fix(security): eliminate file system race condition in skills detection

rubenmarcus · claude · rubenmarcus · commit f5cfb0aad6c9 · 2026-02-10T01:38:10.000Z
Remove statSync+readFileSync TOCTOU pattern entirely. Instead of
checking file type then reading, try reading directly and catch
errors. This eliminates the race window between stat and read.

Co-Authored-By: Claude Opus 4.6 &lt;noreply@anthropic.com&gt;
diff --git a/src/loop/skills.ts b/src/loop/skills.ts
@@ -1,4 +1,4 @@
-import { existsSync, readdirSync, readFileSync, statSync } from 'node:fs';
+import { existsSync, readdirSync, readFileSync } from 'node:fs';
 import { homedir } from 'node:os';
 import { join } from 'node:path';
 
@@ -84,35 +84,33 @@ function scanSkillsDir(dir: string, source: ClaudeSkill['source']): ClaudeSkill[
     for (const entry of entries) {
       const fullPath = join(dir, entry);
 
-      try {
-        const stats = statSync(fullPath);
-
-        if (stats.isFile() && entry.endsWith('.md')) {
-          // Flat .md skill file
+      if (entry.endsWith('.md')) {
+        // Try reading as a flat .md skill file
+        try {
           const content = readFileSync(fullPath, 'utf-8');
           skills.push({
             name: extractName(content, entry.replace('.md', '')),
             path: fullPath,
             description: extractDescription(content),
             source,
           });
-        } else if (stats.isDirectory()) {
-          // Try reading SKILL.md inside subdirectory
-          const skillMdPath = join(fullPath, 'SKILL.md');
-          try {
-            const content = readFileSync(skillMdPath, 'utf-8');
-            skills.push({
-              name: extractName(content, entry),
-              path: skillMdPath,
-              description: extractDescription(content),
-              source,
-            });
-          } catch {
-            // SKILL.md not found or unreadable, skip
-          }
+        } catch {
+          // File unreadable, skip
+        }
+      } else {
+        // Try reading SKILL.md inside subdirectory
+        const skillMdPath = join(fullPath, 'SKILL.md');
+        try {
+          const content = readFileSync(skillMdPath, 'utf-8');
+          skills.push({
+            name: extractName(content, entry),
+            path: skillMdPath,
+            description: extractDescription(content),
+            source,
+          });
+        } catch {
+          // Not a skill directory or unreadable, skip
         }
-      } catch {
-        // Skip unreadable entries
       }
     }
   } catch {
