Closed Squiblydoo closed 6 months ago
Considerations:
TO DO:
[x] Test to better understand how karton handles multiple file output, if at all.
[x] Test to better understand how assembly-line handles multiple file output, if at all.
[ ] Consider logic for Debloat to determine the most likely malicious file and return that file if only one file is acceptable for other systems.
Closing issue. Both handle multifile output. Karton was updated to 1.5.3.2 in September 2023. Assembly-line was pretty much up-to-date at the time of my previous writing.
With 1.5.0 the ability to extract NSIS Installer contents the Debloat execution flow does not follow the normal execution path when a NSIS execution is detected. The plan is to solve this in a coming version (SOON).
Diverting from the normal execution path originally was intentional for the following reasons:
Because of these reasons, Debloat has unique output and writes the files at a unique place. The plan is to explore options to help maintain the expected return path for consistency and to maintain compatibility with tools like karton and assembly-line.
(I am writing about it here so that others are aware it is a problem, that is is a problem that I am aware of, and that it is a problem that I plan to solve.)