mirror of
https://github.com/SrIzan10/hc-harbor.git
synced 2026-05-01 10:45:21 +00:00
633eb4a5ce
I wasn't able to replicate CVE-2022-24439 / CVE-2023-40267 after a while of trying to add something malicious but I figure it's a quick and easy check to add just in case
15 lines
427 B
Ruby
15 lines
427 B
Ruby
require "open3"
|
|
|
|
class GitRemote
|
|
def self.check_remote_exists(repo_url)
|
|
# only run check if git is installed and in path
|
|
return true unless system("git --version")
|
|
|
|
# Only allow safe protocols
|
|
return false unless repo_url.match?(/\A(https?|git|ssh):\/\//)
|
|
|
|
safe_repo_url = URI.parse(repo_url).to_s.gsub(" ", "").gsub("'", "")
|
|
Open3.capture2e("git", "ls-remote", safe_repo_url).last.success?
|
|
end
|
|
end
|