-
Notifications
You must be signed in to change notification settings - Fork 21
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[BUG] rpm: shell scripts should have macros escaped #330
Comments
We should definitely try and escape macros, though I do worry about the difficulty of handling all edge cases here. As an additional part of this issue, I would propose more validation on build steps using a shell parser such as https:/mvdan/sh, at least for RPM targets |
Was thinking about this yesterday. |
There's still potentially some other problems that would be easier to address in things like artifact lists. |
Expected Behavior
No response
Actual Behavior
Currently it may be possible to inject custom macros or access things that we aren't expecting and potentially break the build (even accidentally) based on if some value matches an rpmbuild macro.
Steps To Reproduce
As an example: in a build step inject a macro like:
Are you willing to submit PRs to contribute to this bug fix?
The text was updated successfully, but these errors were encountered: