feat(security): Add zod schema validation + timed cleanup

- Add schemas.ts with zod validators for SMS config, action queue, auto-background
- Validate configs on load, fall back to defaults on invalid data
- Add 5-minute cleanup interval in webhook server for expired prompts and old actions
- Prevents malformed/malicious config injection

Addresses security audit recommendations.

Author: jonathanpeterwu

src/hooks/auto-background.ts

@@ -7,6 +7,7 @@ import { existsSync, readFileSync } from 'fs';
 import { join } from 'path';
 import { homedir } from 'os';
 import { writeFileSecure, ensureSecureDir } from './secure-fs.js';
+import { AutoBackgroundConfigSchema, parseConfigSafe } from './schemas.js';
 
 export interface AutoBackgroundConfig {
   enabled: boolean;
@@ -92,7 +93,13 @@ export function loadConfig(): AutoBackgroundConfig {
   try {
     if (existsSync(CONFIG_PATH)) {
       const data = readFileSync(CONFIG_PATH, 'utf8');
-      return { ...DEFAULT_CONFIG, ...JSON.parse(data) };
+      const parsed = JSON.parse(data);
+      return parseConfigSafe(
+        AutoBackgroundConfigSchema,
+        { ...DEFAULT_CONFIG, ...parsed },
+        DEFAULT_CONFIG,
+        'auto-background'
+      );
     }
   } catch {
     // Use defaults

src/hooks/schemas.ts

@@ -0,0 +1,121 @@
+/**
+ * Zod schemas for hook configuration validation
+ * Prevents malformed or malicious configs from being loaded
+ */
+
+import { z } from 'zod';
+
+// SMS/WhatsApp notification schemas
+export const PromptOptionSchema = z.object({
+  key: z.string().max(10),
+  label: z.string().max(200),
+  action: z.string().max(500).optional(),
+});
+
+export const PendingPromptSchema = z.object({
+  id: z.string().max(32),
+  timestamp: z
+    .string()
+    .datetime({ offset: true })
+    .or(z.string().regex(/^\d{4}-\d{2}-\d{2}T/)),
+  message: z.string().max(1000),
+  options: z.array(PromptOptionSchema).max(10),
+  type: z.enum(['options', 'yesno', 'freeform']),
+  callback: z.string().max(500).optional(),
+  expiresAt: z
+    .string()
+    .datetime({ offset: true })
+    .or(z.string().regex(/^\d{4}-\d{2}-\d{2}T/)),
+});
+
+export const NotifyOnSchema = z.object({
+  taskComplete: z.boolean(),
+  reviewReady: z.boolean(),
+  error: z.boolean(),
+  custom: z.boolean(),
+});
+
+export const QuietHoursSchema = z.object({
+  enabled: z.boolean(),
+  start: z.string().regex(/^\d{2}:\d{2}$/),
+  end: z.string().regex(/^\d{2}:\d{2}$/),
+});
+
+export const SMSConfigSchema = z.object({
+  enabled: z.boolean(),
+  channel: z.enum(['whatsapp', 'sms']),
+  accountSid: z.string().max(100).optional(),
+  authToken: z.string().max(100).optional(),
+  smsFromNumber: z.string().max(20).optional(),
+  smsToNumber: z.string().max(20).optional(),
+  whatsappFromNumber: z.string().max(30).optional(),
+  whatsappToNumber: z.string().max(30).optional(),
+  fromNumber: z.string().max(20).optional(),
+  toNumber: z.string().max(20).optional(),
+  webhookUrl: z.string().url().max(500).optional(),
+  notifyOn: NotifyOnSchema,
+  quietHours: QuietHoursSchema.optional(),
+  responseTimeout: z.number().int().min(30).max(3600),
+  pendingPrompts: z.array(PendingPromptSchema).max(100),
+});
+
+// Action queue schemas
+export const PendingActionSchema = z.object({
+  id: z.string().max(32),
+  promptId: z.string().max(32),
+  response: z.string().max(1000),
+  action: z.string().max(500),
+  timestamp: z
+    .string()
+    .datetime({ offset: true })
+    .or(z.string().regex(/^\d{4}-\d{2}-\d{2}T/)),
+  status: z.enum(['pending', 'running', 'completed', 'failed']),
+  result: z.string().max(10000).optional(),
+  error: z.string().max(1000).optional(),
+});
+
+export const ActionQueueSchema = z.object({
+  actions: z.array(PendingActionSchema).max(1000),
+  lastChecked: z
+    .string()
+    .datetime({ offset: true })
+    .or(z.string().regex(/^\d{4}-\d{2}-\d{2}T/)),
+});
+
+// Auto-background config schema
+export const AutoBackgroundConfigSchema = z.object({
+  enabled: z.boolean(),
+  timeoutMs: z.number().int().min(1000).max(600000),
+  alwaysBackground: z.array(z.string().max(200)).max(100),
+  neverBackground: z.array(z.string().max(200)).max(100),
+  verbose: z.boolean().optional(),
+});
+
+// Type exports
+export type SMSConfigValidated = z.infer<typeof SMSConfigSchema>;
+export type ActionQueueValidated = z.infer<typeof ActionQueueSchema>;
+export type AutoBackgroundConfigValidated = z.infer<
+  typeof AutoBackgroundConfigSchema
+>;
+
+/**
+ * Safely parse and validate config, returning default on failure
+ */
+export function parseConfigSafe<T>(
+  schema: z.ZodSchema<T>,
+  data: unknown,
+  defaultValue: T,
+  configName: string
+): T {
+  const result = schema.safeParse(data);
+  if (result.success) {
+    return result.data;
+  }
+  console.error(
+    `[hooks] Invalid ${configName} config:`,
+    result.error.issues
+      .map((i) => `${i.path.join('.')}: ${i.message}`)
+      .join(', ')
+  );
+  return defaultValue;
+}

