tiennm99/coolify
1
0
Fork 0
mirror of https://github.com/tiennm99/coolify.git synced 2026-04-18 07:20:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
aacb6016b04a314f4e12cd4e9b3a63b810851f21
coolify/tests/Unit
History
Andras Bacsai 8b20b0e45a test: add coverage for newline and tab rejection in volume strings 
Added test to verify parseDockerVolumeString rejects:
- Newline characters (command separator)
- Tab characters (token separator)

Both characters are blocked by validateShellSafePath which is called
during volume string parsing, ensuring they cannot be used for
command injection attacks.

All 80 security tests pass (217 assertions).
2025-10-16 09:51:37 +02:00
..
Rules
feat: add YAML validation for cloud-init scripts
2025-10-11 13:56:55 +02:00
ApplicationGitSecurityTest.php
fix: prevent command injection in git ls-remote operations
2025-10-15 14:53:50 +02:00
ApplicationWatchPathsTest.php
refactor(tests): simplify matchWatchPaths tests and update implementation for better clarity
2025-09-26 14:33:18 +02:00
BashEnvEscapingTest.php
fix: handle null environment variable values in bash escaping
2025-10-15 13:35:58 +02:00
CloudInitScriptValidationTest.php
feat: add cloud-init script support for Hetzner server creation
2025-10-10 19:37:16 +02:00
DatalistComponentTest.php
feat: add support for selecting additional SSH keys from Hetzner in server creation form
2025-10-10 12:17:05 +02:00
DockerComposeLabelParsingTest.php
Changes auto-committed by Conductor
2025-10-16 08:51:15 +02:00
DockerImageAutoParseTest.php
fix: improve Docker image digest handling and add auto-parse feature
2025-10-15 10:19:01 +02:00
DockerImageParserTest.php
fix: improve Docker image digest handling and add auto-parse feature
2025-10-15 10:19:01 +02:00
GitLsRemoteParsingTest.php
test: improve Git ls-remote parsing tests with uppercase SHA and negative cases
2025-10-14 17:34:26 +02:00
GlobalSearchNewImageQuickActionTest.php
fix: 'new image' quick action not progressing to resource selection
2025-10-15 10:49:07 +02:00
HetznerDeletionFailedNotificationTest.php
feat: implement Hetzner deletion failure notification system with email and messaging support
2025-10-10 09:35:58 +02:00
HetznerSshKeysTest.php
feat: add support for selecting additional SSH keys from Hetzner in server creation form
2025-10-10 12:17:05 +02:00
ParseDockerVolumeStringTest.php
fix(parsers): enhance volume string handling by preserving mode in application and service parsers. Update related unit tests for validation.
2025-08-27 16:54:49 +02:00
PreSaveValidationTest.php
fix: prevent command injection in Docker Compose parsing - add pre-save validation
2025-10-16 09:51:37 +02:00
PrivateKeyStorageTest.php
fix(private-key): implement transaction handling and error verification for private key storage operations
2025-09-09 16:46:38 +02:00
ProxyCustomCommandsTest.php
feat(proxy): enhance proxy configuration regeneration by extracting custom commands
2025-10-07 11:11:13 +02:00
ServiceConfigurationRefreshTest.php
fix: prevent duplicate services on image change and enable real-time UI refresh
2025-10-14 10:12:36 +02:00
ServiceNameSecurityTest.php
fix: prevent command injection in Docker Compose parsing - add pre-save validation
2025-10-16 09:51:37 +02:00
ServiceParserImageUpdateTest.php
fix: prevent duplicate services on image change and enable real-time UI refresh
2025-10-14 10:12:36 +02:00
SshRetryMechanismTest.php
fix(ssh): introduce SshRetryHandler and SshRetryable trait for enhanced SSH command retry logic with exponential backoff and error handling
2025-09-07 17:17:35 +02:00
ValidateShellSafePathTest.php
refactor: harden and deduplicate validateShellSafePath
2025-10-16 09:51:37 +02:00
ValidGitRepositoryUrlTest.php
fix(validation): update git:// URL validation to support port numbers and tilde characters in paths
2025-09-29 12:21:15 +02:00
ValidHostnameTest.php
feat: implement ValidHostname validation rule and integrate it into server creation process
2025-10-10 11:03:13 +02:00
VolumeArrayFormatSecurityTest.php
feat: allow safe environment variable defaults in array-format volumes
2025-10-16 09:51:37 +02:00
VolumeSecurityTest.php
test: add coverage for newline and tab rejection in volume strings
2025-10-16 09:51:37 +02:00
WindowsPathVolumeTest.php
fix: use canonical parser for Windows path validation
2025-10-16 09:51:37 +02:00