Fix Module 25 command injection + lab integrity (#24–#27) #54
Reference in New Issue
Block a user
Delete Branch "fix/p1-security-module-25"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Fixes the Module 25 security + lab-integrity findings from the course review.
github.event.issue.bodynow flows throughenv:and is read as$BODY, never interpolated into arun:script..gitignorestopspropose_pr'sgit add -Afrom sweeping__pycache__/scaffolding into the review diff.reject()now removes the agent's untracked files (whichgit restorecannot).--simulateruns a deterministic stand-in, not the delete-command issue.Closes #24
Closes #25
Closes #26
Closes #27
Verified: YAML parses,
py_compileclean,--simulate good/bad/stuckbehave per the README, review diff contains only the two intended files.🤖 Generated with Claude Code