Levente Polyak pushed to branch main at Arch Linux / Packaging / Packages / pycharm-community-edition
Commits: 813397b9 by Levente Polyak at 2026-02-07T16:29:20+01:00 nvchecker: replace disallowed cmd source with regex Use regex as cmd sources are hard to control from a dependency point of view and allow for arbitrary code execution, which both are the reason we had limited it down in pkgctl. Fixes #21 - - - - - 1 changed file: - .nvchecker.toml Changes: ===================================== .nvchecker.toml ===================================== @@ -1,3 +1,4 @@ [pycharm-community-edition] -source = "cmd" -cmd = "curl -s --location --header \"Accept: application/rdf+xml\" https://www.jetbrains.com/updates/updates.xml | xmllint --xpath \"string(/products/product[@name='PyCharm']/channel[@status='release' or @status!='eap']/build/@version)\" -" +source = "regex" +url = "https://www.jetbrains.com/updates/updates.xml"; +regex = 'name="PyCharm RELEASE" .*status="release".*\n.*version="([^")]+)"' View it on GitLab: https://gitlab.archlinux.org/archlinux/packaging/packages/pycharm-community-edition/-/commit/813397b9e9ee33e229fdc56dbe875edd0b2db0c7 -- View it on GitLab: https://gitlab.archlinux.org/archlinux/packaging/packages/pycharm-community-edition/-/commit/813397b9e9ee33e229fdc56dbe875edd0b2db0c7 You're receiving this email because of your account on gitlab.archlinux.org.
