Draft: fix: remediate OS Command Injection vulnerability (!34) · Merge requests · gl-demo-ultimate-fsieverding / DevSecOps-Demo / DevSecOps with GitLab · GitLab

Relates to issue #33

This MR was created by Duo in Session 1156795

Changes

Remove vulnerable shell=True parameter from subprocess calls
Replace string-based command construction with secure argument list approach
Implement proper input sanitization for admin login functionality
Maintain existing functionality while eliminating CWE-78 vulnerability
Ensure all tests continue to pass with secure implementation