torrentclaw/torrentclaw-skill
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
6 commits 1 branch 6 tags 80 KiB
Commit graph

4 commits

Author SHA1 Message Date
Deivid Soto
d3d6c702ed fix(security): eliminate shell injection and add input validation 
Replace unsafe string interpolation in aria2 RPC JSON construction
with jq --arg for proper escaping. Add magnet URL format validation
to reject arbitrary input. Refactor detect-client.sh JSON output
to use jq. Add CI security check to prevent regression.

Resolves VirusTotal "Suspicious" classification caused by the
shell injection vulnerability in add-torrent.sh.
 2026-02-15 10:47:10 +01:00
Deivid Soto
5d409c4a66 docs(SKILL.md): clarify API key is optional and use env var consistently 2026-02-14 10:02:54 +01:00
Deivid Soto
1363ebaf76 docs: align API docs with OpenAPI spec and improve ClawHub discoverability 2026-02-13 20:37:32 +01:00
Deivid Soto
98c550feb0 feat: initial open-source project structure 
Agent Skill for searching and downloading torrents via TorrentClaw.
Includes SKILL.md with OpenClaw metadata, bash scripts for torrent
client detection, CONTRIBUTING.md, CHANGELOG.md, CI/CD with GitHub
Actions (shellcheck + conventional commits), lefthook git hooks,
Makefile, and .editorconfig.
 2026-02-13 18:40:53 +01:00