Skip to content

fix(wiki): improve security and remove unused interface #9

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Oct 11, 2024
Merged

fix(wiki): improve security and remove unused interface #9

merged 3 commits into from
Oct 11, 2024

Conversation

virgofx
Copy link
Member

@virgofx virgofx commented Oct 11, 2024
edited
Loading

Remove unused ChildProcessError interface and improve wiki security by switching to execFileSync() and avoiding dynamic shell args.

Changes:

  • Removed unused ChildProcessError interface
  • Replaced execSync() with execFileSync() in wiki functionality
  • Passed dynamic directories as arguments to execFileSync() instead of including them in the shell command

Related Issues:

Fixes #8

@virgofx
fix(wiki): remove unused interface
a8e6735 
ChildProcessError was introduced previously in testing;
however was not finished.
@virgofx virgofx force-pushed the wiki-updates-10-10 branch 9 times, most recently from 5cd9732 to 7e9bb38 Compare October 11, 2024 06:44
@virgofx
fix: prevent shell command from using dynamic args
8da3d19 
Migrate where possible from execSync() to execFileSync() and move the
dynamic directories (even though they are properly resolved)
into arguments such that they don't go through the shell
glob expansion.

fixes #8
@virgofx
chore: update dist package
15f8efb
@virgofx virgofx force-pushed the wiki-updates-10-10 branch from 36cd6ca to 15f8efb Compare October 11, 2024 06:49
@virgofx virgofx marked this pull request as ready for review October 11, 2024 06:49
@github-actions GitHub Actions
Copy link

Release Plan

No terraform modules updated in this pull request.

✅ Wiki Check

Note: The following Terraform modules no longer exist in source; howevever corresponding tags/releases exist. Automation tag/release deletion is disabled and no subsequent action will take place.

  • v1.0.1
  • v1.0.0
  • v1

@virgofx virgofx merged commit 25a5877 into main Oct 11, 2024
22 checks passed
@virgofx virgofx deleted the wiki-updates-10-10 branch October 11, 2024 06:51
@virgofx virgofx added enhancement New feature or request security labels Oct 11, 2024
@virgofx virgofx self-assigned this Oct 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@virgofx virgofx

Labels
enhancement New feature or request security
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Fix code scanning alert - Shell command built from environment values
1 participant
@virgofx