crackerjack 0.33.4__py3-none-any.whl → 0.33.6__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of crackerjack might be problematic. Click here for more details.

Files changed (8) hide show
  1. crackerjack/services/git.py +1 -1
  2. crackerjack/services/secure_subprocess.py +17 -1
  3. crackerjack/services/security_logger.py +2 -1
  4. {crackerjack-0.33.4.dist-info → crackerjack-0.33.6.dist-info}/METADATA +1 -1
  5. {crackerjack-0.33.4.dist-info → crackerjack-0.33.6.dist-info}/RECORD +8 -8
  6. {crackerjack-0.33.4.dist-info → crackerjack-0.33.6.dist-info}/WHEEL +0 -0
  7. {crackerjack-0.33.4.dist-info → crackerjack-0.33.6.dist-info}/entry_points.txt +0 -0
  8. {crackerjack-0.33.4.dist-info → crackerjack-0.33.6.dist-info}/licenses/LICENSE +0 -0
crackerjack/services/git.py CHANGED
@@ -19,7 +19,7 @@ GIT_COMMANDS = {
19
19
  "add_updated": ["add", "-u"],
20
20
  "push_porcelain": ["push", "--porcelain"],
21
21
  "current_branch": ["branch", "--show-current"],
22
- "commits_ahead": ["rev-list[t.Any]", "--count", "@{u}..HEAD"],
22
+ "commits_ahead": ["rev-list", "--count", "@{u}..HEAD"],
23
23
  }
24
24
 
25
25
 
crackerjack/services/secure_subprocess.py CHANGED
@@ -87,7 +87,7 @@ class SecureSubprocessExecutor:
87
87
  self.security_logger = get_security_logger()
88
88
 
89
89
  self.dangerous_patterns = [
90
- r"[;&|`$(){}[\]<>*?~]",
90
+ r"[;&|`$()[\]<>*?~]",
91
91
  r"\.\./",
92
92
  r"\$\{.*\}",
93
93
  r"`.*`",
@@ -96,6 +96,16 @@ class SecureSubprocessExecutor:
96
96
  r"<\s*/",
97
97
  ]
98
98
 
99
+ # Git reference patterns that should be allowed despite containing special chars
100
+ self.allowed_git_patterns = [
101
+ r"^@\{u\}\.\.HEAD$", # upstream..HEAD
102
+ r"^@\{upstream\}\.\.HEAD$", # upstream..HEAD (long form)
103
+ r"^HEAD\.\.@\{u\}$", # HEAD..upstream
104
+ r"^HEAD\.\.@\{upstream\}$", # HEAD..upstream (long form)
105
+ r"^@\{[0-9]+\}$", # reflog references like @{1}
106
+ r"^@\{[0-9]+ (minute|hour|day|week|month|year)s? ago\}$", # time references
107
+ ]
108
+
99
109
  self.dangerous_env_vars = {
100
110
  "LD_PRELOAD",
101
111
  "DYLD_INSERT_LIBRARIES",
@@ -316,6 +326,12 @@ class SecureSubprocessExecutor:
316
326
  return validated_command, issues
317
327
 
318
328
  def _has_dangerous_patterns(self, arg: str, index: int, issues: list[str]) -> bool:
329
+ # First check if this is an allowed git pattern
330
+ for git_pattern in self.allowed_git_patterns:
331
+ if re.match(git_pattern, arg):
332
+ return False # It's an allowed git pattern, don't flag as dangerous
333
+
334
+ # Check for dangerous patterns
319
335
  for pattern in self.dangerous_patterns:
320
336
  if re.search(pattern, arg):
321
337
  issues.append(
crackerjack/services/security_logger.py CHANGED
@@ -131,7 +131,8 @@ class SecurityLogger:
131
131
  if debug_enabled:
132
132
  console_handler.setLevel(logging.WARNING)
133
133
  else:
134
- console_handler.setLevel(logging.CRITICAL + 1)
134
+ # Suppress all security logs during normal operation
135
+ console_handler.setLevel(logging.CRITICAL + 10)
135
136
 
