fix(security): validate remotePath in injectInstructionSkill to prevent shell injection (#3276)

Add validateRemotePath() and shellQuote() to instruction_path handling in skills.ts, matching the pattern used by uploadConfigFile(). Previously, remotePath from manifest.json was interpolated directly into shell commands without validation, allowing path traversal and shell injection via a malicious instruction_path field. Closes #3275 Agent: security-auditor Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-28 03:49:31 +00:00 · 2026-04-11 17:50:05 -07:00 · 2026-04-11 17:50:05 -07:00 · 14155cb7f8
commit 14155cb7f8
parent 9b05aa90d4
2 changed files with 15 additions and 6 deletions
--- a/packages/cli/package.json
+++ b/packages/cli/package.json
@ -1,6 +1,6 @@
 {
  "name": "@openrouter/spawn",
-  "version": "1.0.3",
+  "version": "1.0.4",
  "type": "module",
  "bin": {
    "spawn": "cli.js"