cp.nvim

barrett/cp.nvim

Fork 0

History

Barrett Ruth b53c8ca44e Some checks are pending luarocks / ci (push) Waiting to run Details luarocks / publish (push) Blocked by required conditions Details fix(security): harden credential storage and transmission (#369 ) ## Problem Credential and cookie files were world-readable (0644), passwords transited via `CP_CREDENTIALS` env var (visible in `/proc/PID/environ`), and Kattis/USACO echoed passwords back through stdout unnecessarily. ## Solution Set 0600 permissions on `cp-nvim.json` and `cookies.json` after every write, pass credentials via stdin pipe instead of env var, and stop emitting passwords in ndjson from Kattis/USACO `LoginResult` (CSES token emission unchanged).	2026-03-07 18:14:34 -05:00
..
cp	fix(security): harden credential storage and transmission (#369 )	2026-03-07 18:14:34 -05:00

Barrett Ruth b53c8ca44e

luarocks / ci (push) Waiting to run

Details

luarocks / publish (push) Blocked by required conditions

Details

fix(security): harden credential storage and transmission (#369 )

## Problem

Credential and cookie files were world-readable (0644), passwords
transited via `CP_CREDENTIALS` env var (visible in `/proc/PID/environ`),
and Kattis/USACO echoed passwords back through stdout unnecessarily.

## Solution

Set 0600 permissions on `cp-nvim.json` and `cookies.json` after every
write, pass credentials via stdin pipe instead of env var, and stop
emitting passwords in ndjson from Kattis/USACO `LoginResult` (CSES token
emission unchanged).

2026-03-07 18:14:34 -05:00

fix(security): harden credential storage and transmission (#369 )

2026-03-07 18:14:34 -05:00