Skip to content

Fix CWE-73: File Manipulation #75

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jun 4, 2025
Merged

Fix CWE-73: File Manipulation #75

merged 1 commit into from
Jun 4, 2025

Conversation

Yummikko
Copy link
Contributor

@Yummikko Yummikko commented May 15, 2025
edited
Loading

CWE Description

File Manipulation vulnerability occurs when an application allows user input to control or influence paths or file names that are used in file system operations. This could allow an attacker to access or modify system files or other files that are critical to the application. For example, an application may give an attacker the ability to overwrite a specified file or run with a configuration controlled by the attacker

PR passed the tests successfully:
Zrzut ekranu 2025-06-4 o 16 17 57

@Yummikko Yummikko force-pushed the fix_file_manipulation branch 2 times, most recently from 6a89d38 to 6333f32 Compare May 15, 2025 12:34
kroczi
kroczi reviewed May 15, 2025
View reviewed changes
@Yummikko Yummikko requested a review from kroczi May 28, 2025 10:59
kroczi
kroczi reviewed May 29, 2025
View reviewed changes
omordyk
omordyk approved these changes Jun 3, 2025
View reviewed changes
Copy link
Contributor

@omordyk omordyk left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@Yummikko Yummikko requested a review from kroczi June 3, 2025 09:07
@Yummikko Yummikko force-pushed the fix_file_manipulation branch 2 times, most recently from 76bc182 to 815818b Compare June 4, 2025 14:16
@Yummikko
Fix file manipulation
eb95d59 
Signed-off-by: Aleksandra Chyła <[email protected]>
@Yummikko Yummikko force-pushed the fix_file_manipulation branch from 815818b to eb95d59 Compare June 4, 2025 14:30
@naphelps naphelps merged commit a332abc into open-horizon:main Jun 4, 2025
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kroczi kroczi kroczi approved these changes

@naphelps naphelps naphelps approved these changes

@omordyk omordyk omordyk approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@Yummikko @kroczi @naphelps @omordyk