vrr/qwen-code
2
0
Fork 0
mirror of https://github.com/QwenLM/qwen-code.git synced 2026-04-29 20:20:57 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 24

Replace the not functional CodeQL comments

Browse source
This commit is contained in:
Alexander Farber 2025-12-12 14:42:20 +01:00
parent 9adad2f369
commit fa8b5a7762
No known key found for this signature in database
2 changed files with 6 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

8
packages/cli/src/utils/sandbox.ts
View file

@ -291,8 +291,8 @@ export async function start_sandbox(
sandboxEnv['NO_PROXY'] = noProxy;
sandboxEnv['no_proxy'] = noProxy;
}
// CLI tool intentionally executes user-provided proxy commands
// codeql-disable-next-line js/shell-command-injection-from-environment
// Note: CodeQL flags this as js/shell-command-injection-from-environment.
// This is intentional - CLI tool executes user-provided proxy commands.
proxyProcess = spawn('bash', ['-c', proxyCommand], {
stdio: ['ignore', 'pipe', 'pipe'],
detached: true,
@ -787,8 +787,8 @@ export async function start_sandbox(
const proxyShellArgs = isWindows
? ['/c', proxyContainerCommand]
: ['-c', proxyContainerCommand];
// CLI tool intentionally executes user-provided proxy commands in container
// codeql-disable-next-line js/shell-command-injection-from-environment
// Note: CodeQL flags this as js/shell-command-injection-from-environment.
// This is intentional - CLI tool executes user-provided proxy commands in container.
proxyProcess = spawn(proxyShell, proxyShellArgs, {
stdio: ['ignore', 'pipe', 'pipe'],
detached: true,