[Feature Request]: Restrict Special Characters in Autogenerated Image Filenames for Security and Compatibility #21429
Comments
TARishabh
added
triage needed
enhancement
|
Hi @seanlip , Could you please confirm if the solutions I’ve suggested are correct? Also, are there any additional characters you suggest restricting in filenames for better security (beyond <, >, etc)? Thanks! |
|
Hi @TARishabh, the approach of going with an allowlist for filenames seems good. Better to do that than a denylist. One question: for your example video, how do the images currently get locally stored in your local GCS? What are the filenames there? (Need this info to assess how important this issue is.) |
|
@seanlip Sorry for the delay ! Currently, in my local setup, images are stored in the following format within the GCS file system: For example: Entity: This results in the GCS file path: When accessed locally during development, the full URL to the image is: Thanks ! |
|
Thanks, sounds good. I think this means we autogenerate the image names so this might not be super-high priority, but still would be good to fix. Thanks! |
|
@TARishabh I looked at this again and I think the issue, as written, needs more clarification. It looks like autogenerated filenames already follow the restrictions you laid out. Shouldn't the issue be to update the backend code that processes the creation of files on GCS? If so, could you please link to the relevant file in the issue description? If not, could you please clarify where the validation should happen (backend, frontend, connection to GCS, etc.)? Thanks! |
|
@seanlip , Sorry for the delay. To clarify, while the autogenerated filenames currently follow a basic pattern, the goal of this issue is to further restrict special characters (like <, >, &, etc.) to enhance security and compatibility, especially in cases where the filenames might be exposed to external systems or used in URLs. I agree that the validation needs to be enforced during the backend file creation process before files are uploaded to GCS. I believe it would be best to handle the sanitization there, as this would ensure consistency across all scenarios, whether the files are being accessed locally or remotely. I'll update the issue description to include this information and link the relevant backend file that processes file creation on GCS. Does this sound good? Thanks ! |
|
@TARishabh Yes, seems fine, thanks. If it's a simple fix, feel free to make it directly too. Thanks! |
Is your feature request related to a problem? Please describe.
Currently, the system autogenerates image filenames, but there is no enforced restriction on disallowing certain special characters such as <, >, &, and others that could lead to potential security or compatibility issues. Introduce security vulnerabilities like XSS or injection attacks if filenames are not sanitized properly.
Describe the solution (or solutions) you'd like
Restrict allowed characters in filenames, make sure autogenerated filenames are limited to the following characters:
Describe alternatives you've considered and rejected
No response
Additional context
invalid_file_names.mp4
The text was updated successfully, but these errors were encountered: