singularity/singularity-forge
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
singularity-forge/packages
History
Lex Christopherson 2c4f5de321 fix: eliminate command injection and unhandled JSON.parse in LSP tool 
- config.ts: Replace execSync(`which ${command}`) with spawnSync("which", [command])
  to prevent shell injection from malicious lsp.json config files
- client.ts: Wrap JSON.parse in parseMessage with try/catch and handle null messages
  in the stream reader to prevent process crashes from malformed LSP output

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-13 11:45:04 -06:00
..
pi-agent-core feat: vendor Pi source into workspace monorepo 2026-03-12 21:55:17 -06:00
pi-ai feat: vendor Pi source into workspace monorepo 2026-03-12 21:55:17 -06:00
pi-coding-agent fix: eliminate command injection and unhandled JSON.parse in LSP tool 2026-03-13 11:45:04 -06:00
pi-tui feat: vendor Pi source into workspace monorepo 2026-03-12 21:55:17 -06:00