MaxKB

Commit Graph

Author	SHA1	Message	Date
liqiang-fit2cloud	2233f042c9	refactor: update sandbox.c	2025-12-18 15:03:04 +08:00
liqiang-fit2cloud	38191f70b4	fix: deny access to local services by IPv6 and IPv6-mapped IPv4 addresses for sandbox.	2025-12-16 12:35:54 +08:00
liqiang-fit2cloud	d68acede6f	refactor: change error number.	2025-12-09 19:02:49 +08:00
liqiang-fit2cloud	1deea980ee	refactor: change error number.	2025-12-08 11:29:54 +08:00
liqiang-fit2cloud	71f1e26c8f	refactor: run python code without su -.	2025-12-03 09:52:02 +08:00
liqiang-fit2cloud	e04d7d7cd4	refactor: add comment.	2025-12-02 18:40:49 +08:00
liqiang-fit2cloud	ee539322ad	feat: banned host support CIDR.	2025-12-02 16:58:07 +08:00
liqiang-fit2cloud	64561a7b67	fix: forbid sandbox to replace process, only creating is permitted	2025-11-28 11:22:38 +08:00
liqiang-fit2cloud	f67aef11fd	fix: os.execvp() can create subprocess. Some checks are pending sync2gitee / repo-sync (push) Waiting to run Details Typos Check / Spell Check with Typos (push) Waiting to run Details	2025-11-27 20:11:38 +08:00
liqiang-fit2cloud	3bfe400d70	build: fix gcc error in arm64.	2025-11-27 16:08:58 +08:00
liqiang-fit2cloud	f341930795	security: not allow to create subprocess in sandbox by default. Some checks are pending sync2gitee / repo-sync (push) Waiting to run Details Typos Check / Spell Check with Typos (push) Waiting to run Details	2025-11-26 15:18:43 +08:00
liqiang-fit2cloud	fd4c14f8e8	refactor: format code.	2025-11-26 12:16:20 +08:00
liqiang-fit2cloud	a89b1ff6d9	security: not allow to create subprocess in sandbox by default.	2025-11-26 11:24:59 +08:00
liqiang-fit2cloud	75da3bd82d	refactor: format code.	2025-11-25 10:58:17 +08:00
liqiang-fit2cloud	5e909a4ba1	feat: add MAXKB_SANDBOX_PYTHON_PROCESS_TIMEOUT_SECONDS env.	2025-11-25 10:27:08 +08:00
liqiang-fit2cloud	057e0420cf	security: not allow to create subprocess in sandbox by default.	2025-11-24 18:25:20 +08:00
liqiang-fit2cloud	71165cdb71	refactor: add code comment. Some checks are pending sync2gitee / repo-sync (push) Waiting to run Details Typos Check / Spell Check with Typos (push) Waiting to run Details	2025-11-11 18:32:52 +08:00
liqiang-fit2cloud	1ed1bbc1b0	refactor: throw EACCES error for IP, throw EAI_FAIL for domain name. Some checks are pending sync2gitee / repo-sync (push) Waiting to run Details Typos Check / Spell Check with Typos (push) Waiting to run Details	2025-11-10 10:08:57 +08:00
liqiang-fit2cloud	ff570a3c71	refactor: read SANDBOX_BANNED_HOSTS from file instead of env.	2025-11-07 09:47:35 +08:00
liqiang-fit2cloud	f0ecad6de1	refactor: rename MAXKB_SANDBOX_PYTHON_ALLOW_HOSTS_REGEXES to MAXKB_SANDBOX_PYTHON_BANNED_HOSTS	2025-11-06 15:41:35 +08:00
liqiang-fit2cloud	6e39df454c	refactor: rename MAXKB_SANDBOX_PYTHON_ALLOW_HOSTS_REGEXES to MAXKB_SANDBOX_PYTHON_ALLOW_HOST_REGEXES	2025-11-06 11:23:09 +08:00
liqiang-fit2cloud	9029240931	refactor: rename MAXKB_SANDBOX_PYTHON_BANNED_HOSTS to MAXKB_SANDBOX_PYTHON_ALLOW_HOSTS_REGEXES	2025-11-06 11:03:48 +08:00
liqiang-fit2cloud	1f4d6d1123	feat: add MAXKB_SANDBOX_PYTHON_BANNED_HOSTS env to ban host for sandbox in tools code.	2025-11-05 19:03:17 +08:00
liqiang-fit2cloud	f0be269cdc	feat: add MAXKB_SANDBOX_PYTHON_BANNED_HOSTS env to ban host for sandbox in tools code.	2025-11-05 18:44:57 +08:00
liqiang-fit2cloud	1d749a4a92	feat: add MAXKB_SANDBOX_PYTHON_BANNED_HOSTS env to ban host for sandbox in tools code.	2025-11-05 17:00:50 +08:00

25 Commits