TopherMayor/zeroclaw
1
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity
Files
6776373e8ef8db23eae68f779b6b6bac4b1888bf
zeroclaw/src/security
History
fettpl 6776373e8e fix: constant_time_eq no longer leaks secret length via early return 
Remove the early return on length mismatch that leaked length
information via timing. Now iterates over max(a.len(), b.len()),
padding the shorter input with zeros, and checks both byte-level
differences and length equality at the end.

Closes #57

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-15 00:01:23 +01:00
..
mod.rs
feat: add Composio tool provider + encrypted secret store + wizard integration
2026-02-14 02:41:29 -05:00
pairing.rs
fix: constant_time_eq no longer leaks secret length via early return
2026-02-15 00:01:23 +01:00
policy.rs
feat: enhance agent personality, tool guidance, and memory hygiene
2026-02-14 11:28:39 -05:00
secrets.rs
fix: constant_time_eq no longer leaks secret length via early return
2026-02-15 00:01:23 +01:00