Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Improve bash command injection effectiveness #43

Closed
richcar58 opened this issue Aug 14, 2024 · 0 comments
Closed

Improve bash command injection effectiveness #43

richcar58 opened this issue Aug 14, 2024 · 0 comments
Assignees
@richcar58
Labels
enhancement New feature or request

Comments

@richcar58
Copy link
Contributor

Improve the way double and single quoting is performed by handling all cases with embedded quotes. Current code will not escape embedded quotes of the string has enclosing quotes. This allows strings such 'a'$(pwd)'b' to inject command if it appears on the command line or in a bash script.
@richcar58 richcar58 added the enhancement New feature or request label Aug 14, 2024
@richcar58 richcar58 self-assigned this Aug 14, 2024
@richcar58 richcar58 moved this from To Do to Develop in Tapis Project Beta Board Aug 14, 2024
@richcar58 richcar58 moved this from Develop to Staging in Tapis Project Beta Board Aug 23, 2024
@richcar58 richcar58 moved this from Staging to Done/Production in Tapis Project Beta Board Sep 6, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@richcar58 richcar58

Labels
enhancement New feature or request
Projects
Tapis Project Beta Board
Archived in project
Milestone
No milestone
Development

No branches or pull requests
2 participants
@richcar58 @scblack321