Skip to content

Fix CWE-73: File Manipulation #75

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Jun 4, 2025

Conversation

Yummikko
Copy link
Contributor

@Yummikko Yummikko commented May 15, 2025

CWE Description

File Manipulation vulnerability occurs when an application allows user input to control or influence paths or file names that are used in file system operations. This could allow an attacker to access or modify system files or other files that are critical to the application. For example, an application may give an attacker the ability to overwrite a specified file or run with a configuration controlled by the attacker

PR passed the tests successfully:
Zrzut ekranu 2025-06-4 o 16 17 57

@Yummikko Yummikko force-pushed the fix_file_manipulation branch 2 times, most recently from 6a89d38 to 6333f32 Compare May 15, 2025 12:34
@Yummikko Yummikko requested a review from kroczi May 28, 2025 10:59
Copy link
Contributor

@omordyk omordyk left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@Yummikko Yummikko requested a review from kroczi June 3, 2025 09:07
@Yummikko Yummikko force-pushed the fix_file_manipulation branch 2 times, most recently from 76bc182 to 815818b Compare June 4, 2025 14:16
Signed-off-by: Aleksandra Chyła <[email protected]>
@Yummikko Yummikko force-pushed the fix_file_manipulation branch from 815818b to eb95d59 Compare June 4, 2025 14:30
@naphelps naphelps merged commit a332abc into open-horizon:main Jun 4, 2025
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants