piral-cli 1.5.3-beta.6983 → 1.5.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/lib/external/index.js +4 -15
- package/package.json +2 -2
package/lib/external/index.js
CHANGED
|
@@ -48891,7 +48891,6 @@ var require_unpack = __commonJS({
|
|
|
48891
48891
|
var getFlag = require_get_write_flag();
|
|
48892
48892
|
var platform = process.env.TESTING_TAR_FAKE_PLATFORM || process.platform;
|
|
48893
48893
|
var isWindows = platform === "win32";
|
|
48894
|
-
var DEFAULT_MAX_DEPTH = 1024;
|
|
48895
48894
|
var unlinkFile = (path2, cb) => {
|
|
48896
48895
|
if (!isWindows) {
|
|
48897
48896
|
return fs2.unlink(path2, cb);
|
|
@@ -48968,7 +48967,6 @@ var require_unpack = __commonJS({
|
|
|
48968
48967
|
}
|
|
48969
48968
|
this.processUid = (this.preserveOwner || this.setOwner) && process.getuid ? process.getuid() : null;
|
|
48970
48969
|
this.processGid = (this.preserveOwner || this.setOwner) && process.getgid ? process.getgid() : null;
|
|
48971
|
-
this.maxDepth = typeof opt.maxDepth === "number" ? opt.maxDepth : DEFAULT_MAX_DEPTH;
|
|
48972
48970
|
this.forceChown = opt.forceChown === true;
|
|
48973
48971
|
this.win32 = !!opt.win32 || isWindows;
|
|
48974
48972
|
this.newer = !!opt.newer;
|
|
@@ -48998,12 +48996,12 @@ var require_unpack = __commonJS({
|
|
|
48998
48996
|
}
|
|
48999
48997
|
}
|
|
49000
48998
|
[CHECKPATH](entry) {
|
|
49001
|
-
const p = normPath(entry.path);
|
|
49002
|
-
const parts = p.split("/");
|
|
49003
48999
|
if (this.strip) {
|
|
49000
|
+
const parts = normPath(entry.path).split("/");
|
|
49004
49001
|
if (parts.length < this.strip) {
|
|
49005
49002
|
return false;
|
|
49006
49003
|
}
|
|
49004
|
+
entry.path = parts.slice(this.strip).join("/");
|
|
49007
49005
|
if (entry.type === "Link") {
|
|
49008
49006
|
const linkparts = normPath(entry.linkpath).split("/");
|
|
49009
49007
|
if (linkparts.length >= this.strip) {
|
|
@@ -49012,19 +49010,10 @@ var require_unpack = __commonJS({
|
|
|
49012
49010
|
return false;
|
|
49013
49011
|
}
|
|
49014
49012
|
}
|
|
49015
|
-
parts.splice(0, this.strip);
|
|
49016
|
-
entry.path = parts.join("/");
|
|
49017
|
-
}
|
|
49018
|
-
if (isFinite(this.maxDepth) && parts.length > this.maxDepth) {
|
|
49019
|
-
this.warn("TAR_ENTRY_ERROR", "path excessively deep", {
|
|
49020
|
-
entry,
|
|
49021
|
-
path: p,
|
|
49022
|
-
depth: parts.length,
|
|
49023
|
-
maxDepth: this.maxDepth
|
|
49024
|
-
});
|
|
49025
|
-
return false;
|
|
49026
49013
|
}
|
|
49027
49014
|
if (!this.preservePaths) {
|
|
49015
|
+
const p = normPath(entry.path);
|
|
49016
|
+
const parts = p.split("/");
|
|
49028
49017
|
if (parts.includes("..") || isWindows && /^[a-z]:\.\.$/i.test(parts[0])) {
|
|
49029
49018
|
this.warn("TAR_ENTRY_ERROR", `path contains '..'`, {
|
|
49030
49019
|
entry,
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "piral-cli",
|
|
3
|
-
"version": "1.5.3
|
|
3
|
+
"version": "1.5.3",
|
|
4
4
|
"description": "The standard CLI for creating and building a Piral instance or a Pilet.",
|
|
5
5
|
"keywords": [
|
|
6
6
|
"portal",
|
|
@@ -81,5 +81,5 @@
|
|
|
81
81
|
"typescript": "^5.0.0",
|
|
82
82
|
"yargs": "^15.0.0"
|
|
83
83
|
},
|
|
84
|
-
"gitHead": "
|
|
84
|
+
"gitHead": "ef6b384297c96fdf49a3e6cc63464c1075cb98cc"
|
|
85
85
|
}
|