What is the problem

Two critical vulnerabilities in the plugin execution pipeline:

#202 — Remote Code Execution via unverified parser.py execution
executor.py::_parse_results() dynamically loaded and executed each plugin's parser.py via importlib.exec_module() without re-verifying the file's integrity at execution time. The integrity check in _verify_plugin_integrity() runs only at plugin load time (startup or per-request in debug mode). Any modification to parser.py after that check — whether by a compromised process, a TOCTOU race, or a supply-chain edit — would be silently executed with full Python interpreter access. Additionally, with SECUSCAN_ENFORCE_PLUGIN_SIGNATURES=false (the default), plugins with no checksum at all were executed without any verification gate at execution time.

#201 — Command argument injection via scan_type, ports, speed inputs
build_command() interpolated user-supplied string values directly into the CLI argument list with no type or content validation. Because asyncio.create_subprocess_exec passes each list element as a separate argv entry, a value like --script=evil.nse supplied for the ports field would land in the subprocess argv as a standalone flag that tools like nmap interpret as --script. Additionally, PortScanner.run() was constructing nmap inputs with malformed values: scan_type="-sV" (rejected by the nmap plugin's select field) and ports="--top-ports 100" (a flag string, not a port range), both of which would themselves have triggered injection.

What was changed

backend/secuscan/plugins.py

• Added _PORT_SPEC_PATTERN constant: ^[\d,\-]+$
• Added verify_parser_at_exec_time(plugin, plugin_dir): re-computes the combined metadata+parser digest with compute_plugin_digest() immediately before execution and compares it to the stored checksum. When enforce_plugin_signatures=True and no checksum is present, execution is refused outright.
• Added _validate_inputs_against_schema(plugin, inputs): enforces declared field types (select allowed-value set, integer parseability, regex patterns from field.validation.pattern) and calls _reject_injected_args() on all string/text fields.
• Added _reject_injected_args(field_id, value): for ports/port fields, rejects any value not matching ^[\d,\-]+$; for all other string fields, rejects values beginning with -.
• build_command() now calls _validate_inputs_against_schema() on raw inputs before _normalize_inputs() so that select-field alias checks see the original value, not the resolved path.

backend/secuscan/executor.py

• In _parse_results(), calls plugin_manager.verify_parser_at_exec_time() before exec_module(). On failure the custom parser is skipped and execution falls through to built-in parsers.

backend/secuscan/scanners/port_scanner.py

• Added _resolve_scan_type(raw): maps nmap-style flags (-sV, -sS) and full strings to the single-letter codes (S, T, U) declared in the nmap plugin's select field.
• Added _resolve_ports(raw): maps convenience shorthands (top100, top1000, all) to numeric port ranges that pass the port-spec validator.
• Removed the unused speed field; added service_detection and os_detection fields.

testing/backend/unit/test_plugin_parser_security.py (new, 35 tests)

• Parser integrity: TOCTOU tamper detection, enforcement mode, missing checksum, digest failure
• Input schema validation: select rejection, port injection, leading-dash injection, pattern enforcement, integer type
• PortScanner normalisation: parametric scan-type and ports mapping, schema-pass regression checks

Why this approach

The parser integrity check is placed at the point of execution rather than only at load time because load-time checks cannot prevent modification that occurs in the window between startup and when a task actually runs. hmac.compare_digest prevents timing-side-channel leakage.

Input validation fires before normalization in build_command() so select-field values are compared against declared options before path resolution, and it covers every code path that builds a command.

How to test

1. Start the backend: uvicorn backend.secuscan.main:app --reload
2. Attempt a scan with ports="--script=malicious.nse" — expect HTTP 400 "Invalid port specification"
3. Attempt scan_type="-sS --evil" — expect HTTP 400 "not in the allowed set"
4. Modify any plugin's parser.py while the server runs, trigger a scan — observe "Parser integrity check FAILED" in logs and graceful fallback to built-in parsing
5. Set SECUSCAN_ENFORCE_PLUGIN_SIGNATURES=true, remove checksum from a plugin's metadata — parser execution refused
6. Run ./testing/test_python.sh — all 35 new unit tests pass

Edge cases covered

• TOCTOU: parser tampered after load but before execution is caught at exec time
• Enforcement mode with missing checksum: blocked at exec time
• Enforcement mode with valid checksum: passes cleanly
• Digest computation failure (missing file): treated as tamper and refused
• Port injection via --flag=value or -flag prefix: rejected by port-spec pattern
• General string field flag injection via leading -: rejected
• Invalid select values: rejected by allowed-set check
• Invalid integer fields: rejected before reaching CLI
• Wordlist alias resolution: validated before normalization, not after
• PortScanner legacy shorthands normalized to schema-valid values

Verification

• Root cause fully resolved
• All edge cases handled
• No regressions introduced
• Existing tests pass
• Code matches project style and conventions

Labels: type:security + level:critical + gssoc:approved

Please assign this PR to me under GSSoC 2026.

Closes #201
Closes #202