136
137
  formatter = logging.Formatter(
137
138
  "%(asctime)s - SECURITY - %(levelname)s-%(message)s"
{crackerjack-0.33.4.dist-info → crackerjack-0.33.6.dist-info}/METADATA RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.4
2
2
  Name: crackerjack
3
- Version: 0.33.4
3
+ Version: 0.33.6
4
4
  Summary: Crackerjack Python project management tool
5
5
  Project-URL: documentation, https://github.com/lesleslie/crackerjack
6
6
  Project-URL: homepage, https://github.com/lesleslie/crackerjack
{crackerjack-0.33.4.dist-info → crackerjack-0.33.6.dist-info}/RECORD RENAMED
@@ -174,7 +174,7 @@ crackerjack/services/enterprise_optimizer.py,sha256=q6srIGxe18N9zH-MNhZ9R34sWnr_
174
174
  crackerjack/services/error_pattern_analyzer.py,sha256=bTMwhAMAjVPSUXrNkrtm1KDqfxjnyBMGAPwetBUGCM4,24402
175
175
  crackerjack/services/file_hasher.py,sha256=eReytwwK-_-B8JBnpwytDC52cKKgg4qpaxaZKcQjD-0,5211
176
176
  crackerjack/services/filesystem.py,sha256=nmL3mYqylS_BSQpwFbC7EMHoA44K5qUxa9CPg1QFZvc,17480
177
- crackerjack/services/git.py,sha256=a5uwUvZn6bmL6LWN_3G7Pfte036IW_dR4mugpuCP_r8,12723
177
+ crackerjack/services/git.py,sha256=g0D9K7PFGWiv_-CbPXEhGtxJVJccEsshYNEmGstjXss,12716
178
178
  crackerjack/services/health_metrics.py,sha256=KmwFlvcB-Pb8DnDI0IRV9ETDdp_vJTaGlhJ_HmBL2YY,21538
179
179
  crackerjack/services/heatmap_generator.py,sha256=zz5V-zXPfoCGNXoj7iuyOeFuDRRUhFpxuENUnd0X75g,26200
180
180
  crackerjack/services/initialization.py,sha256=oq0D9AZtLufvIP8sNOVayaEhW9PAhXb7NFHFcd2RHjs,25772
@@ -199,9 +199,9 @@ crackerjack/services/regex_patterns.py,sha256=iis9gSzXZtnX14lODGfSUsf7bcCRTw7rdS
199
199
  crackerjack/services/regex_utils.py,sha256=e7AD59_L-T5-oOxzqsGgrLd94uxRE9aKnwasZkohwI8,14966
200
200
  crackerjack/services/secure_path_utils.py,sha256=aHsLwxDch42DidPYtTL_ko40g2rhbXDLnRhcx2LlGk8,16688
201
201
  crackerjack/services/secure_status_formatter.py,sha256=yhwNtzvvQVcuHsNOTNZMzlqIMQT9zx-lzAtq9LuSDuk,14121
202
- crackerjack/services/secure_subprocess.py,sha256=UAXyRgus-PJ4nOfSq9m_Ji8xmni4Hyl7uHmPsJwoQrQ,17308
202
+ crackerjack/services/secure_subprocess.py,sha256=iGXdIUjYZ_ocxwo8OJSmOFJvdmOFXSvluNNgJvU3hFQ,18114
203
203
  crackerjack/services/security.py,sha256=plgIz-B8oYN_mpF4NYrqHnT7TRcsp4jr0-YlV9WgD5o,7298
204
- crackerjack/services/security_logger.py,sha256=B4yuXKi02SRikS8aXLR_fpMrziAAPRvCV6C4vAP60mE,16710
204
+ crackerjack/services/security_logger.py,sha256=_hQUQZekiafpIKyULgVxrQHrwPpTKv89jNf-XWqaAhg,16780
205
205
  crackerjack/services/server_manager.py,sha256=IQ0oUFEEMZTxI8csecIJzkCSMESE5KIkYqPxa56tvUw,11399
206
206
  crackerjack/services/smart_scheduling.py,sha256=VSaL7DpKR6aa0sC_TUrYP9ZgC9CB7tE3TTNzEqB-GpE,4352
207
207
  crackerjack/services/status_authentication.py,sha256=2OJ1MoWlBuvUUXOX02N_zdWKzQfXz4jhEZpsmIJfQ00,16453
@@ -222,8 +222,8 @@ crackerjack/slash_commands/status.md,sha256=U3qqppVLtIIm2lEiMYaKagaHYLI9UplL7OH1
222
222
  crackerjack/tools/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
223
223
  crackerjack/tools/validate_input_validator_patterns.py,sha256=NN7smYlXWrHLQXTb-81gRam2vjW-cJav92f1klPA0qA,8234
224
224
  crackerjack/tools/validate_regex_patterns.py,sha256=y2pAp2BzfSC_3XYMIKGMpQFwwwDidPy3k2Y2almOy74,5811
225
- crackerjack-0.33.4.dist-info/METADATA,sha256=LkBXYa8WJUPs9hm1DLxqIzAGicS1pmesx8Om6pS6qyI,37942
226
- crackerjack-0.33.4.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
227
- crackerjack-0.33.4.dist-info/entry_points.txt,sha256=AJKNft0WXm9xoGUJ3Trl-iXHOWxRAYbagQiza3AILr4,57
228
- crackerjack-0.33.4.dist-info/licenses/LICENSE,sha256=fDt371P6_6sCu7RyqiZH_AhT1LdN3sN1zjBtqEhDYCk,1531
229
- crackerjack-0.33.4.dist-info/RECORD,,
225
+ crackerjack-0.33.6.dist-info/METADATA,sha256=_8Iq2YAJmj7WtB59RQKs64QDkOKe3ZPDUn0yOGLVeXM,37942
226
+ crackerjack-0.33.6.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
227
+ crackerjack-0.33.6.dist-info/entry_points.txt,sha256=AJKNft0WXm9xoGUJ3Trl-iXHOWxRAYbagQiza3AILr4,57
228
+ crackerjack-0.33.6.dist-info/licenses/LICENSE,sha256=fDt371P6_6sCu7RyqiZH_AhT1LdN3sN1zjBtqEhDYCk,1531
229
+ crackerjack-0.33.6.dist-info/RECORD,,