vrr/spawn
2
0
Fork 0
mirror of https://github.com/OpenRouterTeam/spawn.git synced 2026-04-28 03:49:31 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 10
spawn/sh/e2e
History
A 8c73bb9713
fix(security): replace fragile printenv with eval parameter expansion in timeout functions (#3238) 
The get_provision_timeout and get_agent_timeout functions used printenv with
dynamically constructed variable names, which is fragile across shells and
platforms. Replace with eval-based parameter expansion using the already-
sanitized safe_agent variable (restricted to [A-Za-z0-9_]).

Fixes #3234

Agent: security-auditor

Co-authored-by: B <6723574+louisgv@users.noreply.github.com>
Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-04-08 01:44:43 -07:00
..
lib fix(security): replace fragile printenv with eval parameter expansion in timeout functions (#3238) 2026-04-08 01:44:43 -07:00
e2e.sh fix(security): restrict temp file permissions in send_matrix_email (#3239) 2026-04-08 15:33:34 +07:00
interactive-harness.ts fix(digitalocean): use canonical DIGITALOCEAN_ACCESS_TOKEN env var (#3099) 2026-03-30 08:48:56 +07:00