Mercurial > hg
annotate tests/test-check-shbang.t @ 29051:a56296f55a5e stable 3.8.1
convert: pass absolute paths to git (SEC)
Fixes CVE-2016-3105 (1/1).
Previously, it was possible for the repository path passed to git-ls-remote
to be misinterpreted as a URL.
Always passing an absolute path to git is a simple way to avoid this.
| author | Blake Burkhart <bburky@bburky.com> |
|---|---|
| date | Wed, 06 Apr 2016 22:57:46 -0500 |
| parents | 8c1759a2bdf4 |
| children | 3c9066ed557c |
| rev | line source |
|---|---|
|
28879
8c1759a2bdf4
tests: add new test for #! shebang lines
timeless <timeless@mozdev.org>
parents:
27569
diff
changeset
|
1 #require test-repo |
| 27569 | 2 |
| 3 $ cd "`dirname "$TESTDIR"`" | |
| 4 | |
|
28879
8c1759a2bdf4
tests: add new test for #! shebang lines
timeless <timeless@mozdev.org>
parents:
27569
diff
changeset
|
5 look for python scripts that do not use /usr/bin/env |
| 27569 | 6 |
|
28879
8c1759a2bdf4
tests: add new test for #! shebang lines
timeless <timeless@mozdev.org>
parents:
27569
diff
changeset
|
7 $ hg files 'set:grep(r"^#!.*?python") and not grep(r"^#!/usr/bin/env python")' |
| 27569 | 8 [1] |
| 9 | |
|
28879
8c1759a2bdf4
tests: add new test for #! shebang lines
timeless <timeless@mozdev.org>
parents:
27569
diff
changeset
|
10 look for shell scripts that do not use /bin/sh |
| 27569 | 11 |
|
28879
8c1759a2bdf4
tests: add new test for #! shebang lines
timeless <timeless@mozdev.org>
parents:
27569
diff
changeset
|
12 $ hg files 'set:grep(r"^#!.*/bin/sh") and not grep(r"^#!/bin/sh")' |
| 27569 | 13 [1] |