Uploaded image for project: 'translate5'
  1. translate5
  2. TRANSLATE-4599

Disallow okapi pipeline step "External command"

XMLWordPrintable

    • Critical
    • Disallow okapi pipeline step "External command" as part of uploaded bconfs/pipelines

      Problem

      Okapi rainbow pipeline has optional step "External command" with the description "Execute an external command line"

      https://okapiframework.org/wiki/index.php/External_Command_Step

      This step is a security risk when present as part of uploaded bconfs/pipelines.

      Solution

      This step shouldn't be allowed in uploaded bconfs/pipelines.

            volodymyr@mittagqi.com Volodymyr Kyianenko
            volodymyr@mittagqi.com Volodymyr Kyianenko
            Axel Becher
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: