security(feishu): bound unauthenticated webhook rate-limit state

[bmendonca3]

Summary

• Problem: The Feishu webhook ingress rate limiter keeps per-source state in feishuWebhookRateLimits with no eviction or hard cap. Every new source key persists indefinitely.
• Trust boundary crossed: This state is populated before webhook verification/token validation, so unauthenticated network traffic can grow process memory.
• Impact: Sustained requests from many distinct source addresses can cause unbounded memory growth and availability degradation (high-impact DoS).
• What changed: Added periodic stale-entry pruning and a strict maximum tracked-key bound for Feishu webhook rate-limit state.

Change Type

• Bug fix
• Feature
• Refactor
• Docs
• Security hardening
• Chore/infra

Scope

• Gateway / orchestration
• Skills / tool execution
• Auth / tokens
• Memory / storage
• Integrations
• API / contracts
• UI / DX
• CI/CD / infra

Security Impact

• New permissions/capabilities? No
• Secrets/tokens handling changed? No
• New/changed network calls? No
• Command/tool execution surface changed? No
• Data access scope changed? No

Repro + Verification

Deterministic PoC (before fix)

1. Start Feishu in webhook mode.
2. Send requests that force distinct source keys (e.g., many unique source addresses via distributed/rotating ingress).
3. Observe feishuWebhookRateLimits growth without bound over time.

Automated verification (this PR)

• Added regression test that inserts 4,500 unique keys and asserts state remains bounded.
• Added regression test that confirms stale entries are pruned after the configured window.
• Existing webhook burst limit test remains green.

Evidence

• Regression tests added in extensions/feishu/src/monitor.webhook-security.test.ts.
• Dedupe checks against existing Feishu work show no overlapping fix for this DoS vector:
  • fix(feishu): fix group policy enforcement gaps #25439 (group policy hardening)
  • fix(security): OC-10 add webhook payload schema validation to prevent malformed payload injection #20775 (payload schema validation)
  • [Feature]: Add HTTP Webhook Support for Lark Channel #12464 (webhook feature request)

Human Verification

• Ran targeted tests locally with single worker:
  • pnpm exec vitest run extensions/feishu/src/monitor.webhook-security.test.ts --maxWorkers=1
• Confirmed all tests in that file pass, including new bounds/pruning regressions.

Compatibility / Migration

• Backward compatible? Yes
• Config/env changes? No
• Migration needed? No

Failure Recovery

• Revert this commit to restore previous behavior.
• Files to restore:
  • extensions/feishu/src/monitor.ts
  • extensions/feishu/src/monitor.webhook-security.test.ts

Risks and Mitigations

• Risk: Evicting oldest keys under heavy churn may reduce precision for oldest buckets.
• Mitigation: Request limiting remains enforced for active/new keys; stale-pruning plus hard cap prevents unbounded memory pressure.

Greptile Summary

Added memory bounds to the Feishu webhook rate limiter to prevent unbounded growth from unauthenticated traffic. The fix introduces a hard cap of 4,096 tracked keys and periodic pruning of stale entries older than 60 seconds. This prevents DoS attacks where distributed/rotating source addresses could exhaust process memory before webhook verification occurs at monitor.ts:306-310.

Confidence Score: 5/5

• Safe to merge with high confidence - addresses real DoS vector with minimal risk
• Implementation is clean and well-tested with regression coverage for both bounds enforcement and stale-entry pruning. The fix maintains backward compatibility while closing a pre-auth memory exhaustion vector.
• No files require special attention

_{Last reviewed commit: b87fbd4}

[Takhoffman]

PR #26050 - security(feishu): bound unauthenticated webhook rate-limit state (#26050)

Merged via squash.

• Merge commit: f943c76
• Verified:
  • pnpm install --frozen-lockfile
  • pnpm build
  • pnpm check (fails in this environment due unrelated baseline TypeScript error in src/agents/pi-embedded-runner-extraparams.test.ts)
  • pnpm test:macmini
• Changes made:
  CHANGELOG.md
  extensions/feishu/src/monitor.ts
  extensions/feishu/src/monitor.webhook-security.test.ts
• Why these changes were made:
  Bound pre-auth Feishu webhook rate-limit state growth and satisfied changelog-required policy for merge.
• Changelog: CHANGELOG.md updated=true required=true opt_out=false

Thanks @bmendonca3!