merge dev #3755
Open
merge dev #3755
+82,527
−1,569
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
…many resolution changes
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
This reverts commit 57a80a7.
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Automatic Color Inpaint
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| files += [f.name for f in batch_files] | ||
| if batch_folder is not None: | ||
| files += [f.name for f in batch_folder] | ||
| if batch_str is not None and len(batch_str) > 0 and os.path.exists(batch_str) and os.path.isdir(batch_str): |
Check failure
Code scanning / CodeQL
Uncontrolled data used in path expression High
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix AI 1 day ago
To fix the problem, we need to validate the batch_str path to ensure it is within a safe root directory. This involves normalizing the path and checking that it starts with the intended base path. We will implement this validation in the batch function before using the batch_str variable.
- Define a safe root directory for the batch operations.
- Normalize the
batch_strpath usingos.path.normpath. - Check that the normalized path starts with the safe root directory.
- Raise an exception if the path validation fails.
Suggested changeset
1
modules/interrogate/vqa.py
| @@ -514,5 +514,9 @@ | ||
| files += [f.name for f in batch_folder] | ||
| if batch_str is not None and len(batch_str) > 0 and os.path.exists(batch_str) and os.path.isdir(batch_str): | ||
| if batch_str is not None and len(batch_str) > 0: | ||
| safe_root = '/server/static/images' # Define a safe root directory | ||
| normalized_path = os.path.normpath(batch_str) | ||
| if not normalized_path.startswith(safe_root) or not os.path.exists(normalized_path) or not os.path.isdir(normalized_path): | ||
| raise Exception("Invalid batch_str path") | ||
| from modules.files_cache import list_files | ||
| files += list(list_files(batch_str, ext_filter=['.png', '.jpg', '.jpeg', '.webp'], recursive=recursive)) | ||
| files += list(list_files(normalized_path, ext_filter=['.png', '.jpg', '.jpeg', '.webp'], recursive=recursive)) | ||
| if len(files) == 0: |
Copilot is powered by AI and may make mistakes. Always verify output.
| files += [f.name for f in batch_files] | ||
| if batch_folder is not None: | ||
| files += [f.name for f in batch_folder] | ||
| if batch_str is not None and len(batch_str) > 0 and os.path.exists(batch_str) and os.path.isdir(batch_str): |
Check failure
Code scanning / CodeQL
Uncontrolled data used in path expression High
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix AI 1 day ago
To fix the problem, we need to validate the batch_str path before using it. The best way to do this is to normalize the path using os.path.normpath and ensure it starts with a predefined safe root directory. This will prevent directory traversal attacks and ensure that the path is within the expected directory structure.
- Define a safe root directory.
- Normalize the
batch_strpath usingos.path.normpath. - Check if the normalized path starts with the safe root directory.
- If the path is not valid, raise an exception or handle the error appropriately.
Suggested changeset
1
modules/interrogate/vqa.py
| @@ -514,5 +514,10 @@ | ||
| files += [f.name for f in batch_folder] | ||
| if batch_str is not None and len(batch_str) > 0 and os.path.exists(batch_str) and os.path.isdir(batch_str): | ||
| from modules.files_cache import list_files | ||
| files += list(list_files(batch_str, ext_filter=['.png', '.jpg', '.jpeg', '.webp'], recursive=recursive)) | ||
| if batch_str is not None and len(batch_str) > 0: | ||
| safe_root = '/server/static/images' # Define your safe root directory | ||
| normalized_path = os.path.normpath(batch_str) | ||
| if not normalized_path.startswith(safe_root): | ||
| raise Exception("Invalid path") | ||
| if os.path.exists(normalized_path) and os.path.isdir(normalized_path): | ||
| from modules.files_cache import list_files | ||
| files += list(list_files(normalized_path, ext_filter=['.png', '.jpg', '.jpeg', '.webp'], recursive=recursive)) | ||
| if len(files) == 0: |
Copilot is powered by AI and may make mistakes. Always verify output.
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Signed-off-by: Vladimir Mandic <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.