filepath-securejoin - Proposed filepath.SecureJoin implementation

  •        3

An implementation of SecureJoin, a candidate for inclusion in the Go standard library. The purpose of this function is to be a "secure" alternative to filepath.Join, and in particular it provides certain guarantees that are not provided by filepath.Join. NOTE: This code is only safe if you are not at risk of other processes modifying path components after you've used SecureJoin. If it is possible for a malicious process to modify path components of the resolved path, then you will be vulnerable to some fairly trivial TOCTOU race conditions. There are some Linux kernel patches I'm working on which might allow for a better solution.

https://github.com/cyphar/filepath-securejoin

Tags
Implementation
License
Platform

   




Related Projects

thinobject

  •    Shell

thinobject implements an object oriented system on the filesystem using ordinary files and directories. Data and a symlink to the parent class are stored in object directories, while behaviors are provided by methods stored in class directories.

proposal-top-level-await - top-level `await` proposal for ECMAScript (stage 2)

  •    HTML

This proposal is currently in stage 2 of the TC39 process. The async / await proposal was originally brought to committee in January of 2014. In April of 2014 it was discussed that the keyword await should be reserved in the module goal for the purpose of top-level await. In July of 2015 the async / await proposal advanced to Stage 2. During this meeting it was decided to punt on top-level await to not block the current proposal as top-level await would need to be "designed in concert with the loader".

Music-Player - From UI Proposal to Code :notes::arrow_forward:

  •    Java

Some developers have difficult to code when the UI proposal is a bit “sophisticated” or “complex”. Many of them strip a lot of significant portion of the UI or even the Motion when they are coding, and the result ends up quite different of the original proposal. This article talks about how would be to code an UI proposal, skipping some basic Android details and focusing on transition and animation approach...

Online Proposal Appraisal

  •    Java

OPA (Online Proposal Appraisal) is a full-featured, web-based, multi-lingual proposal management system suitable for the end-to-end administration of any proposal request, submission, appraisal, selection and budgeting process, through to reporting, rep

proposal-object-from-entries - TC39 proposal for Object.fromEntries

  •    HTML

A proposal for a new static method Object.fromEntries in ECMAScript for transforming a list of key-value pairs into an object. This proposal was originally written by Darien Maillet Valentine and is being championed by Jordan Harband and Kevin Gibbons.


proposal-partial-application - Proposal to add partial application to ECMAScript

  •    HTML

This proposal introduces a new syntax using the ? token in an argument list which allows you to partially apply an argument list to a call expression by acting as a placeholder for an argument. For more information see the TC39 proposal process.

proposal-pipeline-operator - A proposal for adding the simple-but-useful pipeline operator to JavaScript

  •    HTML

This proposal introduces a new operator |> similar to F#, OCaml, Elixir, Elm, Julia, Hack, and LiveScript, as well as UNIX pipes. It's a backwards-compatible way of streamlining chained function calls in a readable, functional manner, and provides a practical alternative to extending built-in prototypes. ⚠ Warning: The details of the pipeline syntax are currently unsettled. There are two competing proposals under consideration. This readme is a minimal proposal, which covers the basic features of the pipeline operator. It functions as a strawman for comparing the tradeoffs of the competing proposals.

detection-2016-nipsws - Hierarchical Object Detection with Deep Reinforcement Learning

  •    Python

We present a method for performing hierarchical object detection in images guided by a deep reinforcement learning agent. The key idea is to focus on those parts of the image that contain richer information and zoom on them. We train an intelligent agent that, given an image window, is capable of deciding where to focus the attention among five different predefined region candidates (smaller windows). This procedure is iterated providing a hierarchical image analysis. We compare two different candidate proposal strategies to guide the object search: with and without overlap. Moreover, our work compares two different strategies to extract features from a convolutional neural network for each region proposal: a first one that computes new feature maps for each region proposal, and a second one that computes the feature maps for the whole image to later generate crops for each region proposal.

vim-config-python-ide - Symlink the .vim dir and the .vimrc file and start kicking ass

  •    VimL

Symlink the .vim dir and the .vimrc file and start kicking ass

Symlink Manager

  •    

A simple GUI tool allowing symbolic or hard link creation and management. Allows both simple use and list export/import with automated analysis and creation.

proposal-pattern-matching - Pattern matching syntax for ECMAScript

  •    

This proposal adds a pattern matching expression to the language, based on the existing Destructuring Binding Patterns. There's many proposals potentially related to this one, and other proposals might mention interaction with this. This file includes casual, example-based discussion of the proposal, and there's also a document describing the core semantics in more formal language, which will be iterated over into the final Spec-ese.

proposal-cancelable-promises - Former home of the now-withdrawn cancelable promises proposal for JavaScript

  •    Shell

This proposal has been withdrawn by its champion and is no longer active in the TC39 process. For reference to previous documentation and specification work, see the Git commit history.

proposal-class-fields - Orthogonally-informed combination of public and private fields proposals

  •    HTML

This document proposes a combined vision for public fields and private fields, drawing on the earlier Orthogonal Classes and Class Evaluation Order proposals. It is written to be forward-compatible with the introduction of private methods and decorators, whose integration is explained in the unified class features proposal. Methods and accessors are defined in a follow-on proposal. In the above example, you can see a field declared with the syntax x = 0. You can also declare a field without an initializer as x. By declaring fields up-front, class definitions become more self-documenting; instances go through fewer state transitions, as declared fields are always present.

proposal-do-expressions - Proposal for `do` expressions

  •    HTML

This proposal is in stage 1 of the TC39 process. I have several alternatives I intend to explore here.

proposal-dynamic-import - import() proposal for JavaScript

  •    HTML

This repository contains a proposal for adding a "function-like" import() module loading syntactic form to JavaScript. It is currently in stage 3 of the TC39 process. Previously it was discussed with the module-loading community in whatwg/loader#149. You can view the in-progress spec draft and take part in the discussions on the issue tracker.

portals - A proposal for enabling seamless navigations between sites or pages

  •    Shell

Portals is a very early proposal for enabling seamless navigations between sites or pages. In particular, this proposal enables a page to show another page as an inset and perform a seamless transition between an inset state and a navigated state. See the explainer.

proposal-binary-ast - Binary AST proposal for ECMAScript

  •    

This is the explainer document for a proposed new binary AST format for JS. Performance of applications on the web platform is becoming increasingly bottlenecked by startup (load) time. Larger amounts of JS code are transferred over the wire by more sophisticated web properties. While caching helps, these properties regularly release new code, and cold load times are very important.

Gluster Filesystem - Scalable Network Filesystem

  •    C

Gluster is a software defined distributed storage that can scale to several petabytes. It provides interfaces for object, block and file storage. It is a distributed scale-out filesystem that allows rapid provisioning of additional storage based on your storage consumption needs. It incorporates automatic failover as a primary feature.

pyfilesystem2 - Python's Filesystem abstraction layer

  •    Python

Python's Filesystem abstraction layer. Think of PyFilesystem's FS objects as the next logical step to Python's file objects. In the same way that file objects abstract a single file, FS objects abstract an entire filesystem.