claude-scientific-skills

skills/claude-scientific-skills

Fork 0

mirror of https://github.com/K-Dense-AI/claude-scientific-skills.git synced 2026-01-26 16:58:56 +08:00

Commit Graph

Author	SHA1	Message	Date
marovole	b6a6d698db	fix(security): replace shell=True with safe subprocess patterns in documentation ## Summary Fix command injection vulnerabilities in documentation examples by replacing shell=True with safe list-based subprocess calls. ## Changes ### alphafold-database/SKILL.md - Replace shell=True with list-form subprocess.run() - Add input validation for taxonomy_id parameter - Add security warning note with link to Python docs ### modal/references/web-endpoints.md - Replace shell=True with list-form subprocess.Popen() - Add security warning note ## Security These changes prevent potential command injection if users copy these examples with untrusted input. The new patterns follow Python security best practices.	2026-01-08 15:05:30 +08:00
Timothy Kassis	8be6c6c307	Consolidate skills	2025-11-13 18:50:42 -08:00

Author

SHA1

Message

Date

marovole

b6a6d698db

fix(security): replace shell=True with safe subprocess patterns in documentation

## Summary
Fix command injection vulnerabilities in documentation examples by replacing
shell=True with safe list-based subprocess calls.

## Changes

### alphafold-database/SKILL.md
- Replace shell=True with list-form subprocess.run()
- Add input validation for taxonomy_id parameter
- Add security warning note with link to Python docs

### modal/references/web-endpoints.md
- Replace shell=True with list-form subprocess.Popen()
- Add security warning note

## Security
These changes prevent potential command injection if users copy these examples
with untrusted input. The new patterns follow Python security best practices.

2026-01-08 15:05:30 +08:00

Timothy Kassis

8be6c6c307

Consolidate skills

2025-11-13 18:50:42 -08:00

2 Commits