abbyswag/qwen-code
1
0
Fork 0
mirror of https://github.com/QwenLM/qwen-code.git synced 2025-12-19 09:33:53 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(core): restrict oauth_creds.json file permissions (#5245)

Browse Source 
Co-authored-by: cornmander <shikhman@google.com>
This commit is contained in:
Brian de Alwis
2025-08-08 23:05:30 -04:00
committed by GitHub
parent c184ec3224
commit 191cc01bf5
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
packages/core/src/code_assist/oauth2.ts
View File

@@ -366,7 +366,7 @@ async function cacheCredentials(credentials: Credentials) {
await fs.mkdir(path.dirname(filePath), { recursive: true });
const credString = JSON.stringify(credentials, null, 2);
await fs.writeFile(filePath, credString);
await fs.writeFile(filePath, credString, { mode: 0o600 });
}
function getCachedCredentialPath(): string {