Escape Blubber config values when compiling to Dockerfile
Closed, ResolvedPublic
Actions

Description

The Dockerfile compiler doesn't currently escape any config values when writing its instructions to the buffer. This may cause unexpected breakage and should also be considered a vulnerability open to instruction injection. Let's escape these values.

Revisions and Commits

rGBLBR Blubber
	D705	rGBLBR3ad2c475d963 Escape docker output

Event Timeline

dduvall created this task.Jun 15 2017, 6:25 PM

Restricted Application added a project: Release-Engineering-Team (Kanban). · View Herald TranscriptJun 15 2017, 6:25 PM

Restricted Application added a subscriber: Aklapper. · View Herald Transcript

dduvall triaged this task as Medium priority.Jun 15 2017, 6:31 PM

dduvall moved this task from Backlog to Doing on the Release Pipeline (Blubber) board.

thcipriani moved this task from Backlog to In-progress on the Release-Engineering-Team (Kanban) board.Jun 26 2017, 4:37 PM

thcipriani added a revision: D705: Escape docker output.Jul 6 2017, 9:27 PM

thcipriani closed this task as Resolved by committing rGBLBR3ad2c475d963: Escape docker output.Jul 11 2017, 3:56 PM

thcipriani added a commit: rGBLBR3ad2c475d963: Escape docker output.

Phabricator_maintenance edited projects, added RelEng-Archive-FY201718-Q1; removed Release-Engineering-Team (Kanban).Sep 26 2017, 11:45 PM

Escape Blubber config values when compiling to DockerfileClosed, ResolvedPublicActions

Description

Revisions and Commits

Event Timeline

Escape Blubber config values when compiling to Dockerfile
Closed, ResolvedPublic
Actions