opencode icon indicating copy to clipboard operation
opencode copied to clipboard
Published 51 minutes ago verified publisher icon anomalyco

BashTool input validation security hardening

Open RinZ27 opened this issue 6 days ago • 2 comments

The BashTool currently allows some potentially unsafe shell syntax to pass through command parsing. We need to harden the input validation to prevent command injection and ensure a safer execution environment.

Specific improvements needed:

  • Validate command names against invalid characters.
  • Detect and block dangerous shell syntax like pipelines and redirections during parsing.
  • Ensure the execution environment is sane.

RinZ27 avatar Jan 09 '26 13:01 RinZ27