git.ipfire.org Git - thirdparty/git.git/commit

author	Johannes Schindelin <johannes.schindelin@gmx.de>
	Wed, 17 Dec 2025 14:23:40 +0000 (14:23 +0000)
committer	Junio C Hamano <gitster@pobox.com>
	Thu, 18 Dec 2025 01:58:07 +0000 (10:58 +0900)
commit	740dce52b66417f8240abdc155c45da8bd2af2dc
tree	918fd941e5887c0a5cc70110b4a6a231092b3d29	tree \| snapshot
parent	a7afa7a1dd73f26b5578c81b14112e36dc55eb3a	commit \| diff

sideband: introduce an "escape hatch" to allow control characters

The preceding commit fixed the vulnerability whereas sideband messages
(that are under the control of the remote server) could contain ANSI
escape sequences that would be sent to the terminal verbatim.

However, this fix may not be desirable under all circumstances, e.g.
when remote servers deliberately add coloring to their messages to
increase their urgency.

To help with those use cases, give users a way to opt-out of the
protections: `sideband.allowControlCharacters`.

Suggested-by: brian m. carlson <sandals@crustytoothpaste.net>
Signed-off-by: Johannes Schindelin <johannes.schindelin@gmx.de>
Signed-off-by: Junio C Hamano <gitster@pobox.com>

Documentation/config.txt		diff \| blob \| blame \| history
Documentation/config/sideband.txt	[new file with mode: 0644]	blob
sideband.c		diff \| blob \| blame \| history
t/t5409-colorize-remote-messages.sh		diff \| blob \| blame \| history