validateRuleID validates a compliance rule ID to prevent command injection
(ruleID string)
| 1208 | |
| 1209 | // validateRuleID validates a compliance rule ID to prevent command injection |
| 1210 | func validateRuleID(ruleID string) error { |
| 1211 | if ruleID == "" { |
| 1212 | return fmt.Errorf("rule ID is required") |
| 1213 | } |
| 1214 | if len(ruleID) > 256 { |
| 1215 | return fmt.Errorf("rule ID too long (max 256 chars)") |
| 1216 | } |
| 1217 | if !validRuleIDPattern.MatchString(ruleID) { |
| 1218 | return fmt.Errorf("invalid rule ID: contains disallowed characters") |
| 1219 | } |
| 1220 | return nil |
| 1221 | } |
| 1222 | |
| 1223 | // validateDockerImageName validates a Docker image name to prevent command injection |
| 1224 | func validateDockerImageName(imageName string) error { |