fix: resolve command injection vulnerability (CWE-78)

Security fixes:
- handlers.ts: Validate tool name against registry before execution
  - Prevents calling hidden/unregistered tools like terminal_execute
  - Returns error for unregistered tool attempts

- executor.ts: Prevent shell metacharacter injection
  - Block shell metacharacters: ; & | ` $ ( ) { } [ ] < > \ ! * ?
  - Block command substitution patterns
  - Use shell: false in execSync to disable shell interpretation

Fixes #2

Author: Agions

.editorconfig

@@ -0,0 +1,35 @@
+# EditorConfig is awesome: https://EditorConfig.org
+
+# Top-most EditorConfig file
+root = true
+
+# Unix-style newlines with a newline ending every file
+[*]
+end_of_line = lf
+insert_final_newline = true
+charset = utf-8
+trim_trailing_whitespace = true
+
+# TypeScript, JavaScript, JSON
+[*.{ts,tsx,js,jsx,json}]
+indent_style = space
+indent_size = 2
+
+# Markdown
+[*.md]
+trim_trailing_whitespace = false
+
+# YAML
+[*.{yml,yaml}]
+indent_style = space
+indent_size = 2
+
+# Shell scripts
+[*.sh]
+indent_style = space
+indent_size = 2
+
+# Package files
+[{package.json,*.yml}]
+indent_style = space
+indent_size = 2

.env.example

@@ -0,0 +1,108 @@
+# TaskFlow AI 环境变量配置示例
+# 复制此文件为 .env 并填入您的真实API密钥
+
+# ===========================================
+# AI模型配置 (必填至少一个)
+# ===========================================
+
+# DeepSeek AI 配置
+DEEPSEEK_API_KEY=sk-your_deepseek_api_key_here
+
+# 百度文心一言配置
+BAIDU_API_KEY=your_baidu_api_key_here
+BAIDU_SECRET_KEY=your_baidu_secret_key_here
+
+# 智谱AI配置
+ZHIPU_API_KEY=your_zhipu_api_key_here
+
+# OpenRouter配置
+OPENROUTER_API_KEY=your_openrouter_api_key_here
+
+# 讯飞星火配置
+XUNFEI_APP_ID=your_xunfei_app_id_here
+XUNFEI_API_KEY=your_xunfei_api_key_here
+XUNFEI_API_SECRET=your_xunfei_api_secret_here
+
+# 阿里通义千问配置
+QWEN_API_KEY=your_qwen_api_key_here
+
+# 月之暗面Kimi配置
+MOONSHOT_API_KEY=your_moonshot_api_key_here
+
+# ===========================================
+# 应用配置
+# ===========================================
+
+# 环境配置
+NODE_ENV=development
+LOG_LEVEL=info
+
+
+
+# 数据存储配置
+DATA_DIR=./data
+BACKUP_DIR=./backups
+
+# ===========================================
+# 性能与监控配置
+# ===========================================
+
+# 性能监控配置
+ENABLE_PERFORMANCE_MONITORING=true
+PERFORMANCE_LOG_INTERVAL=60000
+
+# 安全配置
+ENABLE_RATE_LIMITING=true
+MAX_REQUESTS_PER_MINUTE=100
+
+# ===========================================
+# 开发配置 (可选)
+# ===========================================
+
+# 调试模式
+DEBUG=taskflow:*
+
+# 测试配置
+TEST_TIMEOUT=30000
+TEST_PARALLEL=true
+
+# 构建配置
+BUILD_ANALYZE=false
+BUILD_SOURCEMAP=true
+
+
+VERSION=
+
+# ===========================================
+# MCP 服务器配置
+# ===========================================
+
+# MCP传输协议 (stdio, http)
+MCP_TRANSPORT=stdio
+
+# MCP HTTP端口 (仅在http模式下使用)
+MCP_PORT=3001
+
+# MCP服务器环境
+TASKFLOW_ENV=production
+
+# ===========================================
+# 容器化部署配置
+# ===========================================
+
+# 应用环境
+NODE_ENV=production
+
+# 日志级别
+LOG_LEVEL=info
+
+# 数据目录
+TASKFLOW_DATA_DIR=/app/data
+TASKFLOW_LOG_DIR=/app/logs
+TASKFLOW_CONFIG_DIR=/app/config
+
+# 并发限制
+TASKFLOW_MAX_CONCURRENT_TASKS=10
+
+# 内存限制 (MB)
+TASKFLOW_MEMORY_LIMIT=1024

.eslintrc.cjs

@@ -0,0 +1,38 @@
+module.exports = {
+  parser: '@typescript-eslint/parser',
+  extends: [
+    'eslint:recommended',
+    'plugin:@typescript-eslint/recommended',
+  ],
+  plugins: ['@typescript-eslint'],
+  parserOptions: {
+    ecmaVersion: 2021,
+    sourceType: 'module',
+  },
+  env: {
+    node: true,
+    jest: true,
+    es6: true,
+  },
+  rules: {
+    '@typescript-eslint/explicit-function-return-type': 'off',
+    '@typescript-eslint/explicit-module-boundary-types': 'off',
+    '@typescript-eslint/no-explicit-any': 'off',
+    '@typescript-eslint/no-unused-vars': 'off',
+    '@typescript-eslint/no-empty-function': 'off',
+    '@typescript-eslint/no-require-imports': 'off',
+    '@typescript-eslint/no-unsafe-function-type': 'off',
+    '@typescript-eslint/no-unsafe-call': 'off',
+    '@typescript-eslint/no-unsafe-member-access': 'off',
+    '@typescript-eslint/no-unsafe-return': 'off',
+    '@typescript-eslint/no-unsafe-assignment': 'off',
+    '@typescript-eslint/no-unused-expressions': 'off',
+    'no-console': 'off',
+    'no-unused-vars': 'off',
+    'prefer-const': 'off',
+    'no-var': 'off',
+    'eqeqeq': 'off',
+    'no-empty': 'off',
+  },
+  ignorePatterns: ['dist', 'node_modules', 'coverage', '*.js', '*.d.ts'],
+};

