VYPR

crates.io package

theshit

pkg:cargo/theshit

Vulnerabilities (2)

  • CVE-2026-21882HigMar 2, 2026
    affected < 0.2.0fixed 0.2.0

    theshit is a command-line utility that automatically detects and fixes common mistakes in shell commands. Prior to version 0.2.0, improper privilege dropping allows local privilege escalation via command re-execution. This issue has been patched in version 0.2.0.

  • CVE-2025-69257MedDec 30, 2025
    affected < 0.1.1fixed 0.1.1

    theshit is a command-line utility that automatically detects and fixes common mistakes in shell commands. Prior to version 0.1.1, the application loads custom Python rules and configuration files from user-writable locations (e.g., `~/.config/theshit/`) without validating ownersh