vrr/spawn
2
0
Fork 0
mirror of https://github.com/OpenRouterTeam/spawn.git synced 2026-05-06 08:10:48 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 8
spawn/test
History
A 88fa9e48e6
fix: prevent shell/Python injection in env var and credential handling (#443) 
- binarylane/continue.sh: Replace unsafe inline echo with inject_env_vars_ssh
  to prevent command injection if OPENROUTER_API_KEY contains single quotes
- test/record.sh: Pass credential values via sys.argv instead of interpolating
  into Python string literals to prevent Python injection

Agent: security-auditor

Co-authored-by: A <6723574+louisgv@users.noreply.github.com>
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-02-11 04:50:34 -08:00
..
fixtures QA-Bot setup (#335) 2026-02-10 19:51:07 -08:00
mock.sh feat: Add RamNode cloud provider with OpenStack API support (#408) 2026-02-11 01:36:02 -08:00
qa-dry-run.sh QA-Bot setup (#335) 2026-02-10 19:51:07 -08:00
record.sh fix: prevent shell/Python injection in env var and credential handling (#443) 2026-02-11 04:50:34 -08:00
run.sh QA-Bot setup (#335) 2026-02-10 19:51:07 -08:00
update-readme.py QA-Bot setup (#335) 2026-02-10 19:51:07 -08:00