Skip to content

Conserve memory when resolving paths, recursively handle symlinks, check methods now more verbose and granular. #18

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 20 commits into
base: main
Choose a base branch
from
Open
Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
20 commits
Select commit Hold shift + click to select a range
562851d
Fixed all command injection vulnerabilites present in previous implem…
Feb 10, 2024
0d9a0e2
Correctly handle $IFS/${IFS} in commands. check_banned_executable can…
Feb 13, 2024
ffd0425
Tests now check err.value.args[0].startswith(<Expected Exception Mess…
Feb 15, 2024
3d3dab4
Convert to Pytest. Add shell expansion tests, nested shell syntax tes…
Feb 15, 2024
d447303
Correctly handle all shell expansions. Correctly handled deeply neste…
Feb 15, 2024
d5d9974
Convert to Pytest. Add shell expansion tests, nested shell syntax tes…
Feb 15, 2024
73d9c3c
Handle all shell redirection operators
Feb 15, 2024
6a18137
handle arithmetic expansion of bracket paramters and nested expansions
Feb 16, 2024
d22c6fb
- Complete Shell param/brace/sequence expansion for all ALLOWED_SHELL…
Feb 23, 2024
d078eb0
Remove redundant rmtree, remove script* and add time to BANNED_COMMAN…
Feb 27, 2024
be243f3
- check() now uses Popen kwargs to determine the initial env state an…
Feb 27, 2024
c735164
Remove unused os.environ import left by mistake
Feb 27, 2024
c774f1a
Add FuzzDB license.
Mar 5, 2024
ddb99ac
remove unnessary list conversion
Mar 5, 2024
de99993
- Optimized space complexity of command parsing and path resolution b…
Mar 6, 2024
8c12b66
cleanup comments
Mar 7, 2024
a8921a6
Improve readability. (Underlying check logic unchanged)
Mar 7, 2024
21b9ded
Same check logic but more verbose readable code.
Mar 7, 2024
743e313
- Generators used when resolving paths to avoid storing paths all in …
Mar 12, 2024
939293e
Fix sonarcloud Intentionality & Consistency issues from last PR
Mar 13, 2024
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Loading