← Back to Clusters

Environment Variable Security Enhancements

This cluster focuses on improving security by blocking dangerous environment variables and validating configurations across various components.

40 PRs
fix security config Representative: #8139
# Title Author Created GitHub
21562 fix: exec host error message shows configuredHost instead of requestedHost TopangaLudwitt 2026-02-20 View
21668 fix(config): block dangerous environment variable keys from config injection AI-Reviewer-QS 2026-02-20 View
21756 [AI-Assisted] Sandbox: add support for env_file in Docker sandboxes ronaldslc 2026-02-20 View
21820 fix(exec): show requested host in disallowed host hint AlexAnys 2026-02-20 View
22713 Security: extend env var blocklist — add GLIBC_TUNABLES, JAVA_TOOL_OPTIONS, J... Fratua 2026-02-21 View
22756 fix(security): add missing entries to environment variable blocklist miloudbelarebia 2026-02-21 View
22812 fix(node-host): auto-create cwd before exec spawn to prevent misleading ENOENT aldoeliacim 2026-02-21 View
22813 Return clear error when exec cwd is missing instead of spawn ENOENT Clawborn 2026-02-21 View
23008 Fix prototype pollution in mergeConfigSection and add deepMerge coverage Clawborn 2026-02-21 View
23287 fix(node-host): improve ENOENT error when exec workspace dir is missing SidQin-cyber 2026-02-22 View