@@ -6,7 +6,6 @@ import Foundation
6677enum HostEnvSecurityPolicy {
88static let blockedInheritedKeys: Set<String> = [
9-"_JAVA_OPTIONS",
109"AMQP_URL",
1110"ANSIBLE_CALLBACK_PLUGINS",
1211"ANSIBLE_COLLECTIONS_PATH",
@@ -31,12 +30,11 @@ enum HostEnvSecurityPolicy {
3130"AZURE_CLIENT_SECRET",
3231"BASH_ENV",
3332"BROWSER",
34-"BUN_CONFIG_REGISTRY",
3533"BUNDLE_GEMFILE",
34+"BUN_CONFIG_REGISTRY",
3635"BZR_EDITOR",
3736"BZR_PLUGIN_PATH",
3837"BZR_SSH",
39-"C_INCLUDE_PATH",
4038"CARGO_BUILD_RUSTC",
4139"CARGO_BUILD_RUSTC_WRAPPER",
4240"CARGO_HOME",
@@ -46,8 +44,8 @@ enum HostEnvSecurityPolicy {
4644"CGO_CFLAGS",
4745"CGO_LDFLAGS",
4846"CLASSPATH",
49-"CMAKE_C_COMPILER",
5047"CMAKE_CXX_COMPILER",
48+"CMAKE_C_COMPILER",
5149"CMAKE_TOOLCHAIN_FILE",
5250"COMPOSER_HOME",
5351"CONFIG_SHELL",
@@ -58,6 +56,7 @@ enum HostEnvSecurityPolicy {
5856"CPLUS_INCLUDE_PATH",
5957"CURL_HOME",
6058"CXX",
59+"C_INCLUDE_PATH",
6160"DATABASE_URL",
6261"DENO_DIR",
6362"DOTNET_ADDITIONAL_DEPS",
@@ -75,6 +74,8 @@ enum HostEnvSecurityPolicy {
7574"GEM_HOME",
7675"GEM_PATH",
7776"GH_TOKEN",
77+"GITHUB_TOKEN",
78+"GITLAB_TOKEN",
7879"GIT_ALTERNATE_OBJECT_DIRECTORIES",
7980"GIT_ASKPASS",
8081"GIT_COMMON_DIR",
@@ -95,8 +96,6 @@ enum HostEnvSecurityPolicy {
9596"GIT_SSL_NO_VERIFY",
9697"GIT_TEMPLATE_DIR",
9798"GIT_WORK_TREE",
98-"GITHUB_TOKEN",
99-"GITLAB_TOKEN",
10099"GLIBC_TUNABLES",
101100"GOENV",
102101"GOFLAGS",
@@ -145,8 +144,8 @@ enum HostEnvSecurityPolicy {
145144"PERL5DBCMD",
146145"PERL5LIB",
147146"PERL5OPT",
148-"PHP_INI_SCAN_DIR",
149147"PHPRC",
148+"PHP_INI_SCAN_DIR",
150149"PIP_CONFIG_FILE",
151150"PIP_EXTRA_INDEX_URL",
152151"PIP_FIND_LINKS",
@@ -160,17 +159,17 @@ enum HostEnvSecurityPolicy {
160159"PYTHONPATH",
161160"PYTHONSTARTUP",
162161"PYTHONUSERBASE",
163-"R_ENVIRON",
164-"R_ENVIRON_USER",
165-"R_LIBS_USER",
166-"R_PROFILE",
167-"R_PROFILE_USER",
168162"REDIS_URL",
169163"RUBYLIB",
170164"RUBYOPT",
171165"RUBYSHELL",
172166"RUSTC_WRAPPER",
173167"RUSTFLAGS",
168+"R_ENVIRON",
169+"R_ENVIRON_USER",
170+"R_LIBS_USER",
171+"R_PROFILE",
172+"R_PROFILE_USER",
174173"SBT_OPTS",
175174"SHELL",
176175"SHELLOPTS",
@@ -192,7 +191,8 @@ enum HostEnvSecurityPolicy {
192191"VIRTUAL_ENV",
193192"VISUAL",
194193"WGETRC",
195-"YARN_RC_FILENAME"
194+"YARN_RC_FILENAME",
195+"_JAVA_OPTIONS"
196196]
197197198198static let blockedInheritedPrefixes: [String] = [
@@ -202,7 +202,6 @@ enum HostEnvSecurityPolicy {
202202]
203203204204static let blockedKeys: Set<String> = [
205-"_JAVA_OPTIONS",
206205"ANT_OPTS",
207206"BASH_ENV",
208207"BROWSER",
@@ -213,8 +212,8 @@ enum HostEnvSecurityPolicy {
213212"CARGO_BUILD_RUSTC_WRAPPER",
214213"CATALINA_OPTS",
215214"CC",
216-"CMAKE_C_COMPILER",
217215"CMAKE_CXX_COMPILER",
216+"CMAKE_C_COMPILER",
