fix: add explicit input validation to capture-agent.sh (Fixes #2281) (#2282)

Add whitelist validation for AGENT_NAME immediately after the empty check to prevent command injection and path traversal via the parameter. While the existing case statement catches unknown agents, explicit upfront validation makes the security intent clear and defensive. Agent: security-auditor Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-05-19 16:39:50 +00:00 · 2026-03-07 06:27:28 -08:00 · 2026-03-07 06:27:28 -08:00 · 70d8462e56
commit 70d8462e56
parent bf28ccde87
1 changed files with 9 additions and 0 deletions
--- a/packer/scripts/capture-agent.sh
+++ b/packer/scripts/capture-agent.sh
@ -11,6 +11,15 @@ if [ -z "${AGENT_NAME}" ]; then
  exit 1
 fi

+# Validate agent name against allowed list to prevent injection
+case "${AGENT_NAME}" in
+  openclaw|codex|kilocode|claude|opencode|zeroclaw|hermes) ;;
+  *)
+    printf 'Error: Invalid agent name: %s\nAllowed: openclaw, codex, kilocode, claude, opencode, zeroclaw, hermes\n' "${AGENT_NAME}" >&2
+    exit 1
+    ;;
+esac
+
 PATHS_FILE="/tmp/spawn-tarball-paths.txt"
 : > "${PATHS_FILE}"