A library to safely handle filesystem paths, typically for container runtimes.
There are often path related attacks, such as symlink based attacks, TOCTTOU attacks. The safe-path
crate
provides several functions and utility structures to protect against path resolution related attacks.
Operating Systems:
- Linux
filepath-securejoin
: secure_join() written in Go.- CVE-2021-30465: symlink related TOCTOU flaw in
runC
.
This code is licensed under Apache-2.0.