LEDMatrix/web_interface/blueprints/api_v3.py at 13eaabfcd56a35fac80e3380e43cb745f92b157f

mirror of https://github.com/ChuckBuilds/LEDMatrix.git synced 2026-05-26 05:53:33 +00:00

Files

Chuck 13eaabfcd5 Fix 15 remaining CodeQL path-injection and stack-trace-exposure alerts

Switch from resolve()+relative_to() to os.path.basename() reassignment,
which CodeQL recognizes as a path sanitizer that breaks the taint chain.
Also remove exception objects from backup_manager validate_backup return
strings to eliminate the stack-trace-exposure taint source.

Fixes alerts #227, #233, #234, #235, #237, #238, #239, #240, #241,
#242, #243, #244, #245, #246, #247.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-24 08:59:57 -04:00

304 KiB

Raw Blame History

View Raw

304 KiB Raw Blame History

304 KiB

Raw Blame History