mirror of
https://github.com/alibaba/open-code-review.git
synced 2026-07-09 17:28:58 +00:00
Strip C0/C1 control characters and DEL from model/diff-derived strings before printing to the terminal, preventing OSC 52 clipboard hijack, screen erasure spoofing, and other ANSI injection attacks (CWE-150). JSON output is unaffected as encoding/json already escapes control chars. |
||
|---|---|---|
| .. | ||
| opencodereview | ||
| testdiff | ||