singularity/singularity-forge
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
singularity-forge/packages/pi-coding-agent
History
Lex Christopherson 2c4f5de321 fix: eliminate command injection and unhandled JSON.parse in LSP tool 
- config.ts: Replace execSync(`which ${command}`) with spawnSync("which", [command])
  to prevent shell injection from malicious lsp.json config files
- client.ts: Wrap JSON.parse in parseMessage with try/catch and handle null messages
  in the stream reader to prevent process crashes from malformed LSP output

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-13 11:45:04 -06:00
..
src fix: eliminate command injection and unhandled JSON.parse in LSP tool 2026-03-13 11:45:04 -06:00
package.json feat: vendor Pi source into workspace monorepo 2026-03-12 21:55:17 -06:00
tsconfig.json feat: vendor Pi source into workspace monorepo 2026-03-12 21:55:17 -06:00