milliways-infosec/AikidoSec-safe-chain
7
0
Fork 0
mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 12:10:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
358 commits 61 branches 106 tags 3.3 MiB
Commit graph

171 commits

Author SHA1 Message Date
Reinier Criel
a438175e8a Fix tests 2025-10-27 13:28:35 -07:00
Reinier Criel
57bbb06f39 Add redirecting for explicit python(3) commands 2025-10-27 13:00:18 -07:00
Reinier Criel
8f877742d0 Fix permissions issue with aikido-pip3 2025-10-27 11:48:30 -07:00
Reinier Criel
e25146a2d2 Merge main into feature 2025-10-27 09:27:51 -07:00
Reinier Criel
190607de92 Adapt per review 2025-10-27 09:23:47 -07:00
Sander Declerck
ab3319a310
Remove --safe-chain-malware-action flag 2025-10-27 11:51:19 +01:00
Sander Declerck
95d9cefcc9
Merge pull request #123 from AikidoSec/logging-silent-mode 
Introduce silent mode to disable logging
 2025-10-27 11:29:26 +01:00
Sander Declerck
23c8a2e324
Merge pull request #91 from AikidoSec/escape-special-chars-in-shell 
Escape special chars in shell scripts
 2025-10-27 11:29:09 +01:00
Sander Declerck
0029a7e1c1
Add extra comments for regex clarification 2025-10-27 10:49:26 +01:00
Reinier Criel
598ddc17fa Fix linting issue 2025-10-25 14:14:36 -07:00
Reinier Criel
38d3b46939 Some more cleanup 2025-10-25 14:03:19 -07:00
Reinier Criel
41fda7f6ed Update logging for audit 2025-10-25 13:35:18 -07:00
Reinier Criel
9914c0ccb3 Some fixes 2025-10-24 13:47:22 -07:00
Reinier Criel
6b2db6dace Fix ranges issue 2025-10-24 13:14:57 -07:00
Reinier Criel
15785fad73 Make sure we use a different version.txt to prevent having to redownload DB 2025-10-24 09:59:53 -07:00
Sander Declerck
f5f3b91b40
Test if command is safe to execute 2025-10-24 17:36:51 +02:00
Reinier Criel
b5988e19c1 Some more cleanup 2025-10-23 13:11:51 -07:00
Reinier Criel
059cba06bc Implement e2e tests 2025-10-23 11:41:13 -07:00
Reinier Criel
f817bf887a Update documentation 2025-10-23 10:23:42 -07:00
Reinier Criel
1fdb15a392 Fix some border cases 2025-10-23 09:14:05 -07:00
Sander Declerck
0f164d055f
Fix mocking in tests 2025-10-23 17:48:26 +02:00
Sander Declerck
9a78cafbfd
Introduce silent mode to disable logging 2025-10-23 17:45:03 +02:00
Sander Declerck
7a55be49f4
Fix linting error 2025-10-23 13:29:14 +02:00
Sander Declerck
08c1328b52
Cleanup code, add some tests 2025-10-23 13:23:08 +02:00
Sander Declerck
c74c23b0ff
Fix unit tests 2025-10-23 10:52:03 +02:00
Sander Declerck
8447d3cac5
Merge branch 'main' into escape-special-chars-in-shell 2025-10-23 09:52:38 +02:00
Hans Ott
7e72ae7d3d
On Unix/macOS, pass args to spawn to avoid escaping issues 2025-10-23 09:46:15 +02:00
Reinier Criel
1b82aeb6b0 Adapt the structure to parse the initial pip commands 2025-10-22 15:28:27 -07:00
Reinier Criel
982da4aa77 more cleanup 2025-10-22 15:16:53 -07:00
Reinier Criel
fbb7e0f95f Add tests 2025-10-22 14:51:44 -07:00
Reinier Criel
1f707c1e13 Add cert 2025-10-22 09:43:40 -07:00
Reinier Criel
246071363a Merge branch 'main' into feature/pypi 2025-10-22 07:15:17 -07:00
Reinier Criel
8b9ffc28ed Some cleanup 2025-10-22 07:04:35 -07:00
Reinier Criel
f086aeb2be Skeleton 2025-10-22 06:59:32 -07:00
Sander Declerck
2e1ee0dfa4
Merge pull request #119 from AikidoSec/proxy-unit-tests 
Add tests for the proxy
 2025-10-22 15:47:16 +02:00
Sander Declerck
f4cdf91fc9
Add tests for the proxy 2025-10-22 15:41:33 +02:00
Reinier Criel
d0f2edec0a Skeleton 2025-10-21 15:25:12 -07:00
Sander Declerck
1ded3899b0
Commit new tests 2025-10-21 14:56:46 +02:00
Sander Declerck
da865f855d
Fix crash when a package does not contain a version (retracted packages) 2025-10-21 14:29:17 +02:00
Sander Declerck
b935f8d4f4
Merge pull request #105 from AikidoSec/kill-dry-run 
Remove dry-run scanner for npm, relying on the proxy to block maliscious package downloads instead
 2025-10-15 12:04:26 +02:00
bitterpanda
e123c0e019
Merge pull request #106 from AikidoSec/remove-abbrev-package 
Remove abbrev package
 2025-10-15 12:03:07 +02:00
Sander Declerck
05354ba2f0
Add some more comments on why http / https is handled in different code paths 2025-10-15 11:56:03 +02:00
Sander Declerck
3e8ce13db5
Move generated abbrevs to a separate file 2025-10-15 11:51:56 +02:00
Sander Declerck
37ef3e187b
Further cleanup 2025-10-15 09:25:24 +02:00
Sander Declerck
fce7550609
Cleanup debugging code from test again 2025-10-15 09:21:23 +02:00
Sander Declerck
ee82134c19
Proxyres on close and end 2025-10-14 14:54:58 +02:00
Sander Declerck
a2d05b0cf0
More logs 2025-10-14 14:18:33 +02:00
Sander Declerck
2968960b41
Cleanup registryProxy, increase timeout on DockerTestContainer 2025-10-14 13:22:58 +02:00
Sander Declerck
8ed2330a3c
Allow the safe-chain to act as a regular http proxy too (besides the CONNECT tunneling implementation) 2025-10-13 15:49:42 +02:00
Sander Declerck
ea92ea0731
Remove abbrev package 2025-10-10 16:19:38 +02:00