SHA-256 preimage patch engine
Atomic patch application with rollback support.
Status: shipped | Area: policy | Published: 2026-03-20
Control impact: Enables safe file modifications with automatic rollback on failure.
internal/patch.PatchEnginewith preimage hash verification- Atomic write via temp-file rename
- Stash and rollback support