#395 MEDIUM: No upper bound validation on timeout duration strings

closed medium Created 2025-12-11 22:21 · Updated 2025-12-16 20:46

Description

Edit

shell_command.py:153-186 - ISO 8601 duration parsing has no max validation. Malicious workflow could specify P365D to hold resources indefinitely. Fix: Add max timeout validation (e.g., 24 hours).

Comments

Loading comments...

Context

Loading context...

Audit History

View All

Loading audit history...

#395 MEDIUM: No upper bound validation on timeout duration strings

Description

Similar Issues

Comments

Context

Audit History