Commit Graph

11 Commits

Author SHA1 Message Date
Marc Cornellà a263cdac9c
fix(lib): fix potential command injection in `title` and `spectrum` functions
The `title` function unsafely prints its input without sanitization, which if used
with custom user code that calls it, it could trigger command injection.

The `spectrum_ls` and `spectrum_bls` could similarly be exploited if a variable is
changed in the user's shell environment with a carefully crafted value. This is
highly unlikely to occur (and if possible, other methods would be used instead),
but with this change the exploit of these two functions is now impossible.
2021-11-11 22:45:11 +01:00
Marc Cornellà 0caae9082a lib: speed up slow parts of the lib files; other small fixes 2020-04-05 21:37:45 +02:00
Janosch Schwalm 19b925e741 use https everywhere (#6574)
* use https everywhere

* use https links on the files that are left

Also, removed some broken links and updated redirections.
2018-08-07 20:42:01 +02:00
Marc Cornellà d54d896346 Merge pull request #3966 from apjanke/fix-spectrum-ls
Make spectrum_ls implementation consistent with $FG and spectrum_bls
2015-12-13 21:39:13 +01:00
Andrew Janke 0bda651dfd Fix the spectrum_ls implementation in spectrum.zsh 2015-06-08 07:19:57 -04:00
Andrew Janke 8142261261 Hide spectrum.zsh var values to avoid junky "set" output to terminal 2015-06-08 07:07:45 -04:00
LFDM 6a40557a8b Updates spectrum.zsh 2013-12-31 14:54:34 +01:00
dejan f057737e57 Added the spectrum_bls function, which prints all 256 colors set as the
background.

We can easily see which color we want to set when changing the PS1 shell variable,
since the colors are more distinctive.
2013-10-16 12:36:48 +02:00
Benjamin Boudreau cbaa97d8c3 Add utility method to spectrum 2011-07-23 11:09:45 -04:00
canthiswait e8ef16570f escape sequences so rprompt doesn't mess up 2010-05-06 20:46:32 -07:00
canthiswait 02bd8ab53e Added scpectrum script for easy 256 color theaming 2010-05-06 20:46:32 -07:00