Merge PR #757: security: enforce 0600/0700 file permissions on sensitive files

Enforces owner-only permissions on files containing secrets: - config.yaml, .env → 0600 - ~/.hermes/, cron dirs → 0700 - cron jobs.json, output files → 0600 Windows-safe (all chmod calls wrapped in try/except). Inspired by openclaw v2026.3.7.
2026-04-27 01:11:40 +00:00 · 2026-03-11 02:48:56 -07:00 · 2026-03-11 02:48:56 -07:00 · 6e303def12
commit 6e303def12
parent ad1fbd88b2 0ce190be0d
4 changed files with 190 additions and 6 deletions
--- a/hermes_cli/config.py
+++ b/hermes_cli/config.py
@ -47,13 +47,32 @@ def get_project_root() -> Path:
    """Get the project installation directory."""
    return Path(__file__).parent.parent.resolve()

+def _secure_dir(path):
+    """Set directory to owner-only access (0700). No-op on Windows."""
+    try:
+        os.chmod(path, 0o700)
+    except (OSError, NotImplementedError):
+        pass
+
+
+def _secure_file(path):
+    """Set file to owner-only read/write (0600). No-op on Windows."""
+    try:
+        if os.path.exists(str(path)):
+            os.chmod(path, 0o600)
+    except (OSError, NotImplementedError):
+        pass
+
+
 def ensure_hermes_home():
-    """Ensure ~/.hermes directory structure exists."""
+    """Ensure ~/.hermes directory structure exists with secure permissions."""
    home = get_hermes_home()
-    (home / "cron").mkdir(parents=True, exist_ok=True)
-    (home / "sessions").mkdir(parents=True, exist_ok=True)
-    (home / "logs").mkdir(parents=True, exist_ok=True)
-    (home / "memories").mkdir(parents=True, exist_ok=True)
+    home.mkdir(parents=True, exist_ok=True)
+    _secure_dir(home)
+    for subdir in ("cron", "sessions", "logs", "memories"):
+        d = home / subdir
+        d.mkdir(parents=True, exist_ok=True)
+        _secure_dir(d)


 # =============================================================================
@ -874,6 +893,7 @@ def save_config(config: Dict[str, Any]):
        normalized,
        extra_content=_COMMENTED_SECTIONS if sections else None,
    )
+    _secure_file(config_path)


 def load_env() -> Dict[str, str]:
@ -926,6 +946,7 @@ def save_env_value(key: str, value: str):
    
    with open(env_path, 'w', **write_kw) as f:
        f.writelines(lines)
+    _secure_file(env_path)

    # Restrict .env permissions to owner-only (contains API keys)
    if not _IS_WINDOWS: