almet/dangerzone
1
0
Fork 0
mirror of https://github.com/freedomofpress/dangerzone.git synced 2025-04-28 18:02:38 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 11
dangerzone/tests
History
deeplow f9b564be03
Security: cli wildcard injection mitigation 
Wildcard arguments like `*` can lead to security vulnerabilities
if files are maliciously named as would-be parameters. In the following
scenario if a file in the current directory was named '--help', running
the following command would show the help.

  $ dangerzone-cli *

By checking if parameters also happen to be files, we mitigate this
risk and have a chance to warn the user.
2022-11-14 08:53:38 +00:00
..
test_docs migrate to pytest & test_docs -> tests/test_docs 2022-09-13 13:07:58 +01:00
__init__.py Move safe PDF naming logic to document.py 2022-10-27 13:44:12 +01:00
test_cli.py Security: cli wildcard injection mitigation 2022-11-14 08:53:38 +00:00
test_document.py Sequential bulk document support in cli 2022-11-14 08:51:00 +00:00
test_util.py tests: Run Mypy against tests 2022-10-25 19:09:23 +03:00