shoko/jujutsu-skills
1
0
Fork 0
Code Issues 2 Pull Requests Actions Packages Projects Releases Wiki Activity

[SECURITY] CRITICAL: Telegram bot token visible in process command line #4

New Issue
Closed
opened 2026-03-25 10:37:24 +01:00 by shoko · 0 comments
shoko commented 2026-03-25 10:37:24 +01:00
Owner
Copy Link

Severity: CRITICAL

Users should stop using the --telegram flag on shared systems until this is fixed.

Description

The Telegram bot token is passed as a subprocess argument to curl, making it visible in the process command line via ps aux or /proc/*/cmdline. Any user on a shared system can view all running processes command lines.

Location

scripts/browse.py lines 598-606 (send_to_telegram())

Proof of Concept

ps aux | grep curl
# Output:
# curl -s https://api.telegram.org/bot123456789:TOKEN/sendMessage -d chat_id=... -d text=...

Impact

  • Any local user can steal the bot token
  • Attacker can send arbitrary messages from the bot
  • Use the bot for spam, phishing, or social engineering

Recommended Fix

Use Python requests library instead of curl subprocess:

import requests

def send_to_telegram(...):
    bot_token = os.environ.get("BOT_TOKEN")
    chat_id = os.environ.get("CHAT_ID")
    url = f"https://api.telegram.org/bot{bot_token}/sendMessage"
    payload = {"chat_id": chat_id, "text": text, "parse_mode": "HTML"}
    resp = requests.post(url, data=payload, timeout=10)

Immediate Action

  1. Rotate your bot token via @BotFather /revoke
  2. Do not use --telegram on shared systems

Reference

See reviews/2026-03-25.md Section 6.2

## Severity: CRITICAL **Users should stop using the `--telegram` flag on shared systems until this is fixed.** ## Description The Telegram bot token is passed as a subprocess argument to `curl`, making it visible in the process command line via `ps aux` or `/proc/*/cmdline`. Any user on a shared system can view all running processes command lines. ## Location `scripts/browse.py` lines 598-606 (`send_to_telegram()`) ## Proof of Concept ```bash ps aux | grep curl # Output: # curl -s https://api.telegram.org/bot123456789:TOKEN/sendMessage -d chat_id=... -d text=... ``` ## Impact - Any local user can steal the bot token - Attacker can send arbitrary messages from the bot - Use the bot for spam, phishing, or social engineering ## Recommended Fix Use Python `requests` library instead of curl subprocess: ```python import requests def send_to_telegram(...): bot_token = os.environ.get("BOT_TOKEN") chat_id = os.environ.get("CHAT_ID") url = f"https://api.telegram.org/bot{bot_token}/sendMessage" payload = {"chat_id": chat_id, "text": text, "parse_mode": "HTML"} resp = requests.post(url, data=payload, timeout=10) ``` ## Immediate Action 1. Rotate your bot token via @BotFather `/revoke` 2. Do not use `--telegram` on shared systems ## Reference See `reviews/2026-03-25.md` Section 6.2
shoko added the security label 2026-03-25 10:37:45 +01:00
shoko added the critical label 2026-03-25 10:40:33 +01:00
shoko closed this issue 2026-03-25 11:46:19 +01:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
approved
bug
Bug fix
 critical
Critical severity - stop using until fixed
 enhancement
Enhancement or feature
 high
High severity - fix ASAP
 in review
low
Low severity
 medium
Medium severity
 need adjustment
need clarification
need review
security
Security-related issues
No Label critical security
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
han shoko
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: shoko/jujutsu-skills#4
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?