Krümel Branko
a32af5ab68
Code Review Fixes (Meister-approved):
1. /tmp/ Race Condition Fix (CRITICAL)
- Migrated all RC files from /tmp/ to XDG-compliant cache
- Path: ${XDG_CACHE_HOME}/crumbpages (default: ~/.cache/crumbpages)
- PID-based unique filenames (no collisions)
- Permissions: 700 (user-only, BSI IT-Grundschutz compliant)
- Auto-cleanup trap on exit
2. Variable Syntax Standardization
- All $VAR → ${VAR} for consistency
- ShellCheck compliant
- Better concatenation safety
Modules updated: git, web, remote, tools, qdrant (5 total)
BSI Compliance:
- ✅ APP.4.3.A12: Sichere tmp-Dateien
- ✅ OPS.1.1.2.A9: User-isolierte Logs
- ✅ SYS.1.1.A14: Unique file names
Tested: Syntax check passed, no breaking changes