oybekrustamov
commented
1 year ago Hi. I think using an isolated environment for the Codex API will solve this problem. For example Docker.
Open vickyguptaa7 opened 1 year ago
oybekrustamov
commented
1 year ago Hi. I think using an isolated environment for the Codex API will solve this problem. For example Docker.
vickyguptaa7
commented
1 year ago Running the Node.js process in non-root mode is also a viable solution. I have raised a pull request to implement this change.
oybekrustamov
commented
1 year ago @vickyguptaa7 Can you add a memory limit or Used memory in output?
vickyguptaa7
commented
1 year ago Yeah it can be done by using pidusage npm package.
I have identified a security vulnerability in the CodeX-API repository. The vulnerability allows an attacker to inject malicious code into the server, which can potentially harm the server and allow unauthorized access to sensitive information. Specifically, an attacker is able to delete files on the server using javascript or other programming language.
This security vulnerability poses a significant threat to the project's integrity and the security of the data stored in the server.