|
|
61c59814a5
|
feat(security): strengthen theme security against multiple attack vectors
Code check / Check code (push) Successful in 1m6s
- Detect dangerous modules, functions, attributes, and system/network operations
- Prevent code execution via dynamic imports, reflection, and importlib
- Block f-string injection and dangerous expressions
- Detect obfuscated code patterns, including string concatenation (im+port, ev+al),
Base64-encoded payloads, and character code arrays
- Validate image files using extension checks, magic bytes, and size limits
- Implement AST-based analysis for deep code inspection
Signed-off-by: Boris Yumankulov <boria138@altlinux.org>
|
2025-12-25 16:02:34 +05:00 |
|
