github Lexonight1/thermalright-trcc-linux v8.2.0
on GitHub

latest releases: v9.5.0, v9.4.15, v9.4.14...
one month ago

Security Hardening

  • Path traversal prevention/display/overlay dc_path validated against USER_DATA_DIR (null bytes, .., absolute paths blocked)
  • Theme ID injection/themes/web/{theme_id}/download regex-validated (alphanumeric only)
  • Stack trace leakage/themes/import no longer exposes internal paths or tracebacks
  • Download filename sanitization — update handler strips traversal from filenames
  • Subprocess safetyshlex.split() for CLI system commands
  • PYTHONPATH ordering — sudo re-exec puts site-packages first, dev clone last (#47)

Testing

  • 18 dedicated security tests covering path traversal, info leakage, upload limits, input validation
  • 4112 total tests passing

Other

  • Release trigger words (patch, minor, major) in CLAUDE.md
Check out latest releases or
releases around Lexonight1/thermalright-trcc-linux v8.2.0

Don't miss a new thermalright-trcc-linux release

NewReleases is sending notifications on new releases.

Get notifications