`Git` class not secure

Question

`Git` class not secure

antonbaumann opened this issue 5 years ago · comments

static commitsAffectingFile(filePath: string): Promise<string[]> {
        return new Promise((resolve, reject) => {
            childProcess.exec(
                `git log --follow ./${filePath} | grep commit`,
                EXEC_OPTIONS,
                (err, data) => {
                    if (!err)
                        resolve(
                            data.split('\n')
                                .map(line => line.replace('commit ', ''))
                        );
                    else
                        reject(err);
                }
            );
        });
    }

if you call wwt decl filePath foo
filePath can be fully controlled by user

does commander perform some sanity checks?

Anton Baumann · Answer 1 · Mon Jan 06 2020 06:15:20 GMT+0800 (China Standard Time)

just found an example:
wwt line "Parser.ts; echo 'evil content' > evilFile.js; Parser.ts" 5

Anton Baumann · Answer 2 · Mon Jan 06 2020 08:21:42 GMT+0800 (China Standard Time)

could be interesting:
https://github.com/desktop/dugite