ClaudeKit Blender MCP

Overview Schema Related Servers Score Discussions

researcher-02-security-validation.md•25 kB

# Exhaustive Security & Validation Bug Investigation Report **Date:** 2025-11-30 **Scope:** ClaudeKit Blender MCP - Security vulnerabilities, validation gaps, buffer/DOS risks **Severity Scale:** Critical (immediate risk) | High (significant risk) | Medium (moderate risk) | Low (minor risk) --- ## Executive Summary Investigated 6 core utility modules and 10 tool implementations. Found **8 critical/high severity bugs** including: - Path traversal bypass in filePathSchema - Cache key collision vulnerability - Integer overflow in rate limiting calculations - Unbounded buffer accumulation in socket client - Regex ReDoS vulnerabilities - Time-based race conditions --- ## CRITICAL BUGS ### BUG-001: Path Traversal Validation Bypass **Location:** `src/utils/validators.ts`, lines 45-51 (filePathSchema) **Root Cause:** The regex validation uses a blacklist approach that can be bypassed with double encoding: ```typescript .regex(/^[a-zA-Z0-9_\-./]+$/, 'Invalid characters in file path') .refine(path => !path.includes('..'), 'Path traversal not allowed') ``` **Attack Vector:** - `../../../etc/passwd` is blocked (contains `..`) - But `..%2F..%2F..%2Fetc%2Fpasswd` passes if decoded later by file system - Or using URL encoding bypass: `..%2f` when consumed by different layers - Dot-slash combinations: `.\./.\./` might bypass depending on normalization **Severity:** **CRITICAL** **Impact:** - Read/write arbitrary files outside project directory - Potential data exfiltration or code injection - File system access violations **Proposed Fix:** ```typescript export const filePathSchema = z.string() .min(1, 'File path required') .max(512, 'File path too long') .regex(/^[a-zA-Z0-9_\-./]+$/, 'Invalid characters in file path') .transform(path => { // Normalize: decode, canonicalize, remove null bytes let normalized = decodeURIComponent(path); normalized = normalized.replace(/\\/g, '/'); normalized = path.resolve(normalized).replace(process.cwd() + '/', ''); return normalized; }) .refine(path => !path.includes('..'), 'Path traversal detected') .refine(path => !path.startsWith('/'), 'Absolute paths not allowed') .refine(path => !path.includes('\0'), 'Null bytes not allowed'); ``` --- ### BUG-002: Cache Key Collision via Regex Injection **Location:** `src/utils/cache.ts`, lines 127-143 (invalidatePattern) **Root Cause:** Accepts user-controlled regex strings without validation/escaping: ```typescript invalidatePattern(pattern: string | RegExp): number { const regex = typeof pattern === 'string' ? new RegExp(pattern) // USER CONTROL - NO ESCAPING : pattern; ``` **Attack Vector:** - Caller passes malicious regex: `'.*'` → invalidates entire cache - Pattern `'object:.*'` could match `'object:name:info'` and `'object:admin:secret'` unintentionally - Cache keys from objects with special names: `'object:a|b:info'` with pattern `'object:(a|b):info'` **Severity:** **HIGH** **Impact:** - Denial of Service via cache invalidation - Cache poisoning (invalidate critical cached values) - Performance degradation **Proposed Fix:** ```typescript invalidatePattern(pattern: string | RegExp): number { let regex: RegExp; if (typeof pattern === 'string') { // Escape special regex characters const escaped = pattern.replace(/[.*+?^${}()|[\]\\]/g, '\\$&'); regex = new RegExp(escaped); } else { regex = pattern; } // ... rest of implementation } ``` --- ### BUG-003: Unbounded Buffer Accumulation in Socket Client **Location:** `src/utils/socket-client.ts`, lines 101-147 (receiveFullResponse) **Root Cause:** Buffer accumulates indefinitely without size limit; malicious/faulty server can exhaust memory: ```typescript const onData = (chunk: Buffer) => { buffer += chunk.toString('utf-8'); // NO SIZE CHECK try { JSON.parse(buffer); // Success - complete JSON received cleanup(); resolve(buffer); } catch { // Incomplete JSON - wait for more data } }; ``` **Attack Scenario:** 1. Client sends valid request 2. Server sends infinite garbage data (not valid JSON) 3. Buffer grows: 1MB → 100MB → 1GB 4. Node.js process crashes with OOM 5. Application becomes unavailable **Severity:** **CRITICAL** **Impact:** - Denial of Service (memory exhaustion) - Process crash - Service interruption - No protection if Blender addon is malicious/compromised **Proposed Fix:** ```typescript private async receiveFullResponse(socket: net.Socket): Promise<string> { const MAX_BUFFER_SIZE = 50 * 1024 * 1024; // 50MB limit return new Promise((resolve, reject) => { let buffer = ''; let totalBytes = 0; const onData = (chunk: Buffer) => { totalBytes += chunk.length; if (totalBytes > MAX_BUFFER_SIZE) { cleanup(); reject(new Error(`Buffer exceeded max size: ${MAX_BUFFER_SIZE} bytes`)); socket.destroy(); return; } buffer += chunk.toString('utf-8'); try { JSON.parse(buffer); cleanup(); resolve(buffer); } catch { // Continue accumulating } }; // ... rest of handlers }); } ``` --- ### BUG-004: Integer Overflow in Rate Limiting Token Calculation **Location:** `src/utils/rate-limiter.ts`, lines 57-61 **Root Cause:** Token refill calculation uses floating-point arithmetic without bounds checking: ```typescript const timePassed = now - bucket.lastRefill; const tokensToAdd = (timePassed / 60000) * limit; // UNBOUNDED FLOAT bucket.tokens = Math.min(limit, bucket.tokens + tokensToAdd); ``` **Vulnerability:** - When `timePassed` is very large (e.g., server clock skew, or milliseconds overflow in year 2286) - `tokensToAdd` becomes infinite or NaN - `bucket.tokens` becomes NaN, bypassing rate limits - `Math.min(limit, NaN)` returns `NaN` - All subsequent `bucket.tokens < 1` checks fail (NaN < 1 is false) **Attack Scenario:** ```javascript // Server clock skew: timePassed = 1e15 ms (32k years) const tokensToAdd = (1e15 / 60000) * 60 = 1e12; // HUGE NUMBER bucket.tokens = Math.min(60, 0 + 1e12) = 60; // OK actually // But with negative tokens: bucket.tokens = Math.min(60, -100 + 1e12) = 60; // Rolls over // Or direct NaN path: bucket.tokens = Math.min(60, NaN) = NaN; if (NaN < 1) { /* FALSE - BYPASS */ } ``` **Severity:** **HIGH** **Impact:** - Rate limiting bypass under clock skew conditions - Potential DoS if Blender addon clock is tampered with - Silent failure (no error, just allows requests) **Proposed Fix:** ```typescript const timePassed = Math.max(0, now - bucket.lastRefill); // Prevent negative const tokensToAdd = (timePassed / 60000) * limit; const validTokens = isFinite(tokensToAdd) ? tokensToAdd : 0; // Check for infinity/NaN bucket.tokens = Math.min(limit, bucket.tokens + validTokens); bucket.tokens = Number.isFinite(bucket.tokens) ? bucket.tokens : limit; // Fallback ``` --- ## HIGH SEVERITY BUGS ### BUG-005: Regex Denial of Service (ReDoS) in Code Validation **Location:** `src/tools/scripting.ts`, lines 17-30 (DANGEROUS_PATTERNS) **Root Cause:** Regular expressions use loose matching with potential catastrophic backtracking: ```typescript { pattern: /\bopen\s*\([^)]*['"][wa]/i, description: 'File write operation' }, // ^ Allows arbitrary whitespace, then [^)]* with nested quotes ``` **Attack Input:** ```python open( (((((((((((((((((((((((((((((((x # Pattern tries: \b → 'open' → \s* → ( → [^)]* matches everything... # Then backtracks when no [wa] quote found ``` **Severity:** **HIGH** **Impact:** - ReDoS: Code validation hangs/freezes - Timeout protection: 180s limit (excessive) - Blocks legitimate large codebases **Proposed Fix:** ```typescript const DANGEROUS_PATTERNS = [ { pattern: /\bos\.system\s{0,5}\(/i, description: 'System command execution' }, // Use bounded whitespace ↑ { pattern: /\bopen\s{0,5}\(\s*(?:'|")[wa]/i, description: 'File write operation' }, // Reorder: quote must come sooner ]; ``` --- ### BUG-006: Cache TTL Integer Overflow **Location:** `src/utils/cache.ts`, lines 88-92 **Root Cause:** TTL is stored as milliseconds; no validation on input ttlSeconds: ```typescript const entry: CacheEntry<T> = { value, timestamp: Date.now(), ttl: (ttlSeconds || this.config.ttlSeconds) * 1000, // NO BOUNDS CHECK hits: 0 }; ``` **Attack Scenario:** ```javascript cache.set('key', value, Number.MAX_SAFE_INTEGER); // ttl = 9007199254740991 * 1000 = Infinity (overflow) // isExpired() always returns false // Entry never expires, cache grows unbounded ``` **Severity:** **MEDIUM** (requires malicious caller, but impacts cache stability) **Impact:** - Memory leak via unbounded cache growth - Cache entries never expire - Stale data served indefinitely **Proposed Fix:** ```typescript set<T>(key: string, value: T, ttlSeconds?: number): void { if (!this.config.enabled) return; if (this.cache.size >= this.config.maxEntries) { this.evictLRU(); } // Validate and cap TTL const maxTtlSeconds = 86400; // 1 day max const validTtl = ttlSeconds ? Math.min(ttlSeconds, maxTtlSeconds) : this.config.ttlSeconds; const validTtlMs = Math.min(validTtl * 1000, Number.MAX_SAFE_INTEGER); const entry: CacheEntry<T> = { value, timestamp: Date.now(), ttl: validTtlMs, hits: 0 }; this.cache.set(key, entry); } ``` --- ### BUG-007: Configuration Validation Bypass via parseEnvNumber **Location:** `src/utils/config.ts`, lines 77-82 **Root Cause:** parseEnvNumber silently returns default on NaN without validation: ```typescript function parseEnvNumber(key: string, defaultValue: number): number { const value = process.env[key]; if (!value) return defaultValue; const parsed = parseInt(value, 10); return isNaN(parsed) ? defaultValue : parsed; } ``` **Issues:** 1. `parseInt('999999999999999999', 10)` returns `999999999999999999` (exceeds Number limits) 2. `parseInt('1.5e10', 10)` returns `1` (scientific notation ignored) 3. `parseInt('', 10)` returns `NaN` (falsy check above prevents it, but regex parsing can inject) 4. No range validation after parsing **Attack Scenario:** ```bash BLENDER_PORT=999999 node app.js # port becomes 999999 (invalid, but socket.connect accepts any number) # Results in connection failure, not caught RATE_LIMIT_MAX_CONCURRENT=1000000 node app.js # Bypasses the `max 50` constraint from schema # Config schema not re-validated! ``` **Severity:** **HIGH** **Impact:** - Config schema validation bypassed - Out-of-range values accepted - Unexpected behavior (ports > 65535, negative limits) **Proposed Fix:** ```typescript function parseEnvNumber(key: string, defaultValue: number): number { const value = process.env[key]; if (!value) return defaultValue; const parsed = parseInt(value, 10); if (isNaN(parsed)) return defaultValue; // Validate it's a safe integer if (!Number.isSafeInteger(parsed)) return defaultValue; return parsed; } // And after buildConfig(), re-validate: function buildConfig(): Config { const rawConfig = { /* ... */ }; // ConfigSchema will validate ALL values, catching out-of-range numbers return ConfigSchema.parse(rawConfig); // Already done, but good to confirm } ``` --- ### BUG-008: searchQuerySchema Regex Too Permissive **Location:** `src/utils/validators.ts`, lines 85-90 **Root Cause:** Query regex allows hyphens and commas but no validation against ReDoS or SQL injection in downstream: ```typescript export const searchQuerySchema = z.string() .min(1, 'Search query required') .max(200, 'Search query too long') .regex(/^[a-zA-Z0-9\s\-_.,]+$/, 'Invalid characters in search query') .transform(query => query.trim()) ``` **Issues:** 1. No SQL injection protection in downstream code (external APIs) 2. Regex is safe (no ReDoS), but semantics allow injection in URL parameters 3. Commas not escaped in CSV/API contexts **Severity:** **MEDIUM** **Impact:** - Injection into external API calls (PolyHaven, Sketchfab) - Potential API manipulation or information disclosure - Depends on downstream usage **Proposed Fix:** ```typescript export const searchQuerySchema = z.string() .min(1, 'Search query required') .max(200, 'Search query too long') .regex(/^[a-zA-Z0-9\s\-_.,]+$/, 'Invalid characters in search query') .transform(query => { // Remove control characters return query.trim().replace(/[\x00-\x1f\x7f]/g, ''); }) // URL encode in downstream before passing to APIs ``` --- ## MEDIUM SEVERITY BUGS ### BUG-009: Socket Timeout Not Reset on Data Receive **Location:** `src/utils/socket-client.ts`, lines 32, 101-147 **Root Cause:** Socket timeout is set once at connection; not reset when data arrives. Large responses timeout unnecessarily: ```typescript socket.setTimeout(this.timeout); // Line 32: Set once, never reset const onData = (chunk: Buffer) => { buffer += chunk.toString('utf-8'); // No socket.setTimeout(0) or socket.setTimeout(this.timeout) to reset }; ``` **Scenario:** - Connection timeout: 180 seconds total (including data transfer) - Large response: 50MB → takes 30 seconds to stream - If initial chunk arrives in 5 seconds, but total streaming takes 190 seconds - Timeout fires at 180s mark, connection closes mid-transfer **Severity:** **MEDIUM** **Impact:** - Large asset imports fail with timeout - Unreliable for big files - Silent failure (timeout error, not clear why) **Proposed Fix:** ```typescript const onData = (chunk: Buffer) => { // Reset timeout on every data chunk socket.setTimeout(this.timeout); totalBytes += chunk.length; if (totalBytes > MAX_BUFFER_SIZE) { // ... error handling } // ... rest }; ``` --- ### BUG-010: Rate Limiter Cleanup Race Condition **Location:** `src/utils/rate-limiter.ts`, lines 212-225 **Root Cause:** Cleanup runs every 60 seconds and deletes old buckets; no mutex/lock. Race condition if check/cleanup concurrent: ```typescript setInterval(() => this.cleanup(), 60000); private cleanup(): void { const now = Date.now(); const staleThreshold = 5 * 60 * 1000; for (const [key, bucket] of this.buckets.entries()) { if (now - bucket.lastRefill > staleThreshold) { this.buckets.delete(key); // NO LOCK } } } // Meanwhile, checkLimit() runs concurrently: checkLimit(key: string): RateLimitResult { // ... const bucket = this.buckets.get(key); // RACE: bucket deleted during cleanup? } ``` **Race Condition:** 1. Thread A: cleanup() starts iterating buckets 2. Thread B: checkLimit() calls getBucket(key), creates new bucket 3. Thread A: continues deletion, deletes B's newly-created bucket 4. Thread B: uses deleted bucket, inconsistent state **Severity:** **MEDIUM** **Impact:** - Race condition (low probability in single-threaded Node, high in worker threads) - Silent corruption of rate limit state - Unpredictable behavior **Proposed Fix:** ```typescript class RateLimiter { private isCleaningUp = false; private cleanup(): void { if (this.isCleaningUp) return; // Prevent concurrent cleanup this.isCleaningUp = true; try { const now = Date.now(); const staleThreshold = 5 * 60 * 1000; for (const [key, bucket] of this.buckets.entries()) { if (now - bucket.lastRefill > staleThreshold) { this.buckets.delete(key); } } } finally { this.isCleaningUp = false; } } } ``` --- ## ADDITIONAL FINDINGS (LOWER PRIORITY) ### BUG-011: filePathSchema Allows Dot Files **Location:** `src/utils/validators.ts`, lines 45-51 **Issue:** Pattern `/^[a-zA-Z0-9_\-./]+$/` allows starting with dot: `.ssh/id_rsa`, `..git/config` **Severity:** LOW-MEDIUM **Fix:** Add refine check: `.refine(path => !path.match(/^\.+/), 'Hidden files not allowed')` --- ### BUG-012: Dangerous Patterns Can Be Evaded **Location:** `src/tools/scripting.ts`, lines 18-30 **Issue:** - `os .system()` (space before dot) bypasses `\bos\.system` - `(__import__)()` (parentheses) bypasses `__import__\s*\(` - `os['system']()` (bracket notation) not detected - `exec = __builtins__['eval']; exec(code)` (indirection) **Severity:** MEDIUM **Fix:** Implement AST parsing or more comprehensive pattern list: ```typescript // Add whitespace-tolerant patterns { pattern: /\bos\s*\.\s*system/i, description: 'OS system call' }, { pattern: /\b__builtins__/i, description: 'Builtins access' }, { pattern: /\[.*['"]system['"]\]/i, description: 'Bracket notation for system' }, ``` --- ### BUG-013: tagsSchema Max Doesn't Validate Empty Array **Location:** `src/utils/validators.ts`, lines 168-175 **Issue:** ```typescript export const tagsSchema = z.array(z.string()...) .max(20, 'Maximum 20 tags') .default([]) // Empty array is valid and allowed ``` Empty tags array is valid (expected), but could silently drop malicious tags if count > 20 without warning. **Severity:** LOW --- ### BUG-014: base64Schema Insufficient Validation **Location:** `src/utils/validators.ts`, lines 133-136 **Issue:** Regex `/^[A-Za-z0-9+/]*={0,2}$/` is correct but doesn't validate: - Invalid base64 padding (e.g., `'==='` is invalid) - Doesn't validate decoded size (could be 1MB of binary) - No check for actual valid base64 structure **Severity:** LOW-MEDIUM **Fix:** Add custom validation: ```typescript .refine((b64) => { const len = b64.length; if (len % 4 !