Finding · pi-coding-agent
Git package installation path traversal protection
What Changed
Added decodeForValidation() and hasUnsafeGitInstallPart() functions to reject git URLs with directory traversal sequences (.., null bytes, backslashes, leading slashes) at parse time. Implemented resolveManagedPath() in package manager to verify all resolved paths remain within their designated root directories.
Operator Implication
Prevents attackers from escaping package install directories via crafted git URLs. Defense-in-depth validates at both parsing and path resolution stages.
Receipt
Finding metadata
Run: 2026-06-03-weekly-digest-2026-05-28_2026-06-03-frontier-v0
Finding ID: 2026-06-02-pi-coding-agent-git-path-traversal
Accepted signals
- Git package install path-traversal rejection · 2026-06-03
Source links
Primary links, including exact changelog lines when available.
Versioned source: run artifact