Skip to content

history (#24)#25

Closed
damachine wants to merge 2 commits intomainfrom
full-history
Closed

history (#24)#25
damachine wants to merge 2 commits intomainfrom
full-history

Conversation

@damachine
Copy link
Owner

@damachine damachine commented Sep 12, 2025

  • Replace unsafe fopen() calls with secure stat() checks in main.c
  • Add symlink attack protection for PID file creation
  • Implement regular file validation before opening VERSION files
  • Enhance PID file reading with file type verification
  • Prevent TOCTOU (Time-of-Check Time-of-Use) race conditions
  • Add comprehensive error handling for security edge cases

Security improvements address Flawfinder warnings and follow OWASP secure coding practices for file system operations.

bump version to 1.58

@damachine
history (#24)
e54bcfa 
* bump version to 1.57

* instructions

* Add Codacy security scan workflow (#22)

* fix: resolve vulnerabilities in file operations

- Replace unsafe fopen() calls with secure stat() checks in main.c
- Add symlink attack protection for PID file creation
- Implement regular file validation before opening VERSION files
- Enhance PID file reading with file type verification
- Prevent TOCTOU (Time-of-Check Time-of-Use) race conditions
- Add comprehensive error handling for security edge cases

Security improvements address Flawfinder warnings and follow
OWASP secure coding practices for file system operations.

* Delete instructions (#23)

* bump version to 1.58

bump version to 1.58
@damachine
Merge branch 'main' into full-history
e3b525c
@damachine damachine closed this Sep 12, 2025
@damachine damachine deleted the full-history branch September 13, 2025 13:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@damachine