Skip to content

Add CodeQL suppressions for EventLog, NativeCommandProcessor, TypeCatalogGen, Process methods #26467

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
anamnavi wants to merge 3 commits into
base: master
Choose a base branch
from
Draft

Add CodeQL suppressions for EventLog, NativeCommandProcessor, TypeCatalogGen, Process methods #26467

anamnavi wants to merge 3 commits into from

Conversation

@anamnavi
Copy link
Member

@anamnavi anamnavi commented Nov 17, 2025
edited
Loading

Add CodeQL suppression comments to clarify that certain potential security issues (such as command-line injection and weak cryptography) are expected behaviors in PowerShell, given its design and user trust model. These comments provide context for static analysis tools and future maintainers. No functional code changes are included. Also fixed typo and updated prior CodeQL suppressions.

These changes do not affect runtime behavior but improve code documentation and static analysis compliance.

PR Summary

PR Context

PR Checklist

Copilot AI review requested due to automatic review settings November 17, 2025 16:15
@anamnavi anamnavi changed the title add CodeQL suppressions Add CodeQL suppressions Nov 17, 2025
@anamnavi anamnavi changed the title Add CodeQL suppressions Add CodeQL suppressions for EventLog, NativeCommandProcessor, TypeCatalogGen, Process methods Nov 17, 2025
@anamnavi anamnavi added the CL-Tools Indicates that a PR should be marked as a tools change in the Change Log label Nov 17, 2025
Copilot AI reviewed Nov 17, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR adds CodeQL suppression comments to document expected security-related behaviors in PowerShell's codebase. The changes clarify that certain security warnings (command-line injection, SSRF, weak cryptography) are intentional design decisions based on PowerShell's trust model where users have full control and responsibility for the code they execute.

Key changes:

  • Corrects spelling of "Poweshell" to "PowerShell" in 7 existing CodeQL suppression comments
  • Adds 5 new CodeQL suppression comments for command-line injection warnings in process-related code
  • Adds 1 new CodeQL suppression comment for SHA-1 weak cryptography usage (backwards compatibility)

Reviewed Changes

Copilot reviewed 8 out of 8 changed files in this pull request and generated 1 comment.

Show a summary per file
File Description
TypeCatalogGen.cs Adds weak-crypto suppression for SHA-1 hash algorithm used for backwards compatibility
FileSystemProvider.cs Corrects "Poweshell" to "PowerShell" in command-line-injection-shell-execution suppression
UpdatableHelpSystem.cs Corrects "Poweshell" to "PowerShell" in two SSRF suppressions
RunspaceConnectionInfo.cs Corrects "Poweshell" to "PowerShell" in SSH process command-line-injection suppression
NativeCommandProcessor.cs Adds new command-line-injection suppression and corrects "Poweshell" to "PowerShell" in two existing suppressions
WebRequestPSCmdlet.Common.cs Corrects "Poweshell" to "PowerShell" in SSRF suppression
Process.cs Adds two new command-line-injection suppressions for working directory paths and corrects "Poweshell" to "PowerShell" in existing suppression
Eventlog.cs Adds new command-line-injection suppression for ComputerName parameter in event viewer launch

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@microsoft-github-policy-service microsoft-github-policy-service bot added the Review - Needed The PR is being reviewed label Nov 25, 2025
@microsoft-github-policy-service
Copy link
Contributor

microsoft-github-policy-service bot commented Nov 25, 2025

This pull request has been automatically marked as Review Needed because it has been there has not been any activity for 7 days.
Maintainer, please provide feedback and/or mark it as Waiting on Author

@anamnavi
Update src/TypeCatalogGen/TypeCatalogGen.cs
7357774 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@anamnavi anamnavi requested a review from Copilot December 1, 2025 16:50
Copilot AI reviewed Dec 1, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 8 out of 8 changed files in this pull request and generated 1 comment.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

src/System.Management.Automation/engine/remoting/common/RunspaceConnectionInfo.cs
// codeql[cs/microsoft/command-line-injection-shell-execution] - This is expected Poweshell behavior where user inputted paths are supported for the context of this method. The user assumes trust for the file path specified, so any file executed in the runspace would be in the user's local system/process or a system they have access to in which case restricted remoting security guidelines should be used.
ProcessStartInfo startInfo = new(filePath);
// codeql[cs/microsoft/command-line-injection-shell-execution] - This is expected PowerShell behavior where user inputted paths are supported for the context of this method. The user assumes trust for the file path specified, so any file executed in the runspace would be in the user's local system/process or a system they have access to in which case restricted remoting security guidelines should be used.
System.Diagnostics.ProcessStartInfo startInfo = new System.Diagnostics.ProcessStartInfo(filePath);
Copy link

Copilot AI Dec 1, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The change from ProcessStartInfo to System.Diagnostics.ProcessStartInfo is inconsistent with the existing code style in this file and adds unnecessary verbosity. The ProcessStartInfo type is already imported via using System.Diagnostics; at the top of the file, so the fully qualified name is redundant. This change should be reverted to maintain consistency with the rest of the codebase.

Suggested change
System.Diagnostics.ProcessStartInfo startInfo = new System.Diagnostics.ProcessStartInfo(filePath);
ProcessStartInfo startInfo = new ProcessStartInfo(filePath);

Copilot uses AI. Check for mistakes.
@anamnavi anamnavi marked this pull request as draft January 13, 2026 19:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@daxian-dbw daxian-dbw Awaiting requested review from daxian-dbw daxian-dbw is a code owner

@TravisEz13 TravisEz13 Awaiting requested review from TravisEz13 TravisEz13 is a code owner

@adityapatwardhan adityapatwardhan Awaiting requested review from adityapatwardhan adityapatwardhan is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

CL-Tools Indicates that a PR should be marked as a tools change in the Change Log Review - Needed The PR is being reviewed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@anamnavi