This release adds 3 notable features for engineering teams evaluating rollout.
✓ No known CVEs patched in this version
Topics
+10 more
Summary
AI summaryAdded SSH and filesystem error mappers plus a DRY getErrorMessage helper.
Full changelog
Added
mapSshError— 10 SSH error patterns mapped to actionable hints (connection refused, permission denied, host key, timeout, reset, hostname, command not found, disk full, broken pipe)mapFileSystemError— 4 filesystem error codes mapped to hints (ENOENT, EACCES, EPERM, ENOSPC)getErrorMessage— DRY helper replacingerror instanceof Error ? error.message : String(error)across 15 command files
Changed
- All 53 catch blocks now use appropriate error mappers: Provider API →
mapProviderError, SSH →mapSshError, Filesystem →mapFileSystemError mapProviderErrorspread to 5 additional files (restart, maintain, status, update, snapshot)- 3 silent catches in backup.ts now log error messages and provide SSH hints
- Test count: 1334 → 1369 (+35 new error hint integration tests)
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About kastelldev/kastell
Server security auditing and hardening toolkit. 413 security checks across 29 categories (SSH, Firewall, Docker, TLS, HTTP Headers), CIS/PCI-DSS/HIPAA compliance mapping, 19-step production hardening, fleet management, and forensic evidence collection. Supports Hetzner, DigitalOcean, Vultr, and Linode. 13 MCP tools.
Related context
Related tools
Beta — feedback welcome: [email protected]