mirror of
https://github.com/alibaba/open-code-review.git
synced 2026-07-10 01:39:12 +00:00
Strip C0/C1 control characters and DEL from model/diff-derived strings before printing to the terminal, preventing OSC 52 clipboard hijack, screen erasure spoofing, and other ANSI injection attacks (CWE-150). JSON output is unaffected as encoding/json already escapes control chars. |
||
|---|---|---|
| .. | ||
| config_cmd.go | ||
| config_cmd_test.go | ||
| flags.go | ||
| git.go | ||
| llm_cmd.go | ||
| main.go | ||
| output.go | ||
| output_test.go | ||
| provider_cmd.go | ||
| provider_tui.go | ||
| provider_tui_test.go | ||
| review_cmd.go | ||
| review_cmd_test.go | ||
| rules_cmd.go | ||
| version.go | ||
| viewer_cmd.go | ||