trusty-mpm 0.9.0

trusty-mpm: unified multi-agent orchestration platform (core, daemon, CLI, TUI, Telegram)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271

//! Core scrubbing orchestration: [`scrub`], [`scrub_compat`], and helpers.
//!
//! Why: the public API and the rule-application loop belong together; the
//! regex constants and rule helpers live in their own files to keep each
//! unit under the SLOC cap.
//! What: [`scrub`] applies all rules in priority order and returns a
//! [`ScrubResult`]; [`scrub_compat`] is a legacy tuple wrapper; `scrub_inner`
//! and `build_summary` are the internal implementation helpers.
//! Test: `tests::scrub_result_summary`, `tests::clean_text_summary_is_nothing_redacted`.

use super::regexes::{
    RE_AWS_KEY, RE_BEARER, RE_CONN_STRING, RE_GITHUB_TOKEN, RE_GOOGLE_KEY, RE_JWT, RE_PEM,
    RE_SK_PREFIX, RE_SLACK_TOKEN,
};
use super::rules::{apply_regex, redact_env_kv, redact_posix_paths, redact_windows_paths};
use super::types::{MAX_BODY_BYTES, ScrubChange, ScrubResult};

/// Scrub a string of sensitive data, returning a [`ScrubResult`].
///
/// Why: all user-facing text in a bug report must be scrubbed before filing.
///      The caller applies this to each field (message, fields, file path,
///      body markdown) before building the preview and before filing.
/// What: applies redaction rules in order (most-specific secrets first, then
///       paths, then generic env-KV), then truncates to [`MAX_BODY_BYTES`].
///       Rules applied:
///   1. PEM private-key blocks (`-----BEGIN ... PRIVATE KEY-----`)
///   2. Bearer / Authorization header lines
///   3. `eyJ...` JWT-shaped strings
///   4. `sk-` / `sk-ant-` / `sk-or-` prefixed LLM API keys
///   5. GitHub token prefixes (`ghp_`, `gho_`, `ghu_`, `ghs_`, `ghr_`)
///   6. AWS access key IDs (`AKIA[0-9A-Z]{16}`)
///   7. Google API keys (`AIza[0-9A-Za-z_\-]{35}`)
///   8. Slack tokens (`xox[baprs]-`)
///   9. Connection strings with embedded credentials (`proto://user:pass@host`) // pragma: allowlist secret
///  10. Generic high-entropy secret assignments (KEY/SECRET/TOKEN/PASSWORD/…=value)
///  11. POSIX absolute paths (`/Users/`, `/home/`, etc.) → `~`
///  12. Windows absolute paths (`C:\…`) → `~`
///  13. `$HOME` environment variable expansion
///
///      Then truncates to [`MAX_BODY_BYTES`] UTF-8 bytes.
///
/// Test: individual rules covered by `tests::*`; combined in `tests::scrub_result_summary`.
pub fn scrub(text: &str) -> ScrubResult {
    let (cleaned, changes) = scrub_inner(text);
    let summary = build_summary(&changes);
    ScrubResult {
        text: cleaned,
        changes,
        redaction_summary: summary,
    }
}

/// Legacy two-tuple convenience wrapper used by the preview builder.
///
/// Why: the preview builder was written against the Phase 3 `scrub` signature
///      `(String, Vec<ScrubChange>)`. This wrapper avoids a large refactor while
///      the scrubber is being hardened; the preview builder can migrate to
///      [`scrub`] / [`ScrubResult`] in a follow-up.
/// What: calls [`scrub`] and unpacks into the old `(String, Vec<ScrubChange>)` pair.
/// Test: indirectly via all `preview` tests.
pub fn scrub_compat(text: &str) -> (String, Vec<ScrubChange>) {
    let result = scrub(text);
    (result.text, result.changes)
}

/// Internal implementation: returns the cleaned string and change list.
///
/// Why: separated from [`scrub`] so the summary can be built after all rules run.
/// What: applies each rule in priority order; each rule replaces matches with
///       a tagged redaction placeholder and records a [`ScrubChange`].
/// Test: via `scrub` public entry point.
fn scrub_inner(text: &str) -> (String, Vec<ScrubChange>) {
    let mut result = text.to_string();
    let mut changes: Vec<ScrubChange> = Vec::new();

    // Rule 1: PEM private-key blocks (highest priority — must remove whole blocks).
    let (r, n) = apply_regex(&result, &RE_PEM, "[REDACTED_PRIVATE_KEY]");
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "PemPrivateKey",
            hint: format!("{n} PEM private-key block(s) redacted"),
        });
    }

    // Rule 2: Bearer / Authorization headers.
    let (r, n) = apply_regex(&result, &RE_BEARER, "[REDACTED_TOKEN]");
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "BearerToken",
            hint: format!("{n} bearer/auth token(s) redacted"),
        });
    }

