[ Source: golang-github-cli-safeexec ]
Paketti: golang-github-cli-safeexec-dev (1.0.1-1)
Links for golang-github-cli-safeexec-dev
Debian-palvelut:
Imuroi lähdekoodipaketti golang-github-cli-safeexec:
- [golang-github-cli-safeexec_1.0.1-1.dsc]
- [golang-github-cli-safeexec_1.0.1.orig.tar.gz]
- [golang-github-cli-safeexec_1.0.1-1.debian.tar.xz]
Ylläpitäjät:
External Resources:
- Kotisivu [github.com]
Samankaltaisia paketteja:
- elpa-inheritenv
- golang-github-bmatsuo-lmdb-go-dev
- ruby-tty-which
- libfile-searchpath-perl
- powerline-go
- golang-github-wellington-go-libsass-dev
- golang-github-smallstep-assert-dev
- golang-github-joshuarubin-lifecycle-dev
- golang-github-radovskyb-watcher-dev
- librust-search-path-dev
- libtest2-tools-command-perl
safer version of exec.LookPath on Windows
safeexec is a Go module that provides a safer alternative to exec.LookPath() on Windows.
The following, relatively common approach to running external commands has a subtle vulnerability on Windows:
import "os/exec"
func gitStatus() error {
// On Windows, this will result in .\git.exe or .\git.bat being executed
// if either were found in the current working directory.
cmd := exec.Command("git", "status") return cmd.Run()
}
Searching the current directory (surprising behavior) before searching folders listed in the PATH environment variable (expected behavior) seems to be intended in Go and unlikely to be changed: https://github.com/golang/go/issues/38736
Since Go does not provide a version of exec.LookPath() that only searches PATH and does not search the current working directory, this module provides a LookPath function that works consistently across platforms.
Example use:
import (
"os/exec" "github.com/cli/safeexec"
)
func gitStatus() error {
gitBin, err := safeexec.LookPath("git")
if err != nil {
return err
}
cmd := exec.Command(gitBin, "status")
return cmd.Run()
}
Imuroi golang-github-cli-safeexec-dev
| Arkkitehtuuri | Paketin koko | Koko asennettuna | Tiedostot |
|---|---|---|---|
| all | 5.6 kt | 33.0 kt | [tiedostoluettelo] |