feat(ns): implement namespace updates, global cache purge

[MasterPtato]

No description provided.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Comments	Updated (UTC)
rivet-cloud	Error			Sep 16, 2025 9:13am
rivet-site	Ready	Preview	Comment	Sep 16, 2025 9:13am

1 Skipped Deployment

Project	Deployment	Preview	Comments	Updated (UTC)
rivet-studio	Ignored	Preview		Sep 16, 2025 9:13am

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[MasterPtato]

• feat(ns): implement namespace updates, global cache purge #2883 👈 (View in Graphite)
• main

---

How to use the Graphite Merge Queue

Add the label merge-queue to this PR to add it to the merge queue.

You must have a Graphite account in order to use the merge queue. Sign up using this link.

An organization admin has enabled the Graphite Merge Queue in this repository.

Please do not merge from GitHub as this will restart CI on PRs being processed by the merge queue.

This stack of pull requests is managed by Graphite. Learn more about stacking.

[pkg-pr-new]

Open in StackBlitz

npm i https://pkg.pr.new/rivet-gg/engine/@rivetkit/engine-runner@2883

npm i https://pkg.pr.new/rivet-gg/engine/@rivetkit/engine-runner-protocol@2883

npm i https://pkg.pr.new/rivet-gg/engine/@rivetkit/engine-tunnel-protocol@2883

commit: 3df4e46

[graphite-app]

Security Issue: Buffer Overflow Risk

There's a potential buffer overflow vulnerability in this change. The original code had a safety constraint with .min(8) that limited the number of bytes copied to the size of the padded array:

let len = bytes.len().min(8);

This constraint has been removed in the new code:

let len = bytes.len();

If bytes.len() exceeds 8, the subsequent line padded[..len].copy_from_slice(&bytes[..len]) will attempt to copy more bytes than the padded array can hold (which is fixed at 8 bytes), resulting in a buffer overflow. This would cause either a panic at runtime or memory corruption depending on the execution context.

The original .min(8) constraint should be restored to maintain memory safety.

Suggested change

	let len = bytes.len();
	let len = bytes.len().min(8);

Spotted by Diamond



Is this helpful? React 👍 or 👎 to let us know.

[graphite-app]

When calling delete_key_subspace() with OutboundDesiredSlotsKey::subspace(namespace_id), there's a potential issue with the subspace targeting. Please verify that this correctly deletes all keys under the namespace's outbound desired slots. The method creates a subspace for a specific namespace, but it's important to ensure the deletion logic properly targets all relevant keys to prevent data inconsistency or orphaned records. Consider adding a test case that confirms complete cleanup of these keys when switching from Outbound to Custom runner kind.

Spotted by Diamond



Is this helpful? React 👍 or 👎 to let us know.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.