== 0) return false; // Valid base64 is multiple of 4 return true; }, 'Invalid base64 padding') ``` --- ### BUG-015: Cache Hit Count Integer Overflow **Location:** `src/utils/cache.ts`, lines 67-68 **Issue:** ```typescript entry.hits++; // No overflow check ``` If entry accessed `Number.MAX_SAFE_INTEGER` times, overflows. Low probability but possible in long-running processes. **Severity:** LOW --- ## CONFIGURATION VALIDATION GAPS ### GAP-001: Port Range Not Validated **Location:** `src/utils/config.ts`, line 19 Schema allows: `z.number().int().min(1).max(65535)` But parseEnvNumber (line 80) can return any integer. Schema is applied, so actually OK. **Status:** MITIGATED ✓ --- ### GAP-002: No Validation of Allowed Python Modules **Location:** `src/utils/config.ts`, lines 55, 140-141 ```typescript allowedPythonModules: z.array(z.string()).default([...]) ``` No validation that modules exist or are safe. Could include malicious module names. However, this is passed to Blender addon, which controls actual import. **Severity:** LOW --- ## EDGE CASES IN VALIDATORS ### EDGE-001: objectNameSchema - Unicode Characters **Pattern:** `/^[a-zA-Z0-9_]+$/` only accepts ASCII **Issue:** Blender object names support Unicode. Valid Blender name `'オブジェクト'` is rejected. **Severity:** LOW (intentional restriction for safety) --- ### EDGE-002: vector3Schema - Infinity Values **Pattern:** `z.number()` (unbounded) **Issue:** Allows `[Infinity, -Infinity, NaN]`. Should validate finite values. **Proposed Fix:** ```typescript export const vector3Schema = z.tuple([ z.number().finite(), z.number().finite(), z.number().finite() ]) ``` **Severity:** MEDIUM (could crash Blender with invalid transforms) --- ### EDGE-003: colorSchema - NaN Values **Pattern:** `z.number().min(0).max(1)` doesn't reject NaN **Issue:** `[NaN, 0, 0, 1]` passes validation (NaN comparisons are always false). Blender crashes. **Proposed Fix:** ```typescript export const colorSchema = z.tuple([ z.number().min(0).max(1).finite(), z.number().min(0).max(1).finite(), z.number().min(0).max(1).finite(), z.number().min(0).max(1).finite() ]) ``` **Severity:** MEDIUM --- ### EDGE-004: screenshotSizeSchema - Boundary Values **Pattern:** `min(100).max(800)` **Issue:** `100` and `800` are valid, but what about `99.9`? Already rejected (int check). **Status:** OK ✓ --- ### EDGE-005: searchLimitSchema - Zero Not Checked **Pattern:** `z.number().int().min(1)...max(100)` **Issue:** `searchLimitSchema.safeParse(0)` fails correctly, but error message could be clearer. **Status:** OK ✓ --- ### EDGE-006: compressionSchema - Boundaries **Pattern:** `min(0).max(100)` allows 0-100 **Issue:** 0 = no compression, 100 = max. But what's invalid? Negative? Handled by min check. **Status:** OK ✓ --- ### EDGE-007: decimationRatioSchema - Precision Loss **Pattern:** `z.number().min(0.1).max(1.0)` **Issue:** Floating-point precision. `0.1 + 0.1 + 0.1 = 0.30000000000000004`. When computed iteratively, might not equal 0.3. **Severity:** LOW (data validation only, Blender handles computation) --- ## RATE LIMITER EDGE CASES ### EDGE-008: Negative Concurrency Counter **Location:** `src/utils/rate-limiter.ts`, lines 143-150 ```typescript releaseConcurrency(): void { if (!this.config.enabled) return; if (this.concurrency.current > 0) { this.concurrency.current -= 1; // Protected by check } } ``` **Issue:** If `releaseConcurrency()` called twice without `acquire()`, counter stays at 0 (safe). But if race condition happens (from BUG-010), counter could become negative. **Proposed Addition:** ```typescript if (this.concurrency.current < 0) { logger.error('Concurrency