Skip to content

Routing robustness, continued: constrain Unauthorized / KMS / mismatch (v0.6.8)#127

Merged
hxddh merged 1 commit into
mainfrom
claude/practical-euler-ihd2ht
Jun 21, 2026
Merged

Routing robustness, continued: constrain Unauthorized / KMS / mismatch (v0.6.8)#127
hxddh merged 1 commit into
mainfrom
claude/practical-euler-ihd2ht

Conversation

@hxddh

@hxddh hxddh commented Jun 21, 2026

Copy link
Copy Markdown
Owner

Finishes the routing-robustness pass started in v0.6.7 by constraining the three remaining bare signatures the v0.6.2 audit flagged. detect_domain only, guarded by routing-corpus (every golden case still recalls its skill top-2) and negative-corpus.

Constrained signals

  • Unauthorized (security): [/Unauthorized/i] matched any prose use ("unauthorized change to the wiki"). Now requires 401 Unauthorized or an access/request/operation/credential/signature neighbour.
  • KMS (security): [/KMS/i] matched any mention. Now requires the kms: action form or a crypto neighbour (key/encrypt/decrypt/SSE/cipher/CMK/GenerateDataKey) — an unrelated "KMS team roadmap" no longer routes to security.
  • mismatch (data-consistency): [/mismatch/i] matched "version mismatch" / "schema mismatch". Now requires a data neighbour (etag/checksum/hash/md5/content/object/data/digest/size/byte) — a "firmware version mismatch" no longer routes to data-consistency.

Safety

  • Three negative-corpus cases lock the new guards.
  • Verified the real forms still fire (401 Unauthorized, kms:GenerateDataKey, SSE-KMS … decrypt, ETag mismatch, checksum mismatch).
  • Verified the dependent golden cases (kms-denied-encrypt, multipart-etag-rechunk-mismatch) still route top-2.

Validation

All gates green; 219 pytest + 21 extension tests (incl. the 3 new negative-corpus cases + routing-corpus); 32/32 baselines 100% PASS. Version 0.6.7 → 0.6.8.

🤖 Generated with Claude Code


Generated by Claude Code

Finishes the v0.6.7 routing-robustness pass by constraining the last three bare
signatures from the v0.6.2 audit. detect_domain only; guarded by routing-corpus
(every golden case still top-2) and negative-corpus.

- Unauthorized (security): now requires "401 Unauthorized" or an access/request/
  operation/credential/signature neighbour (was bare, matched any prose).
- KMS (security): now requires the kms: action form or a crypto neighbour
  (key/encrypt/decrypt/SSE/cipher/CMK/GenerateDataKey) (was bare).
- mismatch (data-consistency): now requires a data neighbour (etag/checksum/hash/
  md5/content/object/data/digest/size/byte), so "version/schema mismatch" no longer
  misroutes (was bare).

Three negative-corpus cases lock the guards; verified the real forms still fire and
dependent golden cases (kms-denied-encrypt, multipart-etag-rechunk-mismatch) still
route.

Validation: all gates green; 219 pytest + 21 extension tests; 32/32 baselines PASS.
Version 0.6.7 -> 0.6.8.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Claude-Session: https://claude.ai/code/session_01QhkyBLeDtBTmvTdVBqgCAV
@chatgpt-codex-connector

Copy link
Copy Markdown

You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard.
To continue using code reviews, you can upgrade your account or add credits to your account and enable them for code reviews in your settings.

@hxddh hxddh merged commit 4f46d4e into main Jun 21, 2026
7 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants