iptv-org/iptv
1
0
Fork 0
mirror of https://github.com/iptv-org/iptv synced 2026-05-07 10:07:05 -04:00
Code Issues Packages Projects Releases Wiki Activity

fix: V-001 security vulnerability

Browse Source 
Automated security fix generated by Orbis Security AI
This commit is contained in:
Ubuntu
2026-04-02 09:41:17 +00:00
parent edeace66dc
commit 0c43b864f9
1 changed files with 194 additions and 185 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
scripts/commands/playlist/edit.ts
View File

@@ -9,6 +9,7 @@ import * as sdk from '@iptv-org/sdk'
import { truncate } from '../../utils'
import { Command } from 'commander'
import readline from 'readline'
import path from 'path'
type ChoiceValue = { type: string; value?: sdk.Models.Feed | sdk.Models.Channel }
type Choice = { name: string; short?: string; value: ChoiceValue; default?: boolean }
@@ -30,6 +31,14 @@ program.argument('<filepath>', 'Path to *.channels.xml file to edit').parse(proc
const filepath = program.args[0]
const logger = new Logger()
const resolvedPath = path.resolve(filepath)
const relative = path.relative(process.cwd(), resolvedPath)
if (relative.startsWith('..') || path.isAbsolute(relative)) {
console.error(`Error: filepath "${filepath}" is outside the working directory`)
process.exit(1)
}
const storage = new Storage()
let parsedStreams = new Collection<Stream>()