fix: Address high-severity bandit issues

2025-12-11 07:13:06 -03:00
parent bcb4475744
commit 5b2a328dd1
167 changed files with 7051 additions and 7168 deletions
--- a/dss-claude-plugin/hooks/scripts/session-summary.js
+++ b/dss-claude-plugin/hooks/scripts/session-summary.js
@@ -40,17 +40,17 @@ function getGitInfo() {
    diff: '',
    modifiedFiles: []
  };
-  
+
  try {
    // Check if in git repo
    execSync('git rev-parse --is-inside-work-tree', { stdio: 'pipe' });
-    
+
    // Get branch
    info.branch = execSync('git branch --show-current', { encoding: 'utf8' }).trim();
-    
+
    // Get status
    info.status = execSync('git status --short', { encoding: 'utf8' }).trim();
-    
+
    // Get modified files
    const statusLines = info.status.split('\n').filter(Boolean);
    info.modifiedFiles = statusLines.map(line => {
@@ -60,7 +60,7 @@ function getGitInfo() {
        file: parts.slice(1).join(' ')
      };
    });
-    
+
    // Get diff summary
    try {
      info.diff = execSync('git diff --stat', { encoding: 'utf8' }).trim();
@@ -70,7 +70,7 @@ function getGitInfo() {
  } catch (e) {
    // Not a git repo or git not available
  }
-  
+
  return info;
 }

@@ -82,12 +82,12 @@ function getSessionStats() {
    linesAdded: 0,
    linesRemoved: 0
  };
-  
+
  try {
    // Get diff stats from git
    const diffStat = execSync('git diff --numstat', { encoding: 'utf8' });
    const lines = diffStat.trim().split('\n').filter(Boolean);
-    
+
    for (const line of lines) {
      const [added, removed] = line.split('\t');
      stats.linesAdded += parseInt(added) || 0;
@@ -97,7 +97,7 @@ function getSessionStats() {
  } catch (e) {
    // Git not available
  }
-  
+
  return stats;
 }

@@ -105,29 +105,29 @@ function generateReport(config) {
  const summaryConfig = config.session_summary || {};
  const gitInfo = getGitInfo();
  const stats = getSessionStats();
-  
+
  const timestamp = new Date().toLocaleString();
  const lines = [];
-  
+
  lines.push('# DSS Session Summary');
  lines.push(`\n**Generated:** ${timestamp}`);
-  
+
  if (gitInfo.branch) {
    lines.push(`**Branch:** ${gitInfo.branch}`);
  }
-  
+
  lines.push('\n## Changes Overview');
  lines.push('');
  lines.push(`- Files modified: ${stats.filesModified}`);
  lines.push(`- Lines added: +${stats.linesAdded}`);
  lines.push(`- Lines removed: -${stats.linesRemoved}`);
-  
+
  if (summaryConfig.include_file_list && gitInfo.modifiedFiles.length > 0) {
    lines.push('\n## Modified Files');
    lines.push('');
    lines.push('| Status | File |');
    lines.push('|--------|------|');
-    
+
    const statusLabels = {
      'M': 'Modified',
      'A': 'Added',
@@ -135,17 +135,17 @@ function generateReport(config) {
      'R': 'Renamed',
      '??': 'Untracked'
    };
-    
+
    for (const file of gitInfo.modifiedFiles.slice(0, 20)) {
      const label = statusLabels[file.status] || file.status;
      lines.push(`| ${label} | ${file.file} |`);
    }
-    
+
    if (gitInfo.modifiedFiles.length > 20) {
      lines.push(`| ... | +${gitInfo.modifiedFiles.length - 20} more files |`);
    }
  }
-  
+
  if (summaryConfig.include_git_diff && gitInfo.diff) {
    lines.push('\n## Diff Summary');
    lines.push('');
@@ -158,27 +158,27 @@ function generateReport(config) {
    }
    lines.push('```');
  }
-  
+
  lines.push('\n---');
  lines.push('*Generated by DSS Session Summary Hook*');
-  
+
  return lines.join('\n');
 }

 function main() {
  const config = loadConfig();
-  
+
  if (!config.session_summary?.enabled) {
    process.exit(0);
  }
-  
+
  try {
    const report = generateReport(config);
    const outputFile = config.session_summary.output_file || '.dss-session-summary.md';
    const outputPath = path.join(process.cwd(), outputFile);
-    
+
    fs.writeFileSync(outputPath, report, 'utf8');
-    
+
    // Output confirmation
    console.log(JSON.stringify({
      systemMessage: `Session summary saved to ${outputFile}`,
@@ -187,7 +187,7 @@ function main() {
  } catch (e) {
    // Fail silently
  }
-  
+
  process.exit(0);
 }