fix: edge-control: deregister leaks project existence via differing error messages (#1111) #1119

Closed

dev-qwen wants to merge 1 commit from fix/issue-1111 into main

Author	SHA1	Message	Date
Agent	9cb4da204d	fix: edge-control: deregister leaks project existence via differing error messages (#1111 ) Some checks are pending ci/woodpecker/push/ci Pipeline is pending Details ci/woodpecker/pr/ci Pipeline is pending Details ci/woodpecker/pr/edge-subpath Pipeline is pending Details The deregister command returned "project not found" for non-existent projects and "pubkey mismatch" for wrong keys, allowing SSH-accessible attackers to enumerate registered projects. Merge both checks behind a single "deregister denied" error while preserving audit log entries for operator investigation. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-04-21 12:58:02 +00:00

Author

SHA1

Message

Date

Agent

9cb4da204d

fix: edge-control: deregister leaks project existence via differing error messages (#1111 )

ci/woodpecker/push/ci Pipeline is pending

Details

ci/woodpecker/pr/ci Pipeline is pending

Details

ci/woodpecker/pr/edge-subpath Pipeline is pending

Details

The deregister command returned "project not found" for non-existent
projects and "pubkey mismatch" for wrong keys, allowing SSH-accessible
attackers to enumerate registered projects. Merge both checks behind a
single "deregister denied" error while preserving audit log entries for
operator investigation.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-04-21 12:58:02 +00:00