fix a security issue w/ file names and git publishing... #322

jmgurney · 2016-12-14T19:27:49Z

Don't use shell, and ensure that file names, like:
"; touch /tmp/securityissue; "

Won't cause an issue...

Don't use shell, and ensure that file names, like: "; touch /tmp/securityissue; " Won't cause an issue...

jmgurney · 2016-12-14T19:46:22Z

Some of these failures have nothing to do w/ my code. I cannot control/install asciidocapi on the machine to fix job 99.1. Some of the failures in job 99.5 are not mine. Job 99.6 failure is related to failure to maintain and again, unrelated to my changes.

Descent098 · 2020-03-21T08:03:14Z

I can't verify if the checks are failing due to the issues resolved in #329 because travis CI is down. I will pull and rebase this branch off the current 0.9.0 branch and if it passes the tests off that branch when travis is back up I will merge it in.

fix a security issue w/ file names and git publishing...

f37d3d2

Don't use shell, and ensure that file names, like: "; touch /tmp/securityissue; " Won't cause an issue...

forgot to add -- to prevent problems w/ files that start w/ - or --

c8a8aaf

Descent098 self-assigned this Mar 21, 2020

Descent098 added the Maintainer Task Any task that needs to be completed by a maintainer label Mar 21, 2020

Descent098 added this to TODO in V0.9.0 Mar 22, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix a security issue w/ file names and git publishing... #322

fix a security issue w/ file names and git publishing... #322

jmgurney commented Dec 14, 2016

jmgurney commented Dec 14, 2016 •

edited

Descent098 commented Mar 21, 2020

fix a security issue w/ file names and git publishing... #322

Are you sure you want to change the base?

fix a security issue w/ file names and git publishing... #322

Conversation

jmgurney commented Dec 14, 2016

jmgurney commented Dec 14, 2016 • edited

Descent098 commented Mar 21, 2020

jmgurney commented Dec 14, 2016 •

edited