firefrost-gaming/antigravity-skills-reference
3
0
Fork 0
Code Issues Pull Requests Actions 4 Packages Projects Releases Wiki Activity
Files
4883b0dbb4119db3503217bf26397bf7afa33f93
antigravity-skills-reference/docs/maintainers/security-findings-triage-2026-03-18-addendum.md
sickn33 4883b0dbb4 fix(security): Harden skill activation and loading flows 
Harden batch activation, dev refresh gating, Microsoft sync path
handling, and Jetski skill loading against command injection,
symlink traversal, and client-side star tampering.

Add regression coverage for the security-sensitive paths and
update the internal triage addendum for the Jetski loader fix.
2026-03-18 18:49:15 +01:00

879 B
Raw Blame History

Security Findings Triage Addendum (2026-03-18)

This addendum supersedes the previous Jetski loader assessment in security-findings-triage-2026-03-15.md.

Correction

  • Finding: Example loader trusts manifest paths, enabling file read
  • Path: docs/integrations/jetski-gemini-loader/loader.ts
  • Previous triage status on 2026-03-15: obsolete/not reproducible on current HEAD
  • Corrected assessment: the loader was still reproducible via a symlinked SKILL.md that resolved outside skillsRoot. A local proof read the linked file contents successfully.

Current Status

  • The loader now rejects symlinked skill directories and symlinked SKILL.md files.
  • The loader now resolves the real path for SKILL.md and rejects any target outside the configured skillsRoot.
  • Regression coverage lives in tools/scripts/tests/jetski_gemini_loader.test.js.
Reference in New Issue View Git Blame Copy Permalink