218217"CMAKE_TOOLCHAIN_FILE",
219218"CONFIG_SHELL",
220219"CONFIG_SITE",
@@ -275,14 +274,14 @@ enum HostEnvSecurityPolicy {
275274"PYTHONBREAKPOINT",
276275"PYTHONHOME",
277276"PYTHONPATH",
278-"R_ENVIRON",
279-"R_ENVIRON_USER",
280-"R_PROFILE",
281-"R_PROFILE_USER",
282277"RUBYLIB",
283278"RUBYOPT",
284279"RUBYSHELL",
285280"RUSTC_WRAPPER",
281+"R_ENVIRON",
282+"R_ENVIRON_USER",
283+"R_PROFILE",
284+"R_PROFILE_USER",
286285"SBT_OPTS",
287286"SHELL",
288287"SHELLOPTS",
@@ -291,7 +290,8 @@ enum HostEnvSecurityPolicy {
291290"SVN_EDITOR",
292291"SVN_SSH",
293292"VAGRANT_VAGRANTFILE",
294-"VIMINIT"
293+"VIMINIT",
294+"_JAVA_OPTIONS"
295295]
296296297297static let blockedOverrideKeys: Set<String> = [
@@ -321,9 +321,8 @@ enum HostEnvSecurityPolicy {
321321"AZURE_AUTH_LOCATION",
322322"AZURE_CLIENT_ID",
323323"AZURE_CLIENT_SECRET",
324-"BUN_CONFIG_REGISTRY",
325324"BUNDLE_GEMFILE",
326-"C_INCLUDE_PATH",
325+"BUN_CONFIG_REGISTRY",
327326"CARGO_BUILD_RUSTC_WRAPPER",
328327"CARGO_HOME",
329328"CFLAGS",
@@ -336,6 +335,7 @@ enum HostEnvSecurityPolicy {
336335"CPLUS_INCLUDE_PATH",
337336"CURL_CA_BUNDLE",
338337"CURL_HOME",
338+"C_INCLUDE_PATH",
339339"DATABASE_URL",
340340"DENO_DIR",
341341"DOCKER_CERT_PATH",
@@ -347,6 +347,8 @@ enum HostEnvSecurityPolicy {
347347"GEM_HOME",
348348"GEM_PATH",
349349"GH_TOKEN",
350+"GITHUB_TOKEN",
351+"GITLAB_TOKEN",
350352"GIT_ALTERNATE_OBJECT_DIRECTORIES",
351353"GIT_ASKPASS",
352354"GIT_COMMON_DIR",
@@ -362,8 +364,6 @@ enum HostEnvSecurityPolicy {
362364"GIT_SSL_CAPATH",
363365"GIT_SSL_NO_VERIFY",
364366"GIT_WORK_TREE",
365-"GITHUB_TOKEN",
366-"GITLAB_TOKEN",
367367"GOENV",
368368"GOFLAGS",
369369"GONOPROXY",
@@ -378,8 +378,8 @@ enum HostEnvSecurityPolicy {
378378"HGRCPATH",
379379"HISTFILE",
380380"HOME",
381-"HTTP_PROXY",
382381"HTTPS_PROXY",
382+"HTTP_PROXY",
383383"KUBECONFIG",
384384"LDFLAGS",
385385"LESSCLOSE",
@@ -391,19 +391,19 @@ enum HostEnvSecurityPolicy {
391391"MANPAGER",
392392"MFLAGS",
393393"MONGODB_URI",
394-"NO_PROXY",
395394"NODE_AUTH_TOKEN",
396395"NODE_EXTRA_CA_CERTS",
397396"NODE_TLS_REJECT_UNAUTHORIZED",
397+"NO_PROXY",
398398"NPM_TOKEN",
399399"OBJC_INCLUDE_PATH",
400400"OPENSSL_CONF",
401401"OPENSSL_ENGINES",
402402"PAGER",
403403"PERL5DB",
404404"PERL5DBCMD",
405-"PHP_INI_SCAN_DIR",
406405"PHPRC",
406+"PHP_INI_SCAN_DIR",
407407"PIP_CONFIG_FILE",
408408"PIP_EXTRA_INDEX_URL",
409409"PIP_FIND_LINKS",
@@ -413,11 +413,11 @@ enum HostEnvSecurityPolicy {
413413"PROMPT_COMMAND",
414414"PYTHONSTARTUP",
415415"PYTHONUSERBASE",
416-"R_LIBS_USER",
417416"REDIS_URL",
418417"REQUESTS_CA_BUNDLE",
419418"RUSTC_WRAPPER",
420419"RUSTFLAGS",
420+"R_LIBS_USER",
421421"SSH_ASKPASS",
422422"SSH_AUTH_SOCK",
423423"SSL_CERT_DIR",
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。