fix: resolve code quality and security issues in 5 oldest files#6258
Open
JiayangLai wants to merge 1 commit intoavelino:mainfrom
Open
fix: resolve code quality and security issues in 5 oldest files#6258JiayangLai wants to merge 1 commit intoavelino:mainfrom
JiayangLai wants to merge 1 commit intoavelino:mainfrom
Conversation
Bug fixes: - Fix nil map panic in IDGenerator (pkg/markdown/convert.go): The 'used' map was never initialized, causing a panic when Put() was called. Added NewIDGenerator() constructor. - Fix redundant mkdirAll logic (main.go): os.MkdirAll already handles existing directories, removed unnecessary os.Stat check. Security fixes: - Add io.LimitReader to prevent memory exhaustion (check-quality/main.go): Added 1MB limit to io.ReadAll calls to prevent DoS via large response bodies. - Add input validation for git refs (check-pr-diff/main.go): Added isValidRef() function to validate GITHUB_BASE_REF and PR_HEAD_SHA environment variables before using in git commands, preventing potential command injection. Code cleanup: - Fix misleading FIXME comment in slug/generator.go: Corrected grammatically incorrect comment and clarified the code intent. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Automated Quality ChecksSkipped — this PR does not modify This is expected for maintenance, documentation, or workflow PRs. |
![sentry[bot]](https://avatars.githubusercontent.com/in/12637?s=60&v=4){kind=small}
Comment on lines
+206
to
+212
| func isValidRef(ref string) bool { | ||
| if ref == "" { | ||
| return false | ||
| } | ||
| // Only allow alphanumeric, hyphen, underscore, and dot (common in branch names) | ||
| for _, c := range ref { | ||
| if !((c >= 'a' && c <= 'z') || (c >= 'A' && c <= 'Z') || (c >= '0' && c <= '9') || c == '-' || c == '_' || c == '.') { |
There was a problem hiding this comment.
Bug: The isValidRef() function incorrectly rejects branch names with slashes (/), causing diffs to silently fall back to the main branch as a base.
Severity: HIGH
Suggested Fix
Update the isValidRef() function to allow the forward slash (/) character. Git branch names commonly use slashes for organization (e.g., feature/add-x). Since the script uses exec.Command, which separates arguments and prevents shell injection, this change is safe and will allow the script to correctly handle a common and valid branch naming convention.
Prompt for AI Agent
Review the code at the location below. A potential bug has been identified by an AI
agent. Verify if this is a real issue. If it is, propose a fix; if not, explain why it's
not valid.
Location: .github/scripts/check-pr-diff/main.go#L206-L212
Potential issue: The `isValidRef()` function is overly restrictive and rejects valid Git
branch names that contain a forward slash (`/`), such as `release/1.0`. When a pull
request targets a branch with a slash, the validation fails, causing the script to
silently fall back to using `main` as the base for comparison. This results in the `git
diff` command running against an incorrect base branch, leading to inaccurate PR
validation checks. The check may approve changes that should be flagged or reject valid
changes because it is not comparing against the correct code history.
Did we get this right? 👍 / 👎 to inform future reviews.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
This PR fixes code quality and security issues in the 5 oldest code files in the repository:
Bug Fixes
pkg/markdown/convert.go - Fix nil map panic in
IDGeneratorusedmap was never initialized, causing a panic whenPut()was calledNewIDGenerator()constructor to properly initialize the mapmain.go - Fix redundant
mkdirAlllogicos.MkdirAllalready handles the case where the directory existsos.StatcheckSecurity Fixes
.github/scripts/check-quality/main.go - Prevent memory exhaustion
io.LimitReader(1<<20)(1MB limit) toio.ReadAllcalls.github/scripts/check-pr-diff/main.go - Prevent command injection
isValidRef()function to validateGITHUB_BASE_REFandPR_HEAD_SHACode Cleanup
Test Plan
go build ./...to verify code compiles🤖 Generated with Claude Code