src/hooks/sms-action-runner.ts

@@ -11,6 +11,7 @@ import { homedir } from 'os';
 import { execSync, execFileSync } from 'child_process';
 import { randomBytes } from 'crypto';
 import { writeFileSecure, ensureSecureDir } from './secure-fs.js';
+import { ActionQueueSchema, parseConfigSafe } from './schemas.js';
 
 // Allowlist of safe action patterns
 const SAFE_ACTION_PATTERNS: Array<{
@@ -65,15 +66,26 @@ export interface ActionQueue {
 
 const QUEUE_PATH = join(homedir(), '.stackmemory', 'sms-action-queue.json');
 
+const DEFAULT_QUEUE: ActionQueue = {
+  actions: [],
+  lastChecked: new Date().toISOString(),
+};
+
 export function loadActionQueue(): ActionQueue {
   try {
     if (existsSync(QUEUE_PATH)) {
-      return JSON.parse(readFileSync(QUEUE_PATH, 'utf8'));
+      const data = JSON.parse(readFileSync(QUEUE_PATH, 'utf8'));
+      return parseConfigSafe(
+        ActionQueueSchema,
+        data,
+        DEFAULT_QUEUE,
+        'action-queue'
+      );
     }
   } catch {
     // Use defaults
   }
-  return { actions: [], lastChecked: new Date().toISOString() };
+  return { ...DEFAULT_QUEUE, lastChecked: new Date().toISOString() };
 }
 
 export function saveActionQueue(queue: ActionQueue): void {

src/hooks/sms-notify.ts

@@ -11,6 +11,7 @@ import { join } from 'path';
 import { homedir } from 'os';
 import { config as loadDotenv } from 'dotenv';
 import { writeFileSecure, ensureSecureDir } from './secure-fs.js';
+import { SMSConfigSchema, parseConfigSafe } from './schemas.js';
 
 export type MessageChannel = 'whatsapp' | 'sms';
 
@@ -109,11 +110,16 @@ export function loadSMSConfig(): SMSConfig {
   try {
     if (existsSync(CONFIG_PATH)) {
       const data = readFileSync(CONFIG_PATH, 'utf8');
-      const saved = JSON.parse(data);
-      // Merge with defaults, then apply env vars
-      const config = { ...DEFAULT_CONFIG, ...saved };
-      applyEnvVars(config);
-      return config;
+      const parsed = JSON.parse(data);
+      // Validate with zod schema, fall back to defaults on invalid config
+      const validated = parseConfigSafe(
+        SMSConfigSchema,
+        { ...DEFAULT_CONFIG, ...parsed },
+        DEFAULT_CONFIG,
+        'sms-notify'
+      );
+      applyEnvVars(validated);
+      return validated;
     }
   } catch {
     // Use defaults

src/hooks/sms-webhook.ts

@@ -17,10 +17,21 @@ import { join } from 'path';
 import { homedir } from 'os';
 import { createHmac } from 'crypto';
 import { execFileSync } from 'child_process';
-import { processIncomingResponse, loadSMSConfig } from './sms-notify.js';
-import { queueAction, executeActionSafe } from './sms-action-runner.js';
+import {
+  processIncomingResponse,
+  loadSMSConfig,
+  cleanupExpiredPrompts,
+} from './sms-notify.js';
+import {
+  queueAction,
+  executeActionSafe,
+  cleanupOldActions,
+} from './sms-action-runner.js';
 import { writeFileSecure, ensureSecureDir } from './secure-fs.js';
 
+// Cleanup interval (5 minutes)
+const CLEANUP_INTERVAL_MS = 5 * 60 * 1000;
+
 // Security constants
 const MAX_BODY_SIZE = 50 * 1024; // 50KB max body
 const RATE_LIMIT_WINDOW_MS = 60 * 1000; // 1 minute
@@ -408,6 +419,24 @@ export function startWebhookServer(port: number = 3456): void {
       `[sms-webhook] Status callback:   http://localhost:${port}/sms/status`
     );
     console.log(`[sms-webhook] Configure these URLs in Twilio console`);
+
+    // Start timed cleanup of expired prompts and old actions
+    setInterval(() => {
+      try {
+        const expiredPrompts = cleanupExpiredPrompts();
+        const oldActions = cleanupOldActions();
+        if (expiredPrompts > 0 || oldActions > 0) {
+          console.log(
+            `[sms-webhook] Cleanup: ${expiredPrompts} expired prompts, ${oldActions} old actions`
+          );
+        }
+      } catch {
+        // Ignore cleanup errors
+      }
+    }, CLEANUP_INTERVAL_MS);
+    console.log(
+      `[sms-webhook] Cleanup interval: every ${CLEANUP_INTERVAL_MS / 1000}s`
+    );
   });
 }