core/go
8
0
Fork 0
generated from lthn/LEM
Code Issues 2 Pull requests 1 Projects Releases Packages Wiki Activity Actions
go/internal/bugseti/ethics_guard_test.go
Athena f28259bb13 fix(bugseti): sanitize shell metacharacters in seeder env vars 
SanitizeEnv() only removed control characters but not shell
metacharacters. A malicious repo name could execute arbitrary commands
via environment variable injection (e.g. backticks, $(), semicolons).

Add stripShellMeta() to strip backticks, dollar signs, semicolons,
pipes, ampersands, and other shell-significant characters from values
passed to the bash seed script environment.

Fixes #59

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-16 05:53:52 +00:00

74 lines
1.7 KiB
Go
Raw Blame History

package bugseti
import (
"testing"
)
func TestSanitizeInline_Good(t *testing.T) {
input := "Hello world"
output := sanitizeInline(input, 50)
if output != input {
t.Fatalf("expected %q, got %q", input, output)
}
}
func TestSanitizeInline_Bad(t *testing.T) {
input := "Hello\nworld\t\x00"
expected := "Hello world"
output := sanitizeInline(input, 50)
if output != expected {
t.Fatalf("expected %q, got %q", expected, output)
}
}
func TestSanitizeMultiline_Ugly(t *testing.T) {
input := "ab\ncd\tef\x00"
output := sanitizeMultiline(input, 5)
if output != "ab\ncd" {
t.Fatalf("expected %q, got %q", "ab\ncd", output)
}
}
func TestSanitizeEnv_Good(t *testing.T) {
g := &EthicsGuard{}
input := "owner/repo-name"
output := g.SanitizeEnv(input)
if output != input {
t.Fatalf("expected %q, got %q", input, output)
}
}
func TestSanitizeEnv_Bad(t *testing.T) {
g := &EthicsGuard{}
tests := []struct {
name string
input string
expected string
}{
{"backtick", "owner/repo`whoami`", "owner/repowhoami"},
{"dollar", "owner/repo$(id)", "owner/repoid"},
{"semicolon", "owner/repo;rm -rf /", "owner/reporm -rf /"},
{"pipe", "owner/repo|cat /etc/passwd", "owner/repocat /etc/passwd"},
{"ampersand", "owner/repo&&echo pwned", "owner/repoecho pwned"},
{"mixed", "`$;|&(){}<>!\\'\"\n\r", ""},
}
for _, tc := range tests {
t.Run(tc.name, func(t *testing.T) {
output := g.SanitizeEnv(tc.input)
if output != tc.expected {
t.Fatalf("expected %q, got %q", tc.expected, output)
}
})
}
}
func TestStripShellMeta_Ugly(t *testing.T) {
// All metacharacters should be stripped, leaving empty string
input := "`$;|&(){}<>!\\'\""
output := stripShellMeta(input)
if output != "" {
t.Fatalf("expected empty string, got %q", output)
}
}
Reference in a new issue View git blame Copy permalink