vrr/spawn
2
0
Fork 0
mirror of https://github.com/OpenRouterTeam/spawn.git synced 2026-05-05 23:50:48 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 8
spawn/digitalocean
History
A b0f924b511
fix: Prevent Python/shell injection via env vars and triple-quote strings (#102) 
- Fix triple-quote injection in SSH keys (Scaleway, UpCloud), userdata
  (BinaryLane), init scripts (Civo, Kamatera), and GraphQL queries
  (RunPod) by passing data via stdin/json_escape instead of inline
  string interpolation
- Add input validation for all cloud provider env vars (region, type,
  plan, etc.) using validate_region_name/validate_resource_name to block
  shell metacharacters before they reach Python string interpolation
- Validate Modal image name as Python identifier to prevent code injection
- Validate numeric env vars (RAM, GPU count, disk size) across all providers

Affects: 19 cloud provider lib/common.sh files
Agent: security-auditor

Co-authored-by: A <6723574+louisgv@users.noreply.github.com>
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-02-09 10:22:39 -08:00
..
lib fix: Prevent Python/shell injection via env vars and triple-quote strings (#102) 2026-02-09 10:22:39 -08:00
aider.sh refactor: add explicit timeout to wait_for_cloud_init calls 2026-02-08 02:38:19 +00:00
amazonq.sh refactor: Extract ENV_TEMP pattern to inject_env_vars_ssh (SSH providers) 2026-02-08 04:11:15 +00:00
claude.sh refactor: add explicit timeout to wait_for_cloud_init calls 2026-02-08 02:38:19 +00:00
cline.sh refactor: Extract ENV_TEMP pattern to inject_env_vars_ssh (SSH providers) 2026-02-08 04:11:15 +00:00
codex.sh refactor: add explicit timeout to wait_for_cloud_init calls 2026-02-08 02:38:19 +00:00
gemini.sh refactor: Extract ENV_TEMP pattern to inject_env_vars_ssh (SSH providers) 2026-02-08 04:11:15 +00:00
goose.sh refactor: add explicit timeout to wait_for_cloud_init calls 2026-02-08 02:38:19 +00:00
gptme.sh Add guardrails: CLAUDE.md rules, hooks, pre-commit validation (#33) 2026-02-07 20:02:19 -08:00
interpreter.sh refactor: add explicit timeout to wait_for_cloud_init calls 2026-02-08 02:38:19 +00:00
nanoclaw.sh fix: remove undefined ENV_TEMP from nanoclaw trap handlers 2026-02-08 03:20:36 +00:00
openclaw.sh refactor: add explicit timeout to wait_for_cloud_init calls 2026-02-08 02:38:19 +00:00
opencode.sh fix: Use robust OpenCode install method across all clouds (#48) 2026-02-07 23:02:18 -08:00
plandex.sh Add Plandex coding agent with 14 cloud implementations (#36) 2026-02-07 21:35:04 -08:00
README.md fix: Improve CLI error handling, fix bash compat, and update cloud READMEs (#90) 2026-02-09 09:33:57 -08:00

README.md

DigitalOcean

DigitalOcean Droplets via REST API. DigitalOcean

Agents

Claude Code

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/claude.sh)

OpenClaw

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/openclaw.sh)

NanoClaw

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/nanoclaw.sh)

Aider

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/aider.sh)

Goose

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/goose.sh)

Codex CLI

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/codex.sh)

Open Interpreter

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/interpreter.sh)

Gemini CLI

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/gemini.sh)

Amazon Q CLI

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/amazonq.sh)

Cline

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/cline.sh)

gptme

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/gptme.sh)

OpenCode

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/opencode.sh)

Plandex

bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/plandex.sh)

Non-Interactive Mode

DO_DROPLET_NAME=dev-mk1 \
DO_API_TOKEN=your-token \
OPENROUTER_API_KEY=sk-or-v1-xxxxx \
  bash <(curl -fsSL https://openrouter.ai/lab/spawn/digitalocean/claude.sh)