cschantz/Linux-Server-Management-Toolkit
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
9a98f4b25198b9f0d974179e4a8a590789484d49
Linux-Server-Management-Too…/tools
T
History
cschantz b6c0ec0e9b Fix security issues and QA false positives 
Security fixes in lib/mysql-analyzer.sh:
- Added -- separator to grep/sed/awk/wc commands to prevent filename injection
- Fixed 10 ESCAPE issues (lines 130, 153, 180, 208, 210, 320, 324, 405, 507, 513)

QA script improvements in tools/toolkit-qa-check.sh:
- Updated ESCAPE check (CHECK 66) to recognize -- as safe pattern
- Updated HARDCODED-PATH check (CHECK 81) to skip control panel abstraction libraries
- Now correctly excludes domain-discovery.sh, plesk-helpers.sh, user-manager.sh from hardcoded path warnings
- Reduced false positives by ~23 issues

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-01-09 16:17:23 -05:00
..
analyze-historical-attacks.sh
Remove duplicate show_progress function
2026-01-02 16:24:56 -05:00
diagnostic-report.sh
Fix 22 critical runtime errors from 'local' keyword used outside functions
2025-12-30 18:38:59 -05:00
erase-toolkit-traces.sh
Fix HIGH priority issues: paths, globs, deps, wordsplit
2026-01-02 17:21:19 -05:00
qa-functional-tests.sh
Improve functional test accuracy - reduce false positives
2026-01-02 20:44:59 -05:00
toolkit-qa-check.sh
Fix security issues and QA false positives
2026-01-09 16:17:23 -05:00
update-attack-signatures.sh
Add Suricata-inspired attack detection with ET Open signatures
2025-12-13 00:02:14 -05:00