mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-07-17 13:15:16 +03:00
Production hardening: security fixes, code quality, 724 skills complete
- Fix 25 shell=True subprocess calls with list-based commands - Fix 49 verify=False in defensive skills (env-var override) - Add timeout to 231 HTTP/subprocess/socket calls - Fix 6 SQL injection patterns with whitelist validation - Replace 8 __import__() with standard imports - Remove 701 unused imports across 442 files - Add authorized-testing disclaimers to all offensive skills - Complete 11 incomplete skill directories - Expand 10 stub SKILL.md files with full content - Fix 2 YAML parse errors in frontmatter - Fix 5 pre-existing syntax errors - Convert 22 hardcoded paths/ports to environment variables - Back up 21 redundant skill pairs to .bak - Fix 2 global declaration errors - 724/724 skills with full folder anatomy (SKILL.md + agent.py + api-reference.md + LICENSE) - 0 compile errors across all 724 agent.py files
This commit is contained in:
@@ -17,7 +17,7 @@ def ise_request(base_url, username, password, endpoint):
|
||||
cmd = ["curl", "-s", "-k", "-u", f"{username}:{password}",
|
||||
"-H", "Accept: application/json",
|
||||
f"{base_url}/ers/config{endpoint}"]
|
||||
result = subprocess.run(cmd, capture_output=True, text=True)
|
||||
result = subprocess.run(cmd, capture_output=True, text=True, timeout=120)
|
||||
return json.loads(result.stdout) if result.stdout else {}
|
||||
|
||||
|
||||
@@ -38,7 +38,7 @@ def get_active_sessions(base_url, user, pw):
|
||||
cmd = ["curl", "-s", "-k", "-u", f"{user}:{pw}",
|
||||
"-H", "Accept: application/json",
|
||||
f"{base_url}/admin/API/mnt/Session/ActiveList"]
|
||||
result = subprocess.run(cmd, capture_output=True, text=True)
|
||||
result = subprocess.run(cmd, capture_output=True, text=True, timeout=120)
|
||||
return json.loads(result.stdout) if result.stdout else {}
|
||||
|
||||
|
||||
|
||||
Reference in New Issue
Block a user