Skip to content

Prevent command injection to docker in firecracker

Warren Gifford requested to merge es/fix-command-injection-firecracker into main

Created by: eseliger

Since we made this one string in the end, it is up to the shell to interpret args here.

Works on https://github.com/sourcegraph/security-issues/issues/297.

Test plan

Tested on k8s.

Merge request reports