fix: apply CodeRabbit auto-fixes

coderabbitai[bot] · CodeRabbit · web-flow · commit 7704902e63ff · 2026-03-24T04:21:55.000Z
Fixed 3 file(s) based on 2 unresolved review comments.

Co-authored-by: CodeRabbit &lt;noreply@coderabbit.ai&gt;
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -14,7 +14,7 @@ See [Conventional Commits](https://www.conventionalcommits.org/) for commit mess
   The cache is now bounded and configurable via three environment variables:
   - `ATMOS_FS_GLOB_CACHE_MAX_ENTRIES` (default `1024`, minimum `16`) — maximum number of cached glob patterns.
   - `ATMOS_FS_GLOB_CACHE_TTL` (default `5m`, minimum `1s`) — time-to-live for each cache entry.
-    Values below the respective minimums are clamped up rather than rejected.
+    See `applyGlobCacheConfig` in `pkg/filesystem/glob.go` for the exact logic: only positive values below the minimums are clamped up to the floor; zero or negative values cause the code to fall back to the default values.
   - `ATMOS_FS_GLOB_CACHE_EMPTY` (default `1`) — set to `0` to skip caching patterns that match no files.
 - **`pkg/http.normalizeHost`**: now strips default ports (`:443`, `:80`) in addition to
   lower-casing and removing trailing dots, so that `api.github.com:443` is treated
@@ -37,4 +37,4 @@ See [Conventional Commits](https://www.conventionalcommits.org/) for commit mess
 
 - Cross-host HTTP redirects (all five status codes: 301, 302, 303, 307, 308) no longer
   forward the `Authorization` header to the redirect target, preventing accidental token
-  leakage via open redirects.
+  leakage via open redirects.
diff --git a/errors/errors.go b/errors/errors.go
@@ -248,9 +248,10 @@ var (
 	ErrInvalidPagerCommand = errors.New("invalid pager command")
 	ErrEmptyURL            = errors.New("empty URL provided")
 	ErrFailedToFindImport  = errors.New("failed to find import")
-	ErrInvalidFilePath     = errors.New("invalid file path")
-	ErrRelPath             = errors.New("error determining relative path")
-	ErrHTTPRequestFailed   = errors.New("HTTP request failed")
+	ErrInvalidFilePath       = errors.New("invalid file path")
+	ErrRelPath               = errors.New("error determining relative path")
+	ErrHTTPRequestFailed     = errors.New("HTTP request failed")
+	ErrRedirectLimitExceeded = errors.New("stopped after 10 redirects")
 
 	// Config loading errors.
 	ErrAtmosDirConfigNotFound      = errors.New("atmos config directory not found")
@@ -1027,4 +1028,4 @@ type ExitCodeError struct {
 
 func (e ExitCodeError) Error() string {
 	return fmt.Sprintf("subcommand exited with code %d", e.Code)
-}
+}
diff --git a/pkg/http/client.go b/pkg/http/client.go
@@ -96,7 +96,7 @@ func WithGitHubToken(token string) ClientOption {
 // different-port redirects are treated as cross-host, matching Go's own redirect policy.
 func stripAuthOnCrossHostRedirect(req *http.Request, via []*http.Request) error {
 	if len(via) >= 10 {
-		return errors.New("stopped after 10 redirects")
+		return errUtils.ErrRedirectLimitExceeded
 	}
 	if len(via) > 0 && req.URL.Host != via[0].URL.Host {
 		req.Header.Del("Authorization")
@@ -361,4 +361,4 @@ func Get(ctx context.Context, url string, client Client) ([]byte, error) {
 	}
 
 	return body, nil
-}
+}

Original file line number	Diff line number	Diff line change
`@@ -96,7 +96,7 @@ func WithGitHubToken(token string) ClientOption {`
`96`	`96`	`// different-port redirects are treated as cross-host, matching Go's own redirect policy.`
`97`	`97`	`func stripAuthOnCrossHostRedirect(req http.Request, via []http.Request) error {`
`98`	`98`	`if len(via) >= 10 {`
`99`		`- return errors.New("stopped after 10 redirects")`
	`99`	`+ return errUtils.ErrRedirectLimitExceeded`
`100`	`100`	`}`
`101`	`101`	`if len(via) > 0 && req.URL.Host != via[0].URL.Host {`
`102`	`102`	`req.Header.Del("Authorization")`
`@@ -361,4 +361,4 @@ func Get(ctx context.Context, url string, client Client) ([]byte, error) {`
`361`	`361`	`}`
`362`	`362`
`363`	`363`	`return body, nil`
`364`		`-}`
	`364`	`+}`