bivashy/Blitz-Proxy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(password_generation): replace pwgen with secrets module for secure password generation

Browse Source
This commit is contained in:
ReturnFI
2025-12-12 09:16:26 +00:00
parent 826a9bc137
commit a597b7bf5f
1 changed files with 7 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
core/cli_api.py
View File

@ -6,6 +6,8 @@ import json
from typing import Any, Optional from typing import Any, Optional
from dotenv import dotenv_values from dotenv import dotenv_values
import re import re
import secrets
import string
import traffic import traffic
@ -121,16 +123,13 @@ def run_cmd(command: list[str]) -> str:
def generate_password() -> str: def generate_password() -> str:
''' '''
Generates a random password using pwgen for user. Generates a secure, random alphanumeric password.
Could raise subprocess.CalledProcessError
''' '''
try: try:
return subprocess.check_output(['pwgen', '-s', '32', '1'], shell=False).decode().strip() alphabet = string.ascii_letters + string.digits
except (subprocess.CalledProcessError, FileNotFoundError): return ''.join(secrets.choice(alphabet) for _ in range(32))
try:
return subprocess.check_output(['cat', '/proc/sys/kernel/random/uuid'], shell=False).decode().strip()
except Exception as e: except Exception as e:
raise PasswordGenerationError(f"Failed to generate password: {e}") raise PasswordGenerationError(f"Failed to generate password using secrets module: {e}")
# endregion # endregion