Bash Bypass Wave (8 fixes)

• Entity ID: ent-20260419-87c9d2b971e6
• Type: issue
• Scope: shared
• Status: active
• Aliases: bash bypass patches, 8 bash bypasses

Description

Eight Bash permission bypasses patched across v2.1.97-98. All were readable in the leaked source map (permission validator logic) and became public attacker knowledge. Patterns: backslash escape (rm -rf /), compound command (safe && dangerous), plus pipelines, command substitution, redirects, and env-var injection.

Key claims

• Bash bypasses were discoverable from leaked permission-validator source

Relations

• April 1-12 Release Sprint --[contains]--> Bash Bypass Wave (8 fixes)
• Bash Bypass Wave (8 fixes) --[derived_from]--> Source Map Leak (March 31, 2026)
• Bash Bypass Wave (8 fixes) --[fixed]--> Bash Security Pipeline
• Bash Security Pipeline --[implements]--> Bash Bypass Wave (8 fixes)

Sources

src-20260419-3e34d5830692