fix(lint): deterministic staging dir via os.Mkdir 0755 instead of MkdirTemp+Chmod

ysyneu · ysyneu · commit d20cef53db1f · 2026-06-11T15:55:34.000+08:00
Installs are mutex-serialized and leftovers are swept pre-install, so a
random suffix bought nothing; CI's gosec also rejected the Chmod (G302)
that MkdirTemp's 0700 forced.
diff --git a/environment/environment.go b/environment/environment.go
@@ -1112,15 +1112,13 @@ func (e *Environment) SyncSkill(ctx context.Context, args *protocol.SyncSkillArg
 			_ = os.RemoveAll(d)
 		}
 	}
-	tmpDir, err := os.MkdirTemp(parentDir, ".installing-"+args.SkillName+"-")
-	if err != nil {
-		return nil, fmt.Errorf("failed to create staging directory: %w", err)
+	// Deterministic staging name is safe: installs are serialized by
+	// skillInstallMu and the sweep above just cleared any leftover.
+	tmpDir := filepath.Join(parentDir, ".installing-"+args.SkillName)
+	if mkErr := os.Mkdir(tmpDir, 0o755); mkErr != nil {
+		return nil, fmt.Errorf("failed to create staging directory: %w", mkErr)
 	}
 	defer func() { _ = os.RemoveAll(tmpDir) }() // no-op after a successful rename
-	// MkdirTemp creates 0700; restore the 0755 the install dir always had.
-	if chmodErr := os.Chmod(tmpDir, 0o755); chmodErr != nil { // #nosec G302 -- skill dirs are world-traversable by design (G301 excluded for the same reason)
-		return nil, fmt.Errorf("failed to chmod staging directory: %w", chmodErr)
-	}
 	if err := e.unzipSkill(zipData, tmpDir); err != nil {
 		return nil, fmt.Errorf("failed to unzip skill: %w", err)
 	}

Original file line number	Diff line number	Diff line change
`@@ -1112,15 +1112,13 @@ func (e Environment) SyncSkill(ctx context.Context, args protocol.SyncSkillArg`
`1112`	`1112`	`_ = os.RemoveAll(d)`
`1113`	`1113`	`}`
`1114`	`1114`	`}`
`1115`		`- tmpDir, err := os.MkdirTemp(parentDir, ".installing-"+args.SkillName+"-")`
`1116`		`- if err != nil {`
`1117`		`- return nil, fmt.Errorf("failed to create staging directory: %w", err)`
	`1115`	`+ // Deterministic staging name is safe: installs are serialized by`
	`1116`	`+ // skillInstallMu and the sweep above just cleared any leftover.`
	`1117`	`+ tmpDir := filepath.Join(parentDir, ".installing-"+args.SkillName)`
	`1118`	`+ if mkErr := os.Mkdir(tmpDir, 0o755); mkErr != nil {`
	`1119`	`+ return nil, fmt.Errorf("failed to create staging directory: %w", mkErr)`
`1118`	`1120`	`}`
`1119`	`1121`	`defer func() { _ = os.RemoveAll(tmpDir) }() // no-op after a successful rename`
`1120`		`- // MkdirTemp creates 0700; restore the 0755 the install dir always had.`
`1121`		`- if chmodErr := os.Chmod(tmpDir, 0o755); chmodErr != nil { // #nosec G302 -- skill dirs are world-traversable by design (G301 excluded for the same reason)`
`1122`		`- return nil, fmt.Errorf("failed to chmod staging directory: %w", chmodErr)`
`1123`		`- }`
`1124`	`1122`	`if err := e.unzipSkill(zipData, tmpDir); err != nil {`
`1125`	`1123`	`return nil, fmt.Errorf("failed to unzip skill: %w", err)`
`1126`	`1124`	`}`