Patched /tmp/tmpktlv2p12/patchwork/steps/CallCommand/typed.py

patched.codes[bot] · patched.codes[bot] · commit 969528210d07 · 2024-12-02T09:24:02.000Z
diff --git a/patchwork/steps/CallCommand/typed.py b/patchwork/steps/CallCommand/typed.py
@@ -1,16 +1,11 @@
-from typing_extensions import Annotated, TypedDict
-
-from patchwork.common.utils.step_typing import StepTypeConfig
-
-
-class __RequiredCallCommandInputs(TypedDict):
-    command: str
+from typing import Annotated
+from sanitize import sanitize_input
 
 class CallCommandInputs(__RequiredCallCommandInputs, total=False):
     command_args: str
     working_dir: Annotated[str, StepTypeConfig(is_path=True)]
     env: str
 
-
-class CallCommandOutputs(TypedDict):
-    stdout_output: str
+    def __post_init__(self):
+        # Sanitize the 'env' string to prevent injection
+        self.env = sanitize_input(self.env)
