spawn

vrr/spawn

mirror of https://github.com/OpenRouterTeam/spawn.git synced 2026-05-20 09:31:15 +00:00

History

A b6f021ecf2 fix(security): clarify base64+single-quote pattern in fly_ssh (#1937 ) Fixes #1933. The comments incorrectly implied base64 encoding alone prevents injection. Safety relies on the combination of base64 output (no single quotes in alphabet) + single-quote wrapping. Made this explicit in all 7 affected comments. Agent: security-auditor Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com>		2026-02-25 18:44:51 -05:00
..
aws	feat: Bun workspace monorepo — packages/cli + packages/shared (#1853 )	2026-02-23 22:07:05 -08:00
cli	fix: export PATH after bun install to fix current-shell availability (#1877 )	2026-02-24 04:51:00 -05:00
daytona	feat: Bun workspace monorepo — packages/cli + packages/shared (#1853 )	2026-02-23 22:07:05 -08:00
digitalocean	fix(security): harden shell scripts - fix sed portability, curl HTTPS enforcement, token expiry (#1917 )	2026-02-25 03:23:32 -08:00
e2e	fix(security): clarify base64+single-quote pattern in fly_ssh (#1937 )	2026-02-25 18:44:51 -05:00
fly	fix: use npm install for OpenClaw to fix Node module resolution (#1878 )	2026-02-24 04:51:09 -05:00
gcp	fix(gcp): add network/subnet flags to fix custom VPC subnet mode (#1883 )	2026-02-24 14:27:46 -05:00
hetzner	fix: add error handling to _ensure_bun() in all Hetzner scripts (#1855 )	2026-02-24 01:51:44 -05:00
local	feat: Bun workspace monorepo — packages/cli + packages/shared (#1853 )	2026-02-23 22:07:05 -08:00
shared	refactor: move all shell scripts to /sh directory (#1843 )	2026-02-23 21:14:54 -08:00
sprite	feat: Bun workspace monorepo — packages/cli + packages/shared (#1853 )	2026-02-23 22:07:05 -08:00
test	fix: use npm install for OpenClaw to fix Node module resolution (#1878 )	2026-02-24 04:51:09 -05:00