mirror of
https://github.com/ohmyzsh/ohmyzsh.git
synced 2026-05-29 04:53:17 +02:00
c90141ed77
This patch adds missing % character escaping for custom git prompts used in a few themes. It also includes escaping for git-prompt.sh. In combination with CVE-2021-45444, this could allow code execution when displaying branch information in cloned malicious git repositories. However, zsh 5.8.1 and newer are largely the default zsh versions, and on those supported distributions with older zsh versions, the CVE has been found to be also patched. For this reason, this doesn't qualify as a security patch, but a bug fix for proper printing of git branches.
36 lines
1.9 KiB
Bash
36 lines
1.9 KiB
Bash
# user, host, full path, and time/date on two lines for easier vgrepping
|
|
|
|
function hg_prompt_info {
|
|
if (( $+commands[hg] )) && [[ -e ~/.hgrc ]] && grep -q "prompt" ~/.hgrc; then
|
|
hg prompt --angle-brackets "\
|
|
<hg:%{$fg[magenta]%}<branch>%{$reset_color%}><:%{$fg[magenta]%}<bookmark>%{$reset_color%}>\
|
|
</%{$fg[yellow]%}<tags|%{$reset_color%}, %{$fg[yellow]%}>%{$reset_color%}>\
|
|
%{$fg[red]%}<status|modified|unknown><update>%{$reset_color%}<
|
|
patches: <patches|join( → )|pre_applied(%{$fg[yellow]%})|post_applied(%{$reset_color%})|pre_unapplied(%{$fg_bold[black]%})|post_unapplied(%{$reset_color%})>>" 2>/dev/null
|
|
fi
|
|
}
|
|
|
|
ZSH_THEME_GIT_PROMPT_ADDED="%{$fg[cyan]%}+"
|
|
ZSH_THEME_GIT_PROMPT_MODIFIED="%{$fg[yellow]%}✱"
|
|
ZSH_THEME_GIT_PROMPT_DELETED="%{$fg[red]%}✗"
|
|
ZSH_THEME_GIT_PROMPT_RENAMED="%{$fg[blue]%}➦"
|
|
ZSH_THEME_GIT_PROMPT_UNMERGED="%{$fg[magenta]%}✂"
|
|
ZSH_THEME_GIT_PROMPT_UNTRACKED="%{$fg[blue]%}✈"
|
|
ZSH_THEME_GIT_PROMPT_SHA_BEFORE=" %{$fg[blue]%}"
|
|
ZSH_THEME_GIT_PROMPT_SHA_AFTER="%{$reset_color%}"
|
|
|
|
function mygit() {
|
|
if [[ "$(git config --get oh-my-zsh.hide-status)" != "1" ]]; then
|
|
ref=$(command git symbolic-ref HEAD 2> /dev/null) || \
|
|
ref=$(command git rev-parse --short HEAD 2> /dev/null) || return
|
|
ref=${${ref#refs/heads/}//\%/%%}
|
|
echo "${ZSH_THEME_GIT_PROMPT_PREFIX}${ref}$(git_prompt_short_sha)$(git_prompt_status)%{$fg_bold[blue]%}${ZSH_THEME_GIT_PROMPT_SUFFIX} "
|
|
fi
|
|
}
|
|
|
|
function retcode() {}
|
|
|
|
# alternate prompt with git & hg
|
|
PROMPT=$'%{$fg_bold[blue]%}┌─[%{$fg_bold[green]%}%n%b%{$fg[black]%}@%{$fg[cyan]%}%m%{$fg_bold[blue]%}]%{$reset_color%} - %{$fg_bold[blue]%}[%{$fg_bold[default]%}%~%{$fg_bold[blue]%}]%{$reset_color%} - %{$fg_bold[blue]%}[%b%{$fg[yellow]%}'%D{"%Y-%m-%d %I:%M:%S"}%b$'%{$fg_bold[blue]%}]
|
|
%{$fg_bold[blue]%}└─[%{$fg_bold[magenta]%}%?$(retcode)%{$fg_bold[blue]%}] <$(mygit)$(hg_prompt_info)>%{$reset_color%} '
|
|
PS2=$' \e[0;34m%}%B>%{\e[0m%}%b '
|