mirror of https://github.com/garrytan/gstack.git
6d2d10c125
Codex adversarial review found that unvalidated config/cache values could be injected into shell via source <(gstack-repo-mode). Added validate_mode() that only allows solo|collaborative|unknown — anything else becomes "unknown". Prevents persistent code execution through malicious config.yaml or tampered cache JSON. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| dev-setup | ||
| dev-teardown | ||
| gstack-analytics | ||
| gstack-community-dashboard | ||
| gstack-config | ||
| gstack-diff-scope | ||
| gstack-repo-mode | ||
| gstack-review-log | ||
| gstack-review-read | ||
| gstack-slug | ||
| gstack-telemetry-log | ||
| gstack-telemetry-sync | ||
| gstack-update-check | ||