milliways-infosec/AikidoSec-safe-chain
7
0
Fork 0
mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 20:20:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
888 commits 61 branches 106 tags 3.3 MiB
Commit graph

466 commits

Author SHA1 Message Date
Sander Declerck
a377fd6caa
Listen to error events on sockets 2025-10-10 13:55:39 +02:00
Hans Ott
5518846e96
Update packages/safe-chain/package.json 
Co-authored-by: Timo Kössler <info@timokoessler.de>
 2025-10-10 11:45:34 +02:00
Hans Ott
41ab4b1edb Use oxlint instead of eslint 
- Less dev dependencies
- Much faster
- More helpful output
- More sane defaults
- Easier config
 2025-10-09 18:03:45 +02:00
Hans Ott
459f3a5b14 Remove unused import 2025-10-09 17:35:29 +02:00
Hans Ott
0afea0eed6 Remove safeSpawnSync (unused) 2025-10-09 16:44:55 +02:00
Sander Declerck
ad7e94dac4
Add unit tests for yarn environment variables 2025-10-09 15:35:43 +02:00
Sander Declerck
d5620b2d12
Don't set YARN_HTTPS_CA_FILE_PATH, it ignores all system CAs 2025-10-09 14:58:06 +02:00
Sander Declerck
219a189993
Check if a socket is writable before writing to it 2025-10-08 19:32:25 +02:00
Sander Declerck
41e88d422e
Add mention of bun everywhere 2025-10-08 16:42:59 +02:00
Sander Declerck
b08b4e2d4e
Wrap bun with safe-chain to block downloads of packages with malware 2025-10-08 16:42:59 +02:00
Sander Declerck
361b56a715
Merge pull request #85 from AikidoSec/powerrshell-line-explosion-fix 
Fix line explosion on Windows PowerShell
 2025-10-08 15:49:10 +02:00
Sander Declerck
16c76de0f3
Add comment on how safe-chain works with the system proxy. 2025-10-08 11:38:21 +02:00
Sander Declerck
8950d528d5
Fix tests to match new behavior 2025-10-08 10:56:31 +02:00
Sander Declerck
240123372a
Handle PR Comments 2025-10-08 10:49:04 +02:00
Sander Declerck
486a4b8f68
Escape special chars in shell scripts 2025-10-06 16:25:12 +02:00
Sander Declerck
ea383a18de
Insert proxy settings for npx as well 2025-10-06 16:23:56 +02:00
Sander Declerck
3ef4ed8bad
Update main.js code flow so proxy always gets stopped + add comment on why exit status is handled in bin/aikido-(tool).js 2025-10-06 13:47:38 +02:00
Sander Declerck
ccaa7934ee
Improve cli output. 2025-10-03 16:21:55 +02:00
Sander Declerck
cc4d20e380
Fix line explosion on Windows PowerShell 2025-10-02 15:15:04 +02:00
Sander Declerck
53bfb14fea
Only load the malware database once 2025-10-02 09:20:59 +02:00
Sander Declerck
a6980d5108
Add upstream proxy support 2025-10-02 09:06:35 +02:00
Sander Declerck
60543308f4
Change validity of generateCertForHost to 1 hour. 2025-10-01 10:01:04 +02:00
Sander Declerck
49fd0f5928
Better error-handling when stopping the proxy 2025-10-01 09:24:18 +02:00
Sander Declerck
67304751bd
Handle process exit better + some PR cleanup 2025-10-01 08:53:56 +02:00
Sander Declerck
95663dc5f4
Fix proxy for npm 10.0.0 -> 10.4.0 2025-10-01 08:10:49 +02:00
Sander Declerck
3b145a4695
Create verifyNoMaliciousPackages function in proxy 2025-09-30 15:11:00 +02:00
Sander Declerck
a3f91b8b55
Fix linting issue 2025-09-30 13:53:59 +02:00
Sander Declerck
e2afcb16e3
Implement a proxy blocking tarball requests for packages containing malware. 2025-09-30 13:52:21 +02:00
Sander Declerck
04cb001006
Merge pull request #78 from AikidoSec/fish-test-command-not-working 
init-fish: split up if to prevent expanded args to break the condition
 2025-09-24 15:47:12 +02:00
Sander Declerck
cea4507559
Merge pull request #70 from AikidoSec/non-interactive-terminal-support 
Support for CI/CD
 2025-09-24 15:37:36 +02:00
Sander Declerck
1514fb44c5
init-fish: split up if to prevent expanded args to break the condition 2025-09-24 14:51:32 +02:00
Sander Declerck
e38dcc1ea8
Clarify how path is modified in Azure Pipelines with a comment 2025-09-24 14:35:48 +02:00
Sander Declerck
83141d375a
Escape args before running spawn 2025-09-24 14:29:49 +02:00
Sander Declerck
534aeee457
Use execSync instead of spawnSync for pnpm. 2025-09-23 14:32:20 +02:00
Sander Declerck
e557887da9
Merge branch 'main' into pnpm-broken-in-powershell 2025-09-23 14:16:38 +02:00
Sander Declerck
b2ce8a2abb
Merge branch 'main' into non-interactive-terminal-support 2025-09-23 13:33:10 +02:00
Sander Declerck
644b51795a
Add logs to diagnose broken pnpm 2025-09-22 15:15:41 +02:00
Sander Declerck
5006bc6194
Merge pull request #67 from AikidoSec/exit-on-failed-change-detection 
Exit installation when detecting changes failed due to non-zero exit code in dry-run
 2025-09-19 13:23:03 +02:00
Sander Declerck
ea7ee5c6b9
Clarify doesCommandReturnNonZero function with a comment. 2025-09-19 13:13:28 +02:00
Sander Declerck
bbc111c577
Add some unit tests on setup-ci 2025-09-19 11:56:05 +02:00
Sander Declerck
5a5afc1810
Fix liniting error 2025-09-19 08:55:34 +02:00
Sander Declerck
528a60c166
Exit installation when detecting changes failed due to non-zero exit code in dry-run 2025-09-19 08:52:42 +02:00
Sander Declerck
d1c0982942
Base safe-chain setupci implementation 2025-09-18 17:44:42 +02:00
Sander Declerck
91473838d2
Merge branch 'main' into setup-check-if-dir-exists 2025-09-18 10:27:00 +02:00
Sander Declerck
f7589160af
Merge pull request #61 from AikidoSec/respect-empty-lines-in-shell-startup-files 
Don't remove empty lines in shell startup scripts. Fixes #58
 2025-09-18 10:24:38 +02:00
Sander Declerck
b1a09b471c
Merge pull request #63 from AikidoSec/bash-zsh-fish-always-use-linefeed-lineending 
Always use \n line endings for bash, zsh and fish
 2025-09-18 10:23:47 +02:00
Sander Declerck
93c23ee39f
Always use \n line endings for bash, zsh and fish 2025-09-18 08:05:11 +02:00
Sander Declerck
57ce17e7f5
Don't remove empty lines in shell startup scripts. Fixes #58 2025-09-17 16:42:10 +02:00
Sander Declerck
f793bb8467
Check if directory exists before creating a new shell startup file 2025-09-17 15:26:06 +02:00
Sander Declerck
d5cd59fd25
Use strict dependency versions 2025-09-17 14:14:04 +02:00