026 11:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@hyperpolymath