Skip to content

v0.10.2 — guard parser security hardening

Choose a tag to compare

@Mickdownunder Mickdownunder released this 10 Jul 12:44
b19d262

Security release

SafeInstall 0.10.2 hardens the coding-agent guard against shell-parser bypasses that could let raw package execution avoid policy evaluation.

Fixed

  • Normalize package-manager, registry-runner, and wrapper launcher names for detection and rewriting.
  • Analyze leading file-descriptor redirections before classifying commands.
  • Parse supported wrapper options conservatively and fail closed on ambiguous embedded command syntax.
  • Route remote create and init scaffolding through the registry-runner approval path.
  • Preserve SafeInstall routing for path-qualified package-manager invocations.

Hardening

  • Added a permanent adversarial regression corpus.
  • Added table-driven parser characterization and an independent reference detector.
  • Added deterministic fuzz invariants and validated one million generated commands without an invariant violation.
  • Split the security-critical parser into smaller reviewable modules without changing the CLI or hook contracts.

Upgrade

All users running 0.10.1 or earlier should upgrade:

npm install -g safeinstall-cli@0.10.2

The npm package was published from the tagged commit through GitHub Actions with SLSA provenance. The release candidate passed 626 tests, package smoke validation, and CI on Linux, macOS, and Windows.

See GHSA-xrmc-c5cg-rv7x for impact and mitigation details.