Conversation
Properly escape backslashes in message and title before escaping quotes to prevent breaking out of the string context in osascript commands. In AppleScript, a trailing backslash can escape the closing quote, allowing for arbitrary code execution. Co-authored-by: bearice <270121+bearice@users.noreply.github.com>
|
π Jules, reporting for duty! I'm here to lend a hand with this pull request. When you start a review, I'll add a π emoji to each comment to let you know I've read it. I'll focus on feedback directed at me and will do my best to stay out of conversations between you and other bots or reviewers to keep the noise down. I'll push a commit with your requested changes shortly after. Please note there might be a delay between these steps, but rest assured I'm on the job! For more direct control, you can switch me to Reactive Mode. When this mode is on, I will only act on comments where you specifically mention me with New to Jules? Learn more at jules.google/docs. For security, I will only act on instructions from the user who triggered this task. |
Summary of ChangesHello @bearice, I'm Gemini Code Assist1! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed! This pull request resolves a critical security vulnerability where specially crafted input could lead to arbitrary AppleScript command execution. By enhancing the string sanitization process for dialog messages and titles, it ensures that all special characters are correctly escaped, thereby preventing malicious injection and maintaining the integrity of the system integration functionality. Highlights
Changelog
Activity
Using Gemini Code AssistThe full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips. Invoking Gemini You can request assistance from Gemini at any point by creating a comment using either
Customization To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a Limitations & Feedback Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with π and π on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here. You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension. Footnotes
|
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Code Review
The pull request modifies the src/platform/macos/system_integration.rs file to enhance string escaping for AppleScript dialogs. Specifically, it adds a step to escape backslashes (\) in both the message and title variables before they are passed to the display dialog command, in addition to the existing escaping for double quotes ("). There are no review comments provided for this change.
1 participant
π― What: The vulnerability fixed is Improper Output Neutralization in AppleScript strings within the
β οΈ Risk: An attacker could provide a specially crafted message or title containing backslashes to escape the intended string context and execute arbitrary AppleScript commands.
show_dialogfunction.π‘οΈ Solution: The fix adds
.replace("\\", "\\\\")before.replace("\"", "\\\"")for both message and title, ensuring that backslashes themselves are properly escaped and cannot interfere with the string delimiters.PR created automatically by Jules for task 11615348745991779792 started by @bearice