counter corrupted'); this.concurrency.current = 0; } ``` **Severity:** LOW-MEDIUM --- ## SOCKET CLIENT RELIABILITY ISSUES ### ISSUE-001: No Reconnection Attempts **Location:** `src/utils/socket-client.ts`, lines 24-49 **Issue:** `connect()` tries once; no retry loop. Single network glitch = failure. **Scenario:** - Network hiccup during connection - Connection fails immediately - No exponential backoff - User must retry manually **Proposed Fix:** Implement exponential backoff ```typescript async connect(retries = 3, initialDelay = 100): Promise<void> { for (let i = 0; i < retries; i++) { try { return await this.connectOnce(); } catch (error) { if (i === retries - 1) throw error; const delay = initialDelay * Math.pow(2, i); await new Promise(resolve => setTimeout(resolve, delay)); } } } private async connectOnce(): Promise<void> { // Original connect() logic } ``` **Severity:** MEDIUM --- ### ISSUE-002: Connection State Inconsistency **Location:** `src/utils/socket-client.ts`, lines 61-67 **Issue:** ```typescript if (!this.connection || this.connection.destroyed) { await this.connect(); } if (!this.connection) { throw new Error('Failed to establish connection'); } ``` After `connect()` fails, `this.connection` is null (set in error handler line 40). Second check catches it, but message is generic. **Proposed Fix:** More informative error ```typescript if (!this.connection) { throw new Error( `Failed to establish connection to ${this.host}:${this.port}` ); } ``` --- ## SUMMARY TABLE | Bug ID | Module | Severity | Type | Impact | |--------|--------|----------|------|--------| | BUG-001 | validators.ts | CRITICAL | Path Traversal | File system bypass | | BUG-002 | cache.ts | HIGH | Regex Injection | Cache DoS | | BUG-003 | socket-client.ts | CRITICAL | Buffer Overflow | Memory exhaustion DoS | | BUG-004 | rate-limiter.ts | HIGH | Integer Overflow | Rate limit bypass | | BUG-005 | scripting.ts | HIGH | ReDoS | Code validation hang | | BUG-006 | cache.ts | MEDIUM | TTL Overflow | Memory leak | | BUG-007 | config.ts | HIGH | Validation Bypass | Invalid config accepted | | BUG-008 | validators.ts | MEDIUM | Regex Injection | Downstream injection | | BUG-009 | socket-client.ts | MEDIUM | Timeout Reset | Large file failure | | BUG-010 | rate-limiter.ts | MEDIUM | Race Condition | State corruption | | BUG-011 | validators.ts | LOW-MEDIUM | Hidden Files | Security bypass | | BUG-012 | scripting.ts | MEDIUM | Pattern Evasion | Code blocking bypass | | BUG-013 | validators.ts | LOW | Validation Gap | Silent drop | | BUG-014 | validators.ts | LOW-MEDIUM | Base64 Validation | Invalid data acceptance | | BUG-015 | cache.ts | LOW | Integer Overflow | Statistic corruption | --- ## CRITICAL NEXT STEPS **Immediate (24 hours):** 1. Fix BUG-001 (path traversal) - Deploy hardened filePathSchema 2. Fix BUG-003 (buffer overflow) - Add MAX_BUFFER_SIZE limit 3. Fix BUG-004 (rate limiting integer overflow) - Add bounds checks **This Week:** 4. Fix BUG-002 (cache key collision) - Escape regex patterns 5. Fix BUG-005 (ReDoS) - Tighten regex patterns 6. Fix BUG-007 (config validation) - Re-validate after parsing **Short Term:** 7. Add socket client reconnection logic (ISSUE-001) 8. Fix vector3/colorSchema to reject NaN/Infinity (EDGE-002, EDGE-003) 9. Add concurrency guard to cleanup (BUG-010) --- ## UNRESOLVED QUESTIONS 1. **Is the Blender addon trusted?** If untrusted, BUG-003 is critical. If trusted, lower priority. 2. **What file size limits exist?** No mention of max file downloads (BUG-009 impact). 3. **Is there antivirus/sandboxing around code execution?** Affects BUG-012 severity. 4. **Are external API calls URL-encoded before sending?** Affects BUG-008 impact. 5. **What's the actual threat model?** Local-only access or remote exposure? --- **Report Generated:** 2025-11-30 21:40 UTC **Researcher:** Security Validation Auditor **Token Usage:** ~50k tokens

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/olbboy/claudekit-blender-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

researcher-02-security-validation.md•25 kB