Skip to content

fix: close policy grant gaps for all 42 tools#6

Merged
Jesssullivan merged 1 commit into
mainfrom
fix/policy-grant-gaps
Feb 26, 2026
Merged

fix: close policy grant gaps for all 42 tools#6
Jesssullivan merged 1 commit into
mainfrom
fix/policy-grant-gaps

Conversation

@Jesssullivan

Copy link
Copy Markdown
Owner

Summary

  • hexstrike-agent: 16 tools were missing from grants — added all WebSecurity, CredentialAudit, SMBEnum, BinaryAnalysis, and Forensics domains
  • campaign-runner: added network_posture, api_fuzz, cve_monitor
  • New TestPolicyCoverage in Go verifies all 42 tools are grantable to hexstrike-agent

Tools added to hexstrike-agent

network_posture, sops_rotation_check, brute_force, hash_crack, sqli_test, xss_test, waf_detect, api_fuzz, graphql_scan, jwt_analyze, smb_enum, network_exec, rpc_enum, cloud_posture, iac_scan, disassemble, debug, gadget_search, firmware_analyze, memory_forensics, file_carving, steganography, metadata_extract, cve_monitor, exploit_gen, threat_correlate

Tools added to campaign-runner

network_posture, api_fuzz, cve_monitor

Test plan

  • dhall-check + dhall-validate pass
  • Go TestPolicyCoverage passes (all 42 tools covered)
  • Full Go test suite passes (29 tests)
  • CI green

16 tools were missing from hexstrike-agent grants (WebSecurity,
CredentialAudit, SMBEnum, BinaryAnalysis, Forensics domains).
Also adds network_posture, api_fuzz, cve_monitor to campaign-runner.

New TestPolicyCoverage in Go catches future grant gaps.
@Jesssullivan
Jesssullivan merged commit 26c4941 into main Feb 26, 2026
13 of 15 checks passed
@Jesssullivan
Jesssullivan deleted the fix/policy-grant-gaps branch February 26, 2026 14:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant