singularity/singularity-forge
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
singularity-forge/vscode-extension/src
History
Mikael Hugo 66ff949c11 cherry-pick(security): harden project-controlled surfaces (PR #4755 partial) 
Cherry-pick of gsd-build/gsd-2 65ca5aa2e — applies the security hardening
hunks that conflicted minimally:

- mcp-server/env-writer: validate writes against a strict allowlist
- web/api/files: enforce path containment via web/lib/secure-path
- vscode-extension: read binaryPath/autoStart only from trusted
  global/default scopes (resolveTrustedSfStartupConfig), avoiding
  workspace-controlled override (renamed Gsd → Sf for sf naming)
- New regression tests: mcp-client-security, vscode-startup-security,
  web-files-symlink

Skipped hunks (drifted): mcp-server/server.ts, mcp-client/index.ts,
mcp-server/README.md.

Co-Authored-By: Jeremy <jeremy@fluxlabs.net>
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-28 05:37:07 +02:00
..
activity-feed.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
bash-terminal.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
change-tracker.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
chat-participant.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
checkpoints.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
code-lens.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
conversation-history.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
diagnostics.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
extension.ts cherry-pick(security): harden project-controlled surfaces (PR #4755 partial) 2026-04-28 05:37:07 +02:00
file-decorations.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
git-integration.ts chore: sync workspace state after rebrand 2026-04-15 14:54:20 +02:00
line-decorations.ts chore: sync workspace state after rebrand 2026-04-15 14:54:20 +02:00
permissions.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
plan-viewer.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
scm-provider.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
session-tree.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
sf-client.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
sidebar.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00
slash-completion.ts Rename GSD→SF: complete rebrand from fork origin 2026-04-15 18:33:47 +02:00