Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Path traversal detection in shell injection #205

Open
wants to merge 4 commits into
base: main
Choose a base branch
from
Open

Path traversal detection in shell injection #205

wants to merge 4 commits into from

Conversation

hansott
Copy link
Member

@hansott hansott commented May 28, 2024

No description provided.

@codecov Codecov
Copy link

codecov bot commented May 28, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

📢 Thoughts on this report? Let us know!

@hansott
Merge branch 'main' of github.com:AikidoSec/node-RASP into path-trave…
f476327 
…rsal-shell

* 'main' of github.com:AikidoSec/node-RASP: (1117 commits)
  Fix broken link in Next.js docs
  Increase to 25%
  Fix flaky performance test
  Remove eval sink
  Fix merge
  Add performance test
  Shorten function
  Shorten methods
  Fix tests for attackPath
  Add failing tests
  Add breaking test
  Add test
  Add more tests
  Improve test coverage
  Extend and fix tests
  Link to Aikido Blog for Command Injection attacks
  Use more efficient ip matcher
  Fix tests
  Fix again
  fix: Wrong payload path after merge
  ...
@hansott
Fix lint
f73d035
@bitterpanda63
Copy link
Member

Hmm would this not create some false positives like user input being ".exe" and then every command being flagged that has .exe?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
feat
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@hansott @bitterpanda63