jedarden 3fa783f628 test(pdftract-5m3hp): implement TH-03 MCP no-auth bind security tests ... Add comprehensive security test suite for TH-03 (plan line 874) verifying MCP server requires authentication on non-loopback binds. Test coverage: - IPv4/IPv6 all-addresses bind requires token (exit 78) - Loopback addresses (127.0.0.1, ::1, localhost) exempt from auth - Token auth via PDFTRACT_MCP_TOKEN env var and --auth-token-file - Atomic failure verification (no listener during failure window) - Exit code specificity (EX_CONFIG=78, not just any non-zero) - Parallel bind attempts all fail securely File: crates/pdftract-core/tests/TH-03-mcp-no-auth.rs (529 lines, 11 tests) Verification note: notes/pdftract-5m3hp.md Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>		2026-05-24 18:43:52 -04:00
..
conformance.rs	feat(pdftract-3s2i): implement Phase 5.5.2 validation filter	2026-05-24 04:57:17 -04:00
memory_guard.rs	feat(bf-2ervu): implement mmap-backed PdfSource via memmap2	2026-05-24 08:40:11 -04:00
memory_guard_tests.rs	feat(bf-2ervu): implement mmap-backed PdfSource via memmap2	2026-05-24 08:40:11 -04:00
ocr_integration.rs	feat(pdftract-3s2i): implement Phase 5.5.2 validation filter	2026-05-24 04:57:17 -04:00
page_classification.rs	feat(pdftract-3s2i): implement Phase 5.5.2 validation filter	2026-05-24 04:57:17 -04:00
struct_tree_coverage.rs	feat(pdftract-3s2i): implement Phase 5.5.2 validation filter	2026-05-24 04:57:17 -04:00
test_xref_debug.rs	feat(pdftract-3s2i): implement Phase 5.5.2 validation filter	2026-05-24 04:57:17 -04:00
TH-03-mcp-no-auth.rs	test(pdftract-5m3hp): implement TH-03 MCP no-auth bind security tests	2026-05-24 18:43:52 -04:00
th_05_ssrf_block.rs	feat(pdftract-3s2i): implement Phase 5.5.2 validation filter	2026-05-24 04:57:17 -04:00
xref_helpers.rs	feat(bf-2ervu): implement mmap-backed PdfSource via memmap2	2026-05-24 08:40:11 -04:00
xref_integration_test.rs	feat(bf-2ervu): implement mmap-backed PdfSource via memmap2	2026-05-24 08:40:11 -04:00