Skip to content

feat(supply-chain): add runtime package audit#689

Merged
XingYu-Zhong merged 1 commit into
KunAgent:developfrom
luoye520ww:codex/supply-chain-runtime-audit
Jul 3, 2026
Merged

feat(supply-chain): add runtime package audit#689
XingYu-Zhong merged 1 commit into
KunAgent:developfrom
luoye520ww:codex/supply-chain-runtime-audit

Conversation

@luoye520ww

Copy link
Copy Markdown
Collaborator

Summary

Changes

  • Adds a pure supply-chain audit module for exact-version checks, downloaded-byte SHA-256 verification, runtime-owned publisher signature verification, sensitive permission consent, and update decisions.
  • Adds a runtime-owned publisher trust store abstraction that fails closed when no trusted key is configured.
  • Exposes POST /v1/supply-chain/audit and POST /v1/supply-chain/update-check, and models them in the main IPC runtimeRequest allowlist.

Why this differs from closed #671

#671 mixed runtime audit APIs with Marketplace install changes. #673 already merged the enforceable Marketplace package pinning / config validation part. This PR deliberately does not audit the renderer MCP config text as if it were downloaded package bytes; the runtime audit only verifies actual provided package bytes and runtime-owned publisher keys.

Tests

  • npm.cmd --prefix kun test -- package-audit.test.ts publisher-trust-store.test.ts supply-chain.test.ts
  • npm.cmd test -- src/main/ipc/app-ipc-schemas.test.ts
  • npm.cmd --prefix kun run typecheck
  • npm.cmd run typecheck
  • focused eslint
  • npm.cmd --prefix kun run build
  • git diff --check

@luoye520ww luoye520ww marked this pull request as ready for review July 1, 2026 17:12
@luoye520ww luoye520ww force-pushed the codex/supply-chain-runtime-audit branch from 0083ced to 0892736 Compare July 1, 2026 18:11

@XingYu-Zhong XingYu-Zhong left a comment

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewed locally. Focused supply-chain audit, trust-store, and IPC schema tests passed; no blocking issues found.

@XingYu-Zhong XingYu-Zhong merged commit 5353432 into KunAgent:develop Jul 3, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants