milliways-infosec/AikidoSec-safe-chain - Forgejo: Beyond coding. We Forge.

milliways-infosec/AikidoSec-safe-chain

mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 12:10:49 +00:00

Author	SHA1	Message	Date
Reinier Criel	782af8e789	Merge pull request #411 from AikidoSec/feat/dynamic-install-dir Add support for custom install directory	2026-04-16 10:04:25 -07:00
Reinier Criel	6ff2ee3367	Adapt per review	2026-04-14 11:30:29 -07:00
Stephen Benjamin	14c8abffea	Add uvx support Add uvx as a supported package manager so that `uvx` commands are routed through safe-chain's MITM proxy for malware detection, just like `uv`. Previously, `uvx` bypassed all safe-chain protections. The uvx package manager reuses the existing uv command runner since uvx is functionally equivalent to `uv tool run`. Fixes #268 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-04-14 10:04:10 -04:00
Reinier Criel	d064d46668	Cleanup	2026-04-13 11:01:45 -07:00
Reinier Criel	b0f392522b	Some cleanup	2026-04-10 14:08:59 -07:00
Reinier Criel	a0fb8d6b3d	Add env var support for home dir	2026-04-10 08:57:08 -07:00
Sander Declerck	87c5eddc9e	Write warning when getting executionpolicy fails	2026-02-05 11:52:06 +01:00
Sander Declerck	149a28e0dc	Improve comments	2026-02-05 11:20:14 +01:00
Sander Declerck	0dfa151b02	Fix linting	2026-02-05 10:45:45 +01:00
Sander Declerck	13f2ae6e22	Fix PSModulePath	2026-02-05 10:45:13 +01:00
Sander Declerck	aa461b27c3	Use safeSpawn	2026-02-05 10:24:28 +01:00
Sander Declerck	3e90c0abd1	Import module for execution policy	2026-02-05 10:12:43 +01:00
Sander Declerck	ad32a8d9be	Run command for execution policy with -Command	2026-02-05 10:05:26 +01:00
Sander Declerck	ff16530314	Fix linting	2026-02-05 09:52:18 +01:00
Sander Declerck	e9799e283f	Check powershell execution policy in setup function	2026-02-05 09:49:36 +01:00
Sander Declerck	309d7df050	Don't insert empty line in rc file when it already ends with an empty line	2026-01-27 07:42:36 +01:00
Reinier Criel	d2fc531c81	Fix tests and add command support	2025-12-18 10:33:31 +01:00
Reinier Criel	dc6fcb9761	Skeleton	2025-12-15 14:42:58 +01:00
Reinier Criel	a405a51706	Also remove script dir	2025-12-12 11:17:17 -08:00
Reinier Criel	2b0f8d9f0d	Skeleton	2025-12-11 15:13:15 -08:00
Reinier Criel	82416456a0	Some small fixes	2025-12-03 07:58:09 -08:00
Reinier Criel	c1a12c9573	Merge branch 'main' into feature/poetry-2	2025-12-03 07:41:52 -08:00
Sander Declerck	8852afb5fa	Fix e2e tests	2025-11-28 18:05:09 +01:00
Reinier Criel	4bfc315b57	Skeleton	2025-11-26 14:13:49 -08:00
Reinier Criel	cab3a0aba3	Add uv (Astral Python package manager) support - Add uv package manager implementation following pip pattern - Configure MITM proxy with CA bundle for PyPI packages - Add shell integration (bash/zsh/fish/PowerShell) - Conditional on --include-python flag - Add 33 comprehensive E2E tests covering: - uv pip install/sync/compile commands - uv add for project dependencies - uv tool install for global tools - uv run --with for ephemeral dependencies - uv sync for project syncing - Malware blocking verification for all methods - Update documentation and package.json - Install uv in Docker test environment	2025-11-25 14:10:20 -08:00
Sander Declerck	c6bcd6f646	Add feature flag in setup for python support.	2025-11-14 14:12:44 +01:00
Reinier Criel	f400c5576a	WIP	2025-11-06 08:32:25 -08:00
Reinier Criel	548d416996	Merge remote-tracking branch 'origin/main' into feature/pypi	2025-11-03 06:49:53 -08:00
Hans Ott	e8e7c85c62	Revert "Introduce mistake that passes linter" This reverts commit `1724e0b199`.	2025-11-02 15:31:23 +01:00
Hans Ott	1724e0b199	Introduce mistake that passes linter	2025-11-02 15:31:02 +01:00
Hans Ott	0cfce2d436	Revert "Example of mistake" This reverts commit `b489fe822c`.	2025-11-02 15:29:36 +01:00
Hans Ott	b489fe822c	Example of mistake	2025-11-02 15:29:23 +01:00
Hans Ott	e164eb8b95	Reduce diff	2025-11-01 13:47:13 +01:00
Hans Ott	484cbcd960	Use @typedef {Object} X When you write @typedef {Object} ScanResult, you’re telling both JSDoc and TypeScript’s parser that this typedef represents an object type, not just an abstract name. This is important because it makes tools like IDEs, linters, and TypeScript’s JSDoc inference more reliable. It avoids ambiguity, especially in cases where the typedef might later be confused with something like a primitive, union, or function type. The official TypeScript documentation and the JSDoc spec both show this form as the canonical one for object shapes.	2025-11-01 13:28:11 +01:00
Hans Ott	c88b1a624f	Type check safe-chain package	2025-11-01 13:06:06 +01:00
Reinier Criel	8f877742d0	Fix permissions issue with aikido-pip3	2025-10-27 11:48:30 -07:00
Reinier Criel	f817bf887a	Update documentation	2025-10-23 10:23:42 -07:00
Sander Declerck	329405e8f2	Merge pull request #93 from AikidoSec/bun-wrapper Wrap bun with safe-chain to block downloads of packages with malware	2025-10-08 16:27:56 +02:00
Sander Declerck	43dcba8802	Wrap bun with safe-chain to block downloads of packages with malware	2025-10-08 15:12:06 +02:00
Sander Declerck	cc4d20e380	Fix line explosion on Windows PowerShell	2025-10-02 15:15:04 +02:00
Sander Declerck	b2ce8a2abb	Merge branch 'main' into non-interactive-terminal-support	2025-09-23 13:33:10 +02:00
Sander Declerck	d1c0982942	Base safe-chain setupci implementation	2025-09-18 17:44:42 +02:00
Sander Declerck	91473838d2	Merge branch 'main' into setup-check-if-dir-exists	2025-09-18 10:27:00 +02:00
Sander Declerck	f7589160af	Merge pull request #61 from AikidoSec/respect-empty-lines-in-shell-startup-files Don't remove empty lines in shell startup scripts. Fixes #58	2025-09-18 10:24:38 +02:00
Sander Declerck	93c23ee39f	Always use \n line endings for bash, zsh and fish	2025-09-18 08:05:11 +02:00
Sander Declerck	57ce17e7f5	Don't remove empty lines in shell startup scripts. Fixes #58	2025-09-17 16:42:10 +02:00
Sander Declerck	f793bb8467	Check if directory exists before creating a new shell startup file	2025-09-17 15:26:06 +02:00
Sander Declerck	7673d32912	Move safe-chain package to packages/safe-chain	2025-09-05 11:19:37 +02:00