kami
/
OokamiPupV2
1
0
Fork 0
Code Issues 4 Pull Requests Packages Projects 1 Releases Wiki Activity

Sanitization improvements #2

New Issue
Open
opened 2025-02-02 16:10:39 +00:00 by kami · 0 comments
kami commented 2025-02-02 16:10:39 +00:00
Owner

modules.utility.sanitize_user_input() need improvements before it can be relied on as a first-pass security filter.

Currently only performs basic whitelisting logic on given strings, removing potentially dangerous parts before returning the sanitized string.
This is too unreliable for production environments, especially if we implement database connectivity or need to perform dynamic calculations (eg. eval()) on user-generated content like chat commands.

**modules.utility.sanitize_user_input()** need improvements before it can be relied on as a first-pass security filter. Currently only performs basic whitelisting logic on given strings, removing potentially dangerous parts before returning the sanitized string. This is too unreliable for production environments, especially if we implement database connectivity or need to perform dynamic calculations (eg. _eval()_) on user-generated content like chat commands.
kami added the
enhancement
 label 2025-02-02 16:10:39 +00:00
kami added this to the Devboard project 2025-02-09 23:17:15 +00:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
experimental
kami_dev
main
Labels
Clear labels   
bug

Something is not working   
command

New command   
duplicate

This issue or pull request already exists   
enhancement

New feature   
help wanted

Need some help   
invalid

Something is wrong   
priority

Top priority   
question

More information is needed   
ux

User Experience improvement   
wontfix

This won't be fixed
No Label
bug
command
duplicate
enhancement
help wanted
invalid
priority
question
ux
wontfix
Milestone
Clear milestone
No items
No Milestone
Projects
Clear projects
No project
Devboard
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: kami/OokamiPupV2#2
There is no content yet.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may exist for a short time before cleaning up, in most cases it CANNOT be undone. Continue?