core/php-devops
8
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 4
php-devops/scripts
History
unknown d9a8fe279e
security: harden shell scripts with integrity verification 
- Add SHA256 checksum verification to install-core.sh binary download
- Add version pinning (v0.1.0) to install-core.sh matching PowerShell version
- Use mktemp for secure temp files instead of predictable /tmp/core
- Add symlink detection to prevent directory traversal attacks
- Add GPG signature verification for git tags when available
- Add checksum verification for Go binary in install-deps.sh
- Add SHA384 signature verification for Composer installer
- Replace Invoke-Expression with download-verify-execute in install-deps.ps1
- Download Homebrew/NodeSource scripts to temp files before execution
- Add security documentation and warnings for external scripts

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-02-01 01:19:45 +11:00
..
install-core.ps1 fix: production quality improvements 2026-02-01 00:54:45 +11:00
install-core.sh security: harden shell scripts with integrity verification 2026-02-01 01:19:45 +11:00
install-deps.ps1 security: harden shell scripts with integrity verification 2026-02-01 01:19:45 +11:00
install-deps.sh security: harden shell scripts with integrity verification 2026-02-01 01:19:45 +11:00