.gitattributes

@@ -0,0 +1,38 @@
+# Binary files
+*.7z binary
+*.bmp binary
+*.deb binary
+*.dmg binary
+*.ear binary
+*.gif binary
+*.gz binary
+*.jar binary
+*.jpeg binary
+*.jpg binary
+*.png binary
+*.rar binary
+*.rpm binary
+*.svg text
+*.tar binary
+*.tgz binary
+*.war binary
+*.webp binary
+*.woff binary
+*.woff2 binary
+*.zip binary
+
+# Images
+assets/** binary
+
+# Docs
+docs/.vitepress/cache/** binary
+docs/.vitepress/dist/** binary
+
+# Build outputs
+dist/** binary
+
+# Dependencies
+node_modules/** binary
+
+# Test coverage
+coverage/** binary

.github/workflows/deploy-docs.yml

@@ -0,0 +1,88 @@
+name: Deploy Documentation
+
+on:
+  push:
+    branches:
+      - main
+    paths:
+      - 'docs/**'
+      - '.github/workflows/deploy-docs.yml'
+  workflow_dispatch:
+
+permissions:
+  contents: read
+  pages: write
+  id-token: write
+
+concurrency:
+  group: pages
+  cancel-in-progress: false
+
+jobs:
+  build:
+    name: Build Documentation
+    runs-on: ubuntu-latest
+    
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+      
+      - name: Setup pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 10
+      
+      - name: Get pnpm store directory
+        shell: bash
+        run: |
+          echo "STORE_PATH=$(pnpm store path --silent)" >> $GITHUB_ENV
+      
+      - name: Setup pnpm cache
+        uses: actions/cache@v4
+        with:
+          path: ${{ env.STORE_PATH }}
+          key: ${{ runner.os }}-pnpm-store-${{ hashFiles('**/pnpm-lock.yaml') }}
+          restore-keys: |
+            ${{ runner.os }}-pnpm-store-
+      
+      - name: Install dependencies
+        run: |
+          cd docs
+          pnpm install --no-frozen-lockfile
+      
+      - name: Build documentation
+        run: |
+          cd docs
+          pnpm run build
+        env:
+          NODE_ENV: production
+      
+      - name: Upload artifact
+        uses: actions/upload-pages-artifact@v3
+        with:
+          path: docs/.vitepress/dist
+
+  deploy:
+    name: Deploy to GitHub Pages
+    needs: build
+    runs-on: ubuntu-latest
+    permissions:
+      pages: write
+      id-token: write
+      contents: read
+    
+    environment:
+      name: github-pages
+      url: ${{ steps.deployment.outputs.page_url }}
+    
+    steps:
+      - name: Deploy to GitHub Pages
+        id: deployment
+        uses: actions/deploy-pages@v4

.github/workflows/npm-publish.yml

@@ -0,0 +1,80 @@
+name: Publish to NPM
+
+on:
+  release:
+    types: [published]
+  workflow_dispatch:
+    inputs:
+      version:
+        description: 'Version to publish (e.g., 2.1.7)'
+        required: false
+        type: string
+
+jobs:
+  publish:
+    name: Publish to npm
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+      id-token: write
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '22'
+          registry-url: 'https://registry.npmjs.org'
+
+      - name: Install pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 9
+
+      - name: Get pnpm store directory
+        shell: bash
+        run: |
+          echo "STORE_PATH=$(pnpm store path --silent)" >> $GITHUB_ENV
+
+      - name: Setup pnpm cache
+        uses: actions/cache@v4
+        with:
+          path: ${{ env.STORE_PATH }}
+          key: ${{ runner.os }}-pnpm-store-${{ hashFiles('**/pnpm-lock.yaml') }}
+          restore-keys: |
+            ${{ runner.os }}-pnpm-store-
+
+      - name: Install dependencies
+        run: pnpm install --frozen-lockfile
+
+      - name: Type check
+        run: pnpm run type-check
+
+      - name: Lint
+        run: pnpm run lint
+
+      - name: Format check
+        run: pnpm run format:check
+
+      - name: Test
+        run: pnpm run test
+
+      - name: Build
+        run: pnpm run build
+
+      - name: Update version
+        if: github.event_name == 'workflow_dispatch' && github.event.inputs.version != ''
+        run: |
+          CURRENT_VERSION=$(node -p "require('./package.json').version")
+          if [ "$CURRENT_VERSION" != "${{ github.event.inputs.version }}" ]; then
+            pnpm version ${{ github.event.inputs.version }} --no-git-tag-version
+          else
+            echo "Version $CURRENT_VERSION already matches target, skipping update"
+          fi
+
+      - name: Publish to npm
+        run: npm publish --access public
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}