Oniblend issues

Results 25 issues of


                                            Oniblend

You have security flaws in your code.

Hey i just spoke to a guy on a detlaetherforum, I have some old contracts with deltaether and just looked trough your github code and found some critcal and medium...

Shebang with more than one parameter SH-2096 , Variables must be defined before use SH-2154

DESCRIPTION Problematic code: #!/usr/bin/env bash -x Correct code: #!/usr/bin/env bash set -x Rationale: Most operating systems, including POSIX, Linux and FreeBSD, allow only a single parameter in the shebang. The...

bug

Consider quoting command expansion to prevent word splitting SH-2046

DESCRIPTION When command expansions are unquoted, word splitting and globbing will occur. This can result unintended behaviour filenames contain spaces. Trying to fix it by adding quotes or escapes to...

bug

Use double quote to prevent globbing and word splitting SH-2086

DESCRIPTION Problematic code: echo $1 for i in $*; do :; done # this one and the next one also apply to expanding arrays. for i in $@; do :;...

bug

fixes

3 changes

fixes

Bulk vulnerability fix - by philipjonsen with partner debricked

Bulk vulnerability fix - Lockfile fix This pull request will update your transitive dependencies within the allowed version intervals provided by your direct dependencies. Fixed vulnerabilities: CVE–2018–16469 debricked CVE–2018–6341 debricked...

Bulk vulnerability fix - Lockfile fix #1

https://github.com/philipjonsen/contracts/pull/1

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution. Prototype Pollution in y18n ### Overview The npm package `y18n` before versions 3.2.2, 4.0.1, and 5.0.5 is...