gabriel / musehub public
BREAKING task/canonical-hash-idioms #7 / 8
AI Agent gabriel · 55 days ago · Apr 25, 2026 · Diff

security: enforce canonical codec idioms across all tests

- Replace all 'sha256:' + hashlib.sha256(...).hexdigest() with blob_id() - Replace all key fingerprints with public_key_fingerprint() - request_signing.py body hash upgraded to sha256:-prefixed blob_id() - test_msign_request_signing: canonical message body hash tests updated - test_musehub_auth_challenge_db: fingerprint helper uses public_key_fingerprint (DB column is String(71) — bare 64-char hex was wrong) - test_static_assets: cache version computation uses split_id(blob_id()) - test_domains: compute_manifest_hash assertion uses blob_id() - test_gc_object_refs: _oid helper produces prefixed IDs - test_load_readiness: object IDs now blob_id-prefixed - test_object_store_canonical: _sha256_oid helper uses blob_id() - factories._sha: produces blob_id-prefixed commit IDs

sha256:f1982a9b5d265c9a83c3e1e4fefee7a2abbbad6b528c9093b16cd0e1512872a6 sha
sha256:6446ba8458fa34b51f554362dbfe68004b9dfef00a29378b22ac15d638fd368b parent
sha256:ed98443e39ca80a1411a81932f88cecd66a733a477700fcda6d8d18bd278a4b8 snapshot
Older fix: replace all inline bare-hash constructions with canonical c… sha256:6446ba8458fa34b51f554362dbfe68004b9dfef00a29378b22ac15d638fd368b All commits Newer style: replace string concatenation with f-string interpolation … sha256:5e86e423b6b99897e7a20834af66e95bc9f20f0114a4f7ebf41bcfee28b07348

0 comments

No comments yet. Be the first to start the discussion.

To add a comment, use the Muse CLI: muse hub commit comment sha256:f1982a9b5d265c9a83c3e1e4fefee7a2abbbad6b528c9093b16cd0e1512872a6 --body "your comment"