    // Rule 3: JWT-shaped strings.
    let (r, n) = apply_regex(&result, &RE_JWT, "[REDACTED_JWT]");
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "JwtToken",
            hint: format!("{n} JWT string(s) redacted"),
        });
    }

    // Rule 4: sk-* prefixed API keys.
    let (r, n) = apply_regex(&result, &RE_SK_PREFIX, "[REDACTED_API_KEY]");
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "SkApiKey",
            hint: format!("{n} sk-* API key(s) redacted"),
        });
    }

    // Rule 5: GitHub token prefixes.
    let (r, n) = apply_regex(&result, &RE_GITHUB_TOKEN, "[REDACTED_GITHUB_TOKEN]");
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "GithubToken",
            hint: format!("{n} GitHub token(s) redacted"),
        });
    }

    // Rule 6: AWS access key IDs.
    let (r, n) = apply_regex(&result, &RE_AWS_KEY, "[REDACTED_AWS_KEY]");
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "AwsKey",
            hint: format!("{n} AWS access key(s) redacted"),
        });
    }

    // Rule 7: Google API keys.
    let (r, n) = apply_regex(&result, &RE_GOOGLE_KEY, "[REDACTED_GOOGLE_KEY]");
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "GoogleKey",
            hint: format!("{n} Google API key(s) redacted"),
        });
    }

    // Rule 8: Slack tokens.
    let (r, n) = apply_regex(&result, &RE_SLACK_TOKEN, "[REDACTED_SLACK_TOKEN]");
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "SlackToken",
            hint: format!("{n} Slack token(s) redacted"),
        });
    }

    // Rule 9: Connection strings with embedded credentials.
    let (r, n) = apply_regex(&result, &RE_CONN_STRING, "[REDACTED_CONN_STRING]");
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "ConnString",
            hint: format!("{n} connection string(s) with credentials redacted"),
        });
    }

    // Rule 10: Generic env-KV secrets.
    let (r, n) = redact_env_kv(&result);
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "EnvSecret",
            hint: format!("{n} key=value secret(s) redacted"),
        });
    }

    // Rule 11: POSIX absolute paths.
    let (r, n) = redact_posix_paths(&result);
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "AbsolutePath",
            hint: format!("{n} absolute path(s) replaced with ~"),
        });
    }

    // Rule 12: Windows absolute paths.
    let (r, n) = redact_windows_paths(&result);
    if n > 0 {
        result = r;
        changes.push(ScrubChange {
            pattern: "WindowsPath",
            hint: format!("{n} Windows path(s) replaced with ~"),
        });
    }

    // Truncation.
    if result.len() > MAX_BODY_BYTES {
        let mut boundary = MAX_BODY_BYTES;
        while !result.is_char_boundary(boundary) {
            boundary -= 1;
        }
        result.truncate(boundary);
        result.push_str("\n\n[... truncated — body exceeded 16 KiB ...]");
        changes.push(ScrubChange {
            pattern: "Truncation",
            hint: format!("body truncated to {MAX_BODY_BYTES} bytes"),
        });
    }

    (result, changes)
}

/// Build a compact human-readable redaction summary string.
///
/// Why: the preview UI needs a one-liner like `"5 secrets, 2 paths redacted"`
///      that a user can scan at a glance without reading every change entry.
/// What: counts secret-type changes and path-type changes separately, then
///       formats them into a short English phrase; returns `"nothing redacted"`
///       when the change list is empty.
/// Test: `tests::scrub_result_summary`.
pub(super) fn build_summary(changes: &[ScrubChange]) -> String {
    const SECRET_PATTERNS: &[&str] = &[
        "BearerToken",
        "JwtToken",
        "SkApiKey",
        "GithubToken",
        "AwsKey",
        "GoogleKey",
        "SlackToken",
        "ConnString",
        "EnvSecret",
        "PemPrivateKey",
    ];
    const PATH_PATTERNS: &[&str] = &["AbsolutePath", "WindowsPath"];

    if changes.is_empty() || changes.iter().all(|c| c.pattern == "Truncation") {
        return "nothing redacted".to_string();
    }

    let secrets: usize = changes
        .iter()
        .filter(|c| SECRET_PATTERNS.contains(&c.pattern))
        .map(|c| {
            // Extract the count from the hint string (first token before space).
            c.hint
                .split_whitespace()
                .next()
                .and_then(|s| s.parse::<usize>().ok())
                .unwrap_or(1)
        })
        .sum();

    let paths: usize = changes
        .iter()
        .filter(|c| PATH_PATTERNS.contains(&c.pattern))
        .map(|c| {
            c.hint
                .split_whitespace()
                .next()
                .and_then(|s| s.parse::<usize>().ok())
                .unwrap_or(1)
        })
        .sum();

    match (secrets, paths) {
        (0, 0) => "nothing redacted".to_string(),
        (s, 0) => format!("{s} secret(s) redacted"),
        (0, p) => format!("{p} path(s) redacted"),
        (s, p) => format!("{s} secret(s), {p} path(s) redacted"),
    }
}