cmd-api issueshttps://gitlab.comwork.io/oss/cmd-api/-/issues2021-03-01T10:57:43Zhttps://gitlab.comwork.io/oss/cmd-api/-/issues/1Improve the security with malicious CMD injections2021-03-01T10:57:43ZIdriss NeumannImprove the security with malicious CMD injectionsTry to remove the `shell=True` part and make argv an array.
It will make easier to validate each args regardless of their position in the array.
More details here: https://twitter.com/bluxte/status/1355826759036502025?s=20Try to remove the `shell=True` part and make argv an array.
It will make easier to validate each args regardless of their position in the array.
More details here: https://twitter.com/bluxte/status/1355826759036502025?s=20