Home-Assistant/supervisor
1
0
Fork 0
mirror of https://github.com/home-assistant/supervisor.git synced 2026-04-02 00:07:16 +01:00
Code Activity
5,476 Commits 42 Branches 512 Tags
6070d548609bf9ebe946ec695f4824b32ee55eec
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Stefan Agner 6070d54860 Harden backup tar extraction with Python tar_filter (#6559) 
* Harden backup tar extraction with Python data filter

Replace filter="fully_trusted" with a custom backup_data_filter that
wraps tarfile.data_filter. This adds protection against symlink attacks
(absolute targets, destination escapes), device node injection, and
path traversal, while resetting uid/gid and sanitizing permissions.

Unlike using data_filter directly, the custom filter skips problematic
entries with a warning instead of aborting the entire extraction. This
ensures existing backups containing absolute symlinks (e.g. in shared
folders) still restore successfully with the dangerous entries omitted.

Also removes the now-redundant secure_path member filtering, as
data_filter is a strict superset of its protections. Fixes a standalone
bug in _folder_restore which had no member filtering at all.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* Simplify security tests to test backup_data_filter directly

Test the public backup_data_filter function with plain tarfile
extraction instead of going through Backup internals. Removes
protected-access pylint warnings and unnecessary coresys setup.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* Switch to tar filter instead of custom data filter wrapper

Replace backup_data_filter (which wrapped data_filter and skipped
problematic entries) with the built-in tar filter. The tar filter
rejects path traversal and absolute names while preserving uid/gid
and file permissions, which is important for add-ons running as
non-root users.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* Apply suggestions from code review

Co-authored-by: Erik Montnemery <erik@montnemery.com>

* Use BackupInvalidError instead of BackupError for tarfile.TarError

Make sure FilterErrors lead to BackupInvalidError instead of BackupError,
as they are not related to the backup process itself but rather to the
integrity of the backup data.

* Improve test coverage and use pytest.raises

* Only make FilterError a BackupInvalidError

* Add test case for FilterError during Home Assistant Core restore

* Add test cases for Add-ons

* Fix pylint warnings

---------

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
Co-authored-by: Erik Montnemery <erik@montnemery.com>
2026-02-23 10:09:19 +01:00
.devcontainer
Update Python to 3.13 (#5564)
2025-01-21 11:57:30 +01:00
.github
Extend and improve release drafter config (#6576)
2026-02-17 19:32:25 +01:00
.vscode
Migrate to Ruff for lint and format (#4852)
2024-02-05 11:37:39 -05:00
rootfs/etc
Avoid empty newlines in Supervisor logs (#4698)
2023-11-13 20:12:17 +01:00
script
Add mypy to ci and precommit (#5969)
2025-06-24 11:48:03 +02:00
supervisor
Harden backup tar extraction with Python tar_filter (#6559)
2026-02-23 10:09:19 +01:00
tests
Harden backup tar extraction with Python tar_filter (#6559)
2026-02-23 10:09:19 +01:00
wheels
Use unpublished local wheels during PR builds (#6374)
2025-12-02 14:08:07 +01:00
.dockerignore
Use unpublished local wheels during PR builds (#6374)
2025-12-02 14:08:07 +01:00
.gitignore
Use unpublished local wheels during PR builds (#6374)
2025-12-02 14:08:07 +01:00
.hadolint.yaml
Revert "Revert "Update base images to 3.11-alpine3.18 (#4639)" (#4646)" (#4657)
2023-11-02 11:29:15 +01:00
.pre-commit-config.yaml
Bump ruff from 0.14.2 to 0.14.3 (#6280)
2025-10-31 11:42:39 -04:00
.vcnignore
AGENTS.md
Add AGENTS.md symlink (#6237)
2025-10-08 10:44:49 +02:00
build.yaml
Remove cosign from container (#6442)
2025-12-20 08:56:36 -05:00
CLAUDE.md
Add GitHub Copilot/Claude instruction (#5986)
2025-07-04 07:05:05 +02:00
codecov.yaml
Remove annotations (#2007)
2020-09-03 16:36:09 +02:00
Dockerfile
Remove cosign from container (#6442)
2025-12-20 08:56:36 -05:00
LICENSE
MANIFEST.in
pyproject.toml
Reformat pyproject.toml using taplo (#6550)
2026-02-11 09:56:00 +01:00
README.md
Add OHF logo to README (#5316)
2024-09-30 18:42:08 +02:00
requirements_tests.txt
Bump ruff from 0.15.1 to 0.15.2 (#6583)
2026-02-20 10:12:25 +01:00
requirements.txt
Finish dockerpy to aiodocker migration (#6578)
2026-02-18 08:49:15 +01:00
setup.py
Use version which is treated CalVer by AwesomeVersion (#5572)
2025-01-24 09:59:50 +01:00
tox.ini
Migrate to Ruff for lint and format (#4852)
2024-02-05 11:37:39 -05:00

README.md

Home Assistant Supervisor

First private cloud solution for home automation

Home Assistant (former Hass.io) is a container-based system for managing your Home Assistant Core installation and related applications. The system is controlled via Home Assistant which communicates with the Supervisor. The Supervisor provides an API to manage the installation. This includes changing network settings or installing and updating software.

Installation

Installation instructions can be found at https://home-assistant.io/getting-started.

Development

For small changes and bugfixes you can just follow this, but for significant changes open a RFC first. Development instructions can be found here.

Release

Releases are done in 3 stages (channels) with this structure:

  1. Pull requests are merged to the main branch.
  2. A new build is pushed to the dev stage.
  3. Releases are published.
  4. A new build is pushed to the beta stage.
  5. The stable.json file is updated.
  6. The build that was pushed to beta will now be pushed to stable.

Home Assistant - A project from the Open Home Foundation

View Git Blame Copy Permalink
Description
Home Assistant Supervisor
dockerhacktoberfesthome-assistanthome-automationorchestratorpython
Readme Apache-2.0 626 MiB
Languages
Python 95.5%
JavaScript 4.4%