sneak/upaas
1
0
Fork 0
Code Issues 21 Pull Requests 2 Actions Packages Projects Releases Wiki Activity
297f6e64f4
upaas/internal/docker
History
clawbot 7c0278439d fix: prevent command injection in git clone arguments (closes #18) 
- Validate branch names against ^[a-zA-Z0-9._/\-]+$
- Validate commit SHAs against ^[0-9a-f]{40}$
- Pass repo URL, branch, and SHA via environment variables instead of
  interpolating into shell script string
- Add comprehensive tests for validation and injection rejection
2026-02-15 21:33:02 -08:00
..
client.go fix: prevent command injection in git clone arguments (closes #18) 2026-02-15 21:33:02 -08:00
validation_test.go fix: prevent command injection in git clone arguments (closes #18) 2026-02-15 21:33:02 -08:00