mirror of
https://github.com/fleetdm/fleet
synced 2026-04-21 13:37:30 +00:00
37ee10e1a2
Fixes #41009 ## Summary - Scope `ValidatePackageIdentifiers` to only run when `$PACKAGE_ID` or `$UPGRADE_CODE` template variables are present in the uninstall script - Move `dmg`/`zip` early return before validation - Switch from ASCII allowlist to shell metacharacter denylist, allowing legitimate non-ASCII product names (e.g., `®`, parens) while still blocking injection characters ## Test plan - [x] Added unit tests for conditional validation (non-ASCII IDs with/without template vars, dmg/zip bypass, upgrade code scoping) - [x] Existing input tests still pass - [x] Winget ingester tests unaffected --------- Co-authored-by: Ian Littman <iansltx@gmail.com> |
||
|---|---|---|
| .. | ||
| bulk-operations-dashboard | ||
| cis | ||
| fleetctl | ||
| fleetd-chrome | ||
| maintained-apps | ||
| orbit/pkg | ||
| server | ||
| tools | ||
| vulnerability-dashboard | ||
| LICENSE | ||
| README.md | ||
Welcome to the "source available" section of the Fleet codebase. Please note files and functionality under this directory are covered by the Fleet EE License, and require a valid Fleet subscription for production use. See the full license for details.