New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

BREAKING CHANGE: limit syntax for bracketed lookup strings to fix vuln #145

Merged

trentm merged 6 commits into master from fix-144

Aug 28, 2020

Commits on Aug 23, 2020

BREAKING CHANGE: limit syntax for bracketed lookup strings to fix vuln

This restricts the supported syntax for *bracketed* parts of lookup
strings to avoid the need to *eval* that string. The eval is a
security vulnerability that allows command injection.

Fixes #144

trentm committed Aug 23, 2020

Commits on Aug 28, 2020

fix 'make check'

trentm committed Aug 28, 2020

Copy the full SHA

ce6d037 View commit details

Browse the repository at this point in the history
fix 'make check-version'

trentm committed Aug 28, 2020

Copy the full SHA

1ec5e47 View commit details

Browse the repository at this point in the history
better changelog

trentm committed Aug 28, 2020

Copy the full SHA

52731bc View commit details

Browse the repository at this point in the history
improve error handling and add a test case

trentm committed Aug 28, 2020

Copy the full SHA

2f04d36 View commit details

Browse the repository at this point in the history
changelog reflow and typos/tweaks

trentm committed Aug 28, 2020

Copy the full SHA

639eb07 View commit details

Browse the repository at this point in the history