- Mar 14, 2024
-
-
Andre Klapper authored
-
- Jul 29, 2023
-
-
- Apr 17, 2023
-
-
- Mar 23, 2023
-
-
- Dec 09, 2022
-
-
- Oct 04, 2022
-
-
- Sep 27, 2022
-
-
- Sep 22, 2022
-
-
- Apr 23, 2022
-
-
- Mar 27, 2022
-
-
- Mar 15, 2022
-
-
Joaquim Rocha authored
The previous tag was not a mistake since it was pushed from a dev branch. The patch is the same that was then merged to master, but this release is for "cleaning" that mistake and use a tag pointing to the a commit in the main tree.
-
Joaquim Rocha authored
-
- Mar 14, 2022
-
-
Joaquim Rocha authored
Do not invoke commands through shell. Closes #82 See merge request !13
-
- Mar 13, 2022
-
-
RenWal authored
-
RenWal authored
Executing shell commands through mechanisms such as os.system() or subprocess.run(shell=True) with user-controllable input is prone to arbitrary shell command injection. In this particular case, a malicious actor controlling any input name, either in PDF or image form, can force ocrfeeder to execute shell commands embedded in the file name. While a workaround for #20, mentioning problems opening files with special characters, was introduced in 5286120c, this was not applied to every subprocess invocation. Furthermore, it is good practice to make use of the parameterization of arguments available in the subprocess package instead of relying on character escaping alone, avoiding shell invocation completely. This minimizes the attack surface.
-
- Feb 13, 2022
-
-
- Feb 07, 2022
-
-
- Jun 07, 2021
-
-
- May 11, 2021
-
-
Ask Hjorth Larsen authored
-
- Apr 13, 2021
-
-
Jordi Mas authored
-
- Mar 21, 2021
-
-
- Mar 17, 2021
-
-
- Feb 23, 2021
-
-
- Feb 01, 2021
-
-
Joaquim Rocha authored
Remove the usage of deprecated 'xml.etree.ElementTree.Element.getchildren' See merge request !10
-
- Jan 18, 2021
-
-
- Dec 25, 2020
-
-
- Nov 30, 2020
-
-
Roman Franchuk authored
It's not available anymore since Python 3.9.
-
- Nov 24, 2020
-
-
Joaquim Rocha authored
-
Joaquim Rocha authored
Set application avatar in Gitlab. See merge request !9
-
- Nov 14, 2020
-
-
Marek Černocký authored
-
- Sep 02, 2020
-
-
- Jul 27, 2020
-
-
Arnaud B. authored
-
- Jul 19, 2020
-
-
- May 24, 2020
-
-
Andre Klapper authored
-
- Apr 26, 2020
-
-
Joaquim Rocha authored
The ISO_CODES_PATH was hardcoded, and this means that the path may not be the correct one in some systems. Therefore, these changes allow to set an ISO_CODES_DIR as an environment variable or, in case it is not set, it looks for the "xml/iso-codes" path within the system's data dirs.
-
Joaquim Rocha authored
It was simply concatenating the paths, but we will soon be able to configure the ISO_CODES_PATH, so using os.path.join is safer.
-
- Apr 22, 2020
-
-
- Apr 12, 2020
-
-