set("a", "aa", "aa")
    set("b", "bb", "bbb")

    // Cause the cache trim job to fail.
    filesystem.setFaultyDelete(cacheDir / "a.0", true)
    taskFaker.runNextTask()

    // Confirm we prevent edits after a trim failure.
    assertThat(cache.edit("c")).isNull()

    // A successful eviction should allow new writes.
    filesystem.setFaultyDelete(cacheDir / "a.0", false)
    cache.evictAll()

import java.util.concurrent.atomic.AtomicLong;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import jcifs.smb.SmbException;

/**
 * Rate limiter for authentication attempts to prevent brute force attacks.
 *
 * Features:
 * - Per-account rate limiting
 * - Per-IP rate limiting
 * - Global rate limiting
 * - Exponential backoff for repeated failures
 * - Account lockout after threshold

 * This class provides methods to properly format IPv6 addresses for use in URLs
 * by adding brackets where necessary.
 */
public final class IpAddressUtil {

    /**
     * Private constructor to prevent instantiation of utility class.
     */
    private IpAddressUtil() {
        // Utility class - no instances allowed
    }

    /**
     * Determines if the given address string represents an IPv6 address.

            log.error("Error during file handle finalization", e);
        } finally {
            super.finalize();
        }
    }

    /**
     * Emergency cleanup method to prevent resource leaks during finalization
     */
    private void emergencyCloseHandle() {
        try {
            synchronized (this) {
                // Force close the handle
                this.open = false;

    private static final SecurityAuditLogger auditLogger = SecurityAuditLogger.getInstance();

    /**
     * Performs constant-time comparison of two char arrays to prevent timing attacks.
     * This method always compares the full length of both arrays, regardless of when
     * differences are found, making the execution time independent of the position
     * of differing characters.
     *

          <association>
            <type>RepositoryPolicy</type>
          </association>
        </field>
      </fields>
      <!-- prevent modello generation of an incorrect equals method. Could be avoided by using <identity/> tags to mark ID as the only identity field -->
      <codeSegments>
        <codeSegment>
          <version>1.0.0</version>

        return compareResult == 0;
      } catch (ClassCastException wastNotComparableToOurType) {
        return false;
      }
    }
    return false;
  }

  // Prevent "missing hashCode" warning by explicitly forcing subclasses implement it
  @Override
  public abstract int hashCode();

  /*
   * The implementation neither produces nor consumes any non-null instance of type C, so

import java.util.HashSet;
import java.util.Set;
import java.util.regex.Pattern;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import jcifs.smb.SmbException;

/**
 * Path validation utility to prevent directory traversal and other path-based attacks.
 *
 * Features:
 * - Directory traversal prevention
 * - Path normalization
 * - Blacklist/whitelist support
 * - UNC path validation
 * - Special character filtering

            final ChatSession session = findSession(sessionId);
            if (session != null) {
                final String sessionUserId = session.getUserId();
                // Validate userId matches - prevent cross-user session access
                if (userId != null && !userId.equals(sessionUserId)) {
                    logger.warn("Session userId mismatch. sessionId={}, requestUserId={}", sessionId, userId);

        if (!destroyed) {
            boolean failedToDestroy = false;
            Exception destroyException = null;

            try {
                // Mark as destroyed first to prevent further operations
                destroyed = true;

                // Try to destroy master key if it implements Destroyable
                if (masterKey instanceof Destroyable) {
                    try {