Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Command injection #5

Closed
KimKiHyuk opened this issue Oct 12, 2020 · 0 comments
Closed

Command injection #5

KimKiHyuk opened this issue Oct 12, 2020 · 0 comments
Assignees
@nnnlog
Labels
우선순위 높음

Comments

@KimKiHyuk
Copy link
Contributor

regex로 거르고 400 Bad Request 반환해주면 좋을 것 같아요
저 access key들이 다른 API에서 공통으로 사용된다면 미들웨어로 api 라우터에 가기 전에 앞단에서 거르는게 제일 좋을 것 같아요

Originally posted by @nnnlog in #2 (comment)
KimKiHyuk added a commit that referenced this issue Oct 29, 2020
@KimKiHyuk
Merge pull request #9 from ECTwo/aws/cmd-injection
b542961 
Fix #5, Prevent command injection
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nnnlog nnnlog

Labels
우선순위 높음
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@nnnlog @KimKiHyuk