alex/ArchiveBox
1
0
Fork 0
mirror of https://github.com/ArchiveBox/ArchiveBox.git synced 2026-04-06 07:47:53 +10:00
Code Issues Packages Projects Releases Wiki Activity
Files
3659adeb7ea93ed5b57dcb8fe4bb3dbc517c36d8
ArchiveBox/archivebox/cli
History
claude[bot] 3659adeb7e Fix path traversal vulnerabilities in persona management 
Add input validation and path safety checks to prevent path traversal
attacks in persona name handling:

- Add validate_persona_name() to block dangerous characters (/, \, .., etc)
- Add ensure_path_within_personas_dir() to verify resolved paths stay within PERSONAS_DIR
- Apply validation at persona creation, renaming, and deletion operations

Fixes security issues identified by cubic-dev-ai in PR review.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
Co-authored-by: Nick Sweeting <pirate@users.noreply.github.com>
2025-12-31 18:30:26 +00:00
..
__init__.py
Add persona CLI command with browser cookie import
2025-12-31 12:13:07 +00:00
archivebox_add.py
fix initial migrtaions
2025-12-29 21:27:31 -08:00
archivebox_archiveresult.py
Implement JSONL CLI pipeline architecture (Phases 1-4, 6)
2025-12-31 10:07:14 +00:00
archivebox_binary.py
Implement JSONL CLI pipeline architecture (Phases 1-4, 6)
2025-12-31 10:07:14 +00:00
archivebox_config.py
wip
2025-12-28 17:51:54 -08:00
archivebox_crawl.py
Implement JSONL CLI pipeline architecture (Phases 1-4, 6)
2025-12-31 10:07:14 +00:00
archivebox_extract.py
new jsonl cli interface
2025-12-30 16:12:53 -08:00
archivebox_help.py
move main funcs into cli files and switch to using click for CLI
2024-11-19 00:18:51 -08:00
archivebox_init.py
new jsonl cli interface
2025-12-30 16:12:53 -08:00
archivebox_install.py
more migration fixes
2025-12-29 22:12:57 -08:00
archivebox_machine.py
Implement JSONL CLI pipeline architecture (Phases 1-4, 6)
2025-12-31 10:07:14 +00:00
archivebox_manage.py
fix archivebox shell and manage CLI commands
2024-11-19 00:48:39 -08:00
archivebox_mcp.py
add mcp server support
2025-12-25 01:51:42 -08:00
archivebox_orchestrator.py
new jsonl cli interface
2025-12-30 16:12:53 -08:00
archivebox_persona.py
Fix path traversal vulnerabilities in persona management
2025-12-31 18:30:26 +00:00
archivebox_pluginmap.py
Add pluginmap management command
2025-12-31 10:19:58 +00:00
archivebox_process.py
Implement JSONL CLI pipeline architecture (Phases 1-4, 6)
2025-12-31 10:07:14 +00:00
archivebox_remove.py
new jsonl cli interface
2025-12-30 16:12:53 -08:00
archivebox_run.py
Implement JSONL CLI pipeline architecture (Phases 1-4, 6)
2025-12-31 10:07:14 +00:00
archivebox_schedule.py
wip major changes
2025-12-24 20:10:38 -08:00
archivebox_search.py
new jsonl cli interface
2025-12-30 16:12:53 -08:00
archivebox_server.py
much better tests and add page ui
2025-12-29 04:02:11 -08:00
archivebox_shell.py
fix archivebox shell and manage CLI commands
2024-11-19 00:48:39 -08:00
archivebox_snapshot.py
Implement JSONL CLI pipeline architecture (Phases 1-4, 6)
2025-12-31 10:07:14 +00:00
archivebox_status.py
wip
2025-12-28 17:51:54 -08:00
archivebox_tag.py
Implement JSONL CLI pipeline architecture (Phases 1-4, 6)
2025-12-31 10:07:14 +00:00
archivebox_update.py
more migration fixes
2025-12-30 09:57:33 -08:00
archivebox_version.py
wip
2025-12-28 17:51:54 -08:00
archivebox_worker.py
much better tests and add page ui
2025-12-29 04:02:11 -08:00
cli_utils.py
Implement JSONL CLI pipeline architecture (Phases 1-4, 6)
2025-12-31 10:07:14 +00:00
tests_piping.py
Add unit tests for JSONL CLI pipeline commands (Phase 5 & 6)
2025-12-31 10:21:05 +00:00
tests.py
use full dotted paths for all archivebox imports, add migrations and more fixes
2025-12-29 00:47:08 -08:00