GeneralBots/botserver
2
1
Fork 0
Code Issues Pull requests Projects Releases 323 Packages Wiki Activity Actions
botserver/src/security
History
Rodrigo Rodriguez (Pragmatismo) b674d85583 Fix SafeCommand to allow shell scripts with redirects and command chaining 
- Add shell_script_arg() method for bash/sh/cmd -c scripts
- Allow > < redirects in shell scripts (blocked in regular args)
- Allow && || command chaining in shell scripts
- Update safe_sh_command functions to use shell_script_arg
- Update run_commands, start, and LLM server commands
- Block dangerous patterns: backticks, path traversal
- Fix struct field mismatches and type errors
2026-01-08 23:50:38 -03:00
..
antivirus.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
api_keys.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
audit.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
auth.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
ca.rs feat(autotask): Implement AutoTask system with intent classification and app generation 2025-12-27 21:10:09 -03:00
cert_pinning.rs Security audit: Remove all production .unwrap()/.expect(), add SafeCommand, ErrorSanitizer 2025-12-28 21:26:08 -03:00
command_guard.rs Fix SafeCommand to allow shell scripts with redirects and command chaining 2026-01-08 23:50:38 -03:00
cors.rs feat(security): Complete security wiring and log audit 2025-12-28 19:41:33 -03:00
csrf.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
dlp.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
encryption.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
error_sanitizer.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
headers.rs Serve HTMX locally - no CDN dependencies 2026-01-02 17:54:36 -03:00
integration.rs Fix tasks UI, WebSocket progress, memory monitoring, and app generator 2025-12-30 22:42:32 -03:00
jwt.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
mfa.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
mod.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
mutual_tls.rs Remove all code comments and fix ratatui version 2025-12-23 18:40:58 -03:00
panic_handler.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
passkey.rs Fix SafeCommand to allow shell scripts with redirects and command chaining 2026-01-08 23:50:38 -03:00
password.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
path_guard.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
prompt_security.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
rate_limiter.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
rbac_middleware.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
request_id.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
secrets.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
security_monitoring.rs Fix SafeCommand to allow shell scripts with redirects and command chaining 2026-01-08 23:50:38 -03:00
session.rs Add video module, RBAC, security features, billing, contacts, dashboards, learn, social, and multiple new modules 2026-01-08 13:16:17 -03:00
sql_guard.rs Allow dynamic tables from app_generator in db_api 2026-01-02 18:20:04 -03:00
tls.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
validation.rs feat(security): Complete security infrastructure implementation 2025-12-28 19:29:18 -03:00
webhook.rs Fix SafeCommand to allow shell scripts with redirects and command chaining 2026-01-08 23:50:38 -03:00
zitadel_auth.rs feat(auth): Add OTP password display on bootstrap and fix Zitadel login flow 2026-01-06 22:56:35 -03:00