ktg-plugin-marketplace

History

Kjell Tore Guttormsen b95d85bb4c feat(post-mcp-verify): E4 — scan markdown link titles for injection Adversarial payloads in markdown link title attributes (rendered as tooltips, parsed by agents) bypassed the existing HTML-content checks which gated on `<tag>` presence. Pattern: [text](url "title"). Adds linkTitleRegex extraction to the HTML-content block, runs each captured title through scanForInjection, emits at the strongest tier encountered with category markdown-link-title-injection. +3 tests (62 → 62 in post-mcp-verify.test.mjs file, was 59). Refs: Batch B Wave 4 / Step 9 / v7.2.0	2026-04-29 14:52:30 +02:00
..
scripts	feat(post-mcp-verify): E4 — scan markdown link titles for injection	2026-04-29 14:52:30 +02:00
hooks.json	feat(hooks): register PreCompact event in hooks.json	2026-04-17 14:45:13 +02:00

Kjell Tore Guttormsen b95d85bb4c feat(post-mcp-verify): E4 — scan markdown link titles for injection

Adversarial payloads in markdown link title attributes (rendered as
tooltips, parsed by agents) bypassed the existing HTML-content checks
which gated on `<tag>` presence. Pattern: [text](url "title").

Adds linkTitleRegex extraction to the HTML-content block, runs each
captured title through scanForInjection, emits at the strongest tier
encountered with category markdown-link-title-injection.

+3 tests (62 → 62 in post-mcp-verify.test.mjs file, was 59).

Refs: Batch B Wave 4 / Step 9 / v7.2.0

2026-04-29 14:52:30 +02:00

scripts

feat(post-mcp-verify): E4 — scan markdown link titles for injection

2026-04-29 14:52:30 +02:00

hooks.json

feat(hooks): register PreCompact event in hooks.json

2026-04-17 14:45:13 +02:00