Fix test regression caused by node fixing CVE-2024-27980 (#286)

ntkme · nex3 · commit 6e9368eac724 · 2024-04-19T15:59:26.000-07:00
diff --git a/lib/src/compiler/async.ts b/lib/src/compiler/async.ts
@@ -43,6 +43,10 @@ export class AsyncCompiler {
       // current working directory.
       // https://github.com/sass/embedded-host-node/pull/261#discussion_r1438712923
       cwd: path.dirname(compilerCommand[0]),
+      // Node blocks launching .bat and .cmd without a shell due to CVE-2024-27980
+      shell: ['.bat', '.cmd'].includes(
+        path.extname(compilerCommand[0]).toLowerCase()
+      ),
       windowsHide: true,
     }
   );
diff --git a/lib/src/compiler/sync.ts b/lib/src/compiler/sync.ts
@@ -43,6 +43,10 @@ export class Compiler {
       // current working directory.
       // https://github.com/sass/embedded-host-node/pull/261#discussion_r1438712923
       cwd: path.dirname(compilerCommand[0]),
+      // Node blocks launching .bat and .cmd without a shell due to CVE-2024-27980
+      shell: ['.bat', '.cmd'].includes(
+        path.extname(compilerCommand[0]).toLowerCase()
+      ),
       windowsHide: true,
     }
   );
