Fix CodeRabbit findings #12

Merged

Snider merged 1 commit from agent/fix-coderabbit-findings--verify-each-aga into dev

2026-03-24 11:33:05 +00:00

Author	SHA1	Message	Date
Snider	36bf16b06e	fix(coderabbit): address review findings Some checks failed Security Scan / security (pull_request) Failing after 8s Details Test / test (pull_request) Failing after 4m46s Details - auth: prevent legacy .lthn fallback when .hash file exists but is unreadable or has unexpected format (security fix in verifyPassword and Login) - chachapoly: wrap raw error returns in Decrypt with coreerr.E() - trust: reject trailing data in LoadPolicies JSON decoder Co-Authored-By: Virgil <virgil@lethean.io>	2026-03-17 13:32:21 +00:00

Author

SHA1

Message

Date

Snider

36bf16b06e

fix(coderabbit): address review findings

Security Scan / security (pull_request) Failing after 8s

Details

Test / test (pull_request) Failing after 4m46s

Details

- auth: prevent legacy .lthn fallback when .hash file exists but is
  unreadable or has unexpected format (security fix in verifyPassword
  and Login)
- chachapoly: wrap raw error returns in Decrypt with coreerr.E()
- trust: reject trailing data in LoadPolicies JSON decoder

Co-Authored-By: Virgil <virgil@lethean.io>

2026-03-17 13:32:21 +00:00