21372060598
54%
dev: 54%

Ran 26 Jan 2026 08:12PM UTC

Jobs 1

Files 191

Run time 1min

Badge

Embed ▾

Committed 26 Jan 2026 08:02PM UTC coverage: 53.579% (-0.08%) from 53.656%

Build # 21372060598

Build Type

Pull #1225

github

Committed by

Copilot

Commit Message

Fix symlink vulnerabilities in archive extraction

- Add symlink target validation for tar and zip extraction
- Use tarfile.data_filter for Python 3.12+ with fallback for 3.9-3.11
- Validate both file paths and symlink targets to prevent escape
- Improve _is_within_directory to properly handle path separators
- Add comprehensive tests for symlink attacks
- Update security documentation with symlink attack scenarios

Co-authored-by: bact <128572+bact@users.noreply.github.com>

Pull Request Pull Request #1225: Security: Fix path traversal and symlink attacks in archive extraction

Run Details

18 of 47 new or added lines in 2 files covered. (38.3%)

1 existing line in 1 file now uncovered.

4574 of 8537 relevant lines covered (53.58%)

0.54 hits per line

New Missed Lines in Diff

Lines	Coverage	∆	File
2	0.0	0.0%	pythainlp/generate/thai2fit.py
27	75.44	-5.23%	pythainlp/corpus/core.py

Uncovered Existing Lines

Lines	Coverage	∆	File
1	0.0	0.0%	pythainlp/generate/thai2fit.py

Jobs

ID	Job ID	Ran	Files	Coverage
1	21372060598.1	26 Jan 2026 08:12PM UTC	191	53.58	GitHub Action Run

PyThaiNLP / pythainlp / 21372060598
54%
dev: 54%

README BADGES
x

Markdown

Textile

RDoc

HTML

Rst

New Missed Lines in Diff

Uncovered Existing Lines

Jobs

Source Files on build 21372060598

PyThaiNLP / pythainlp / 21372060598 54% dev: 54%

README BADGES x

Markdown

Textile

RDoc

HTML

Rst

New Missed Lines in Diff

Uncovered Existing Lines

Jobs

Source Files on build 21372060598

PyThaiNLP / pythainlp / 21372060598
54%
dev: 54%

README BADGES
x