Skip to content

Tighten exec commands to prevent injection attacks#1468

Merged
josephjclark merged 1 commit into
release/nextfrom
tighten-exec
Jul 2, 2026
Merged

Tighten exec commands to prevent injection attacks#1468
josephjclark merged 1 commit into
release/nextfrom
tighten-exec

Conversation

@josephjclark

Copy link
Copy Markdown
Collaborator

Short Description

This PR adds a redunant guard to the autoinstall commands in the runtime to ensure that the adaptor name cannot contain injection attacks.

It is redundant because the adaptor specifier strings which are used in exec commands are send by Lightning, which has its own security measures to ensure that strings are valid and legal. In production it's very hard, if not impossible, to pass naughty adaptor values

Nevertheless the runtime should be independently secure and frankly it 's only good practice to not trust lightning too much.

AI Usage

Please disclose whether you've used AI anywhere in this PR (it's cool, we just
want to know!):

  • I have used Claude Code
  • I have used another model
  • I have not used AI

You can read more details in our
Responsible AI Policy

@josephjclark josephjclark marked this pull request as ready for review July 2, 2026 10:01
@github-project-automation github-project-automation Bot moved this to New Issues in Core Jul 2, 2026
@josephjclark josephjclark changed the base branch from main to release/next July 2, 2026 13:50
@josephjclark josephjclark merged commit 749b7a3 into release/next Jul 2, 2026
8 checks passed
@josephjclark josephjclark deleted the tighten-exec branch July 2, 2026 13:50
@github-project-automation github-project-automation Bot moved this from New Issues to Done in Core Jul 2, 2026
josephjclark added a commit that referenced this pull request Jul 2, 2026
* CLI: Deploy through v1 API with v2 spec (#1465)

* convert v2 spec down to v1

* refactor to make a version-sniffing util

* integrate the new feature

* test

* Add special case for  to-app-state to convert a project to a v1 spec stucture

* Add validation to mock provisioner

* experiment with using Project to generate a spec file from state

* format

* restore tests

* little style tweak

* remove state.json

* handle credentials properly in spec

* update tests

* mock: handle deleted edges

* fix tests

* correct project credential name

* one more test for luck

* one more test fix and log removal

* tighten exec commands to prevent injection attacks (#1468)

* remove debug code

* cli: bump undici version (#1469)

* cli: bump undici version

* fix and changeset

* fix test

* format

* versions: cli@1.38.2 worker@1.27.1

* update changelog
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

Status: Done

Development

Successfully merging this pull request may close these issues.

2 participants