New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Prevent shell injection when opening a URL. #4200

Merged
merged 1 commit into from Nov 30, 2015

Conversation

Projects
None yet
3 participants
@jekyllbot
Contributor

jekyllbot commented Nov 30, 2015

PR automatically created for @envygeeks.

Prevent shell injection when opening a URL.

@envygeeks

This comment has been minimized.

Show comment
Hide comment
@envygeeks

envygeeks Nov 30, 2015

Contributor

This is a security bug that ONLY exists on HEAD. /cc @jekyll/core
The issue was added by: #4144

Contributor

envygeeks commented Nov 30, 2015

This is a security bug that ONLY exists on HEAD. /cc @jekyll/core
The issue was added by: #4144

@parkr

This comment has been minimized.

Show comment
Hide comment
@parkr

parkr Nov 30, 2015

Member

Great catch! :shipit:

Member

parkr commented Nov 30, 2015

Great catch! :shipit:

@parkr parkr added the fix label Nov 30, 2015

envygeeks added a commit that referenced this pull request Nov 30, 2015

Merge pull request #4200 from jekyll/pull/prevent-shell-injection
Prevent shell injection when opening a URL.

@envygeeks envygeeks merged commit 9ff614c into master Nov 30, 2015

2 checks passed

continuous-integration/travis-ci/pr The Travis CI build passed
Details
continuous-integration/travis-ci/push The Travis CI build passed
Details

@envygeeks envygeeks deleted the pull/prevent-shell-injection branch Nov 30, 2015

@jekyll jekyll locked and limited conversation to collaborators Feb 27, 2017

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.