HermesCLI.process_command() and tui_gateway command.dispatch both handle type: exec quick commands via subprocess.run(shell=True) with no env= parameter, so the child inherits the full process environment — all API keys and bot tokens stored in os.environ are visible to the script. Any output is returned raw to the terminal or web-UI client without redaction. Fix: mirror the approach applied to gateway/run.py in #23584. Apply _sanitize_subprocess_env() before spawning the subprocess and redact_sensitive_text() on the collected output before display. Symmetric across all three exec quick-command paths. Parity with gateway/run.py fix in #23584. |
||
|---|---|---|
| .. | ||
| __init__.py | ||
| entry.py | ||
| event_publisher.py | ||
| git_probe.py | ||
| loop_noise.py | ||
| project_tree.py | ||
| render.py | ||
| server.py | ||
| slash_worker.py | ||
| transport.py | ||
| ws.py | ||