CalvinBackup/gstack
1
0
Fork 0
mirror of https://github.com/garrytan/gstack.git synced 2026-05-02 11:45:20 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
daf13d822c520ade44863e50c9468d5774dedcd0
gstack/browse
T
History
Garry Tan daf13d822c feat(security): pin JS/eval execution to cookie-imported origins 
When cookies have been imported for specific domains, block JS execution
on pages whose origin doesn't match. Prevents the attack chain:
1. Agent imports cookies for github.com
2. Prompt injection navigates to attacker.com
3. Agent runs js document.cookie → exfiltrates github cookies

assertJsOriginAllowed() checks the current page hostname against imported
cookie domains with subdomain matching (.github.com allows api.github.com).
When no cookies are imported, all origins allowed (nothing to protect).
about:blank and data: URIs are allowed (no cookies at risk).

Depends on #615 (cookie domain tracking).

Closes #616

Co-Authored-By: Alberto Martinez <halbert04@users.noreply.github.com>
2026-04-13 09:39:36 -07:00
..
bin
feat: multi-agent support — gstack works on Codex, Gemini CLI, and Cursor (v0.9.0) (#226)
2026-03-19 18:20:50 -07:00
scripts
fix: Windows support — Node.js server fallback for Playwright (#255)
2026-03-20 12:22:11 -07:00
src
feat(security): pin JS/eval execution to cookie-imported origins
2026-04-13 09:39:36 -07:00
test
fix(security): cookie-import path validation bypass + hardcoded /tmp
2026-04-13 09:33:48 -07:00
PLAN-snapshot-dropdown-interactive.md
fix: snapshot -i auto-detects dropdown/popover interactive elements (#845)
2026-04-05 22:57:45 -07:00
SKILL.md
feat: browser data platform for AI agents (v0.16.0.0) (#907)
2026-04-08 00:41:55 -07:00
SKILL.md.tmpl
feat: sidebar CSS inspector + per-tab agents (v0.13.9.0) (#650)
2026-03-30 12:51:05 -06:00