[vim/vim] tests: add a test for wrong shellescape() command in combination with :! (PR #20286)

2 views

Skip to first unread message

Christian Brabandt

unread,

May 21, 2026, 4:40:04 PM (17 hours ago) May 21

to vim/vim, Subscribed

This has lead to a few security relevant issues, so add a test that checks all runtime files for any ! followed by a shellescape() that does not use the {special} arg.

related: Commit: 3fb5e58 (patch 9.2.0479:
[security]: runtime(tar): command injection in tar plugin)

Supported by AI

You can view, comment on, or merge this pull request online at:

https://github.com/vim/vim/pull/20286

Commit Summary

1884350 tests: add a test for wrong shellescape() command in combination with :!

File Changes

(1 file)

M src/testdir/test_codestyle.vim (23)

Patch Links:

—
Reply to this email directly, view it on GitHub, or unsubscribe.
Triage notifications on the go with GitHub Mobile for iOS or Android.
You are receiving this because you are subscribed to this thread.

Reply all

Reply to author

Forward

0 new messages