[codex] Add in-memory keystore flag

[functor-flow]

Summary

Adds an opt-in --keystore-in-memory flag for hardened validator deployments. When set, the node overrides the generated service configuration to use Substrate's existing KeystoreConfig::InMemory, so session keys are not loaded from or written to an on-disk keystore path.

Details

• Adds the top-level --keystore-in-memory CLI flag.
• Rejects conflicting key-loading or disk-backed options such as --keystore-path, password flags, --dev, and development key shortcuts.
• Applies the in-memory keystore selection before service::new_full constructs the node service.
• Covers CLI parsing and keystore selection with unit tests.

Validation

• cargo fmt --check
• git diff --check
• WASM_BUILD_WORKSPACE_HINT=/Users/janzimolka/workspace/torus-substrate cargo test --target-dir /private/tmp/torus-target-issue155 -p torus-node keystore --locked
• WASM_BUILD_WORKSPACE_HINT=/Users/janzimolka/workspace/torus-substrate cargo clippy --target-dir /private/tmp/torus-target-issue155 -p torus-node --locked --all-targets -- -D warnings
• Built torus-node and smoke-tested a fresh base path; no keystore/ directory was created before the sandbox blocked network socket binding.

Closes #155.

[coderabbitai]

Important

Review skipped

Auto reviews are disabled on this repository. Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: a8a63a64-536d-4e24-be11-f74a9d4b0e92

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch codex/issue-155-keystore-in-memory

Tip

💬 Introducing Slack Agent: The best way for teams to turn conversations into code.

Slack Agent is built on CodeRabbit's deep understanding of your code, so your team can collaborate across the entire SDLC without losing context.

• Generate code and open pull requests
• Plan features and break down work
• Investigate incidents and troubleshoot customer tickets together
• Automate recurring tasks and respond to alerts with triggers
• Summarize progress and report instantly

Built for teams:

• Shared memory across your entire org—no repeating context
• Per-thread sandboxes to safely plan and execute work
• Governance built-in—scoped access, auditability, and budget controls

One agent for your entire SDLC. Right inside Slack.

👉 Get started

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}