airship/pegleg
Code Issues Proposed changes
31e5b898a2
pegleg/tests
History
HUGHES, ALEXANDER (ah8742) a8620cfd8d Implement default umask for 640 file permissions 
Some secrets are being created with undesirable permissions. Upon
inspection it was noticed that in general Pegleg is creating files,
then changing permissions after the fact. This leads to a small
window where the permissions on a file are overly permissive.

This patchset:
1. Sets default umask of 0o027 (640 permissions for files)
2. Explicitly adds the open flag ('r', 'w' etc.) to all open() calls.
3. Replaces sys.stdout.write calls with click.echo() calls to be more
   in line with the rest of the project.
4. Re-orders methods that write so that data is always first, and the
   path is always second.
5. Updates unit tests.
6. Adds unit tests for testing directory and file permissions.
7. Minor style changes.

Change-Id: I0c154aa311ea371940fd24b0aabf58fffaf1d231
2019-06-29 17:56:55 +00:00
..
unit Implement default umask for 640 file permissions 2019-06-29 17:56:55 +00:00
__init__.py Standardize Pegleg directory structure 2018-09-23 10:33:40 -04:00