spark-store-project/spark-store
15
0
Fork 0
mirror of https://gitee.com/spark-store-project/spark-store synced 2026-04-26 09:20:18 +08:00
Code Issues 1 Packages Projects Releases Wiki Activity
Files
7dc8b7f77fee49427a9af42b3241b2dbed4ddd1b
spark-store/electron/main/backend
History
google-labs-jules[bot] 828ffd86e8 🔒 fix: Command Injection vulnerability in install-manager.ts 
- Changed `shell: true` to `shell: false` in `spawn` calls within `electron/main/backend/install-manager.ts`.
- Updated `AGENTS.md` documentation to reflect the security best practice.
- Verified that the fix prevents command injection using a reproduction script.

Co-authored-by: vmomenv <51269338+vmomenv@users.noreply.github.com>
2026-03-10 15:53:44 +00:00
..
install-manager.ts
🔒 fix: Command Injection vulnerability in install-manager.ts
2026-03-10 15:53:44 +00:00