Spaces:

Genius-Society
/

online_tools

Building

App Files Files

admin commited on Jun 6

Commit

c71b819

1 Parent(s): eef51fd

sync ms

Browse files

Files changed (3) hide show

app.py +4 -4
modules/cmd.py +88 -0
modules/github.py +0 -96

app.py CHANGED Viewed

@@ -2,7 +2,7 @@ import gradio as gr
 from modules.data import data_converter
 from modules.exif import clexif
 from modules.gif import video2gif
-from modules.github import github_release_creator
 from modules.qr import qrcode
 from modules.rct import rct_generator
 from modules.smtp import smtp_tester
@@ -16,7 +16,7 @@ ZH2EN = {
     "数据文件转换": "Data Converter",
     "图片 EXIF 清理": "Image EXIF Cleaner",
     "视频转 GIF 动图": "Video to GIF",
-    "GitHub 发布工具": "GitHub Releaser",
     "二维码生成": "QR Code",
     "随机对照试验生成": "RCT Generator",
     "SMTP 测试": "SMTP Test",
@@ -42,8 +42,8 @@ if __name__ == "__main__":
         with gr.Tab(_L("视频转 GIF 动图")):
             video2gif()
-        with gr.Tab(_L("GitHub 发布工具")):
-            github_release_creator()
         with gr.Tab(_L("二维码生成")):
             qrcode()

 from modules.data import data_converter
 from modules.exif import clexif
 from modules.gif import video2gif
+from modules.cmd import cmd_inject
 from modules.qr import qrcode
 from modules.rct import rct_generator
 from modules.smtp import smtp_tester
     "数据文件转换": "Data Converter",
     "图片 EXIF 清理": "Image EXIF Cleaner",
     "视频转 GIF 动图": "Video to GIF",
+    "命令注入测试": "CMD Injector",
     "二维码生成": "QR Code",
     "随机对照试验生成": "RCT Generator",
     "SMTP 测试": "SMTP Test",
         with gr.Tab(_L("视频转 GIF 动图")):
             video2gif()
+        with gr.Tab(_L("命令注入测试")):
+            cmd_inject()
         with gr.Tab(_L("二维码生成")):
             qrcode()

modules/cmd.py ADDED Viewed

	@@ -0,0 +1,88 @@

+import os
+import time
+import threading
+import subprocess
+import gradio as gr
+EN_US = os.getenv("LANG") != "zh_CN.UTF-8"
+ZH2EN = {
+    "输入命令": "Input command",
+    "状态栏": "Status",
+    "执行结果": "Command output",
+    "命令执行测试工具": "Command executor",
+    "输入一个命令, 点击查看其执行结果": "Enter a command, and click to see its result",
+    "执行超时时间": "Execution timeout",
+}
+def _L(zh_txt: str):
+    return ZH2EN[zh_txt] if EN_US else zh_txt
+class Inject:
+    def __init__(self):
+        self.output = ""
+        self.status = "Success"
+        self.thread: threading.Thread = None
+        self.timeout = 10
+        self.delay = 0.1
+    def run(self, cmd: str):
+        try:
+            self.output = subprocess.check_output(
+                cmd,
+                shell=True,
+                stderr=subprocess.STDOUT,
+                text=True,
+            )
+        except Exception as e:
+            self.status = f" {e} "
+            self.output = ""
+    def infer(self, cmd: str):
+        self.status = "Success"
+        self.output = ""
+        try:
+            if self.thread and self.thread.is_alive():
+                self.thread.join(timeout=0)
+            self.thread = threading.Thread(
+                target=self.run,
+                args=(cmd,),
+                daemon=True,
+            )
+            self.thread.start()
+            delay = 0
+            while self.thread and self.thread.is_alive():
+                delay += self.delay
+                time.sleep(self.delay)
+                if delay > self.timeout:
+                    self.thread.join(timeout=0)
+                    self.status = "Killed"
+                    self.output = _L("执行超时时间") + f": {self.timeout}s"
+                    break
+        except Exception as e:
+            self.status = f" {e} "
+            self.output = ""
+        return self.status, self.output
+def cmd_inject():
+    inject = Inject()
+    return gr.Interface(
+        fn=inject.infer,
+        inputs=gr.Textbox(
+            label=_L("输入命令"),
+            value="dir" if os.name == "nt" else "ls /",
+        ),
+        outputs=[
+            gr.Textbox(label=_L("状态栏"), show_copy_button=True),
+            gr.TextArea(label=_L("执行结果"), show_copy_button=True),
+        ],
+        title=_L("命令执行测试工具"),
+        description=_L("输入一个命令, 点击查看其执行结果"),
+        flagging_mode="never",
+    )

modules/github.py DELETED Viewed

@@ -1,96 +0,0 @@
-import os
-import requests
-import gradio as gr
-from utils import EN_US
-ZH2EN = {
-    "仓库拥有者": "Repo owner",
-    "输入用户名或组织名": "Username / organization name",
-    "仓库名": "GitHub repo",
-    "输入仓库名": "Repo name",
-    "输入 personal access token": "Personal access token",
-    "发布标签": "Release tag",
-    "发布标题": "Release title",
-    "发布描述": "Describe this release",
-    "上传发布文件(可多选)": "Binary file(s)",
-    "状态栏": "Status",
-    "上传文件创建一个新的 GitHub 发布": "Upload binary file(s) to create a new GitHub release.",
-}
-def _L(zh_txt: str):
-    return ZH2EN[zh_txt] if EN_US else zh_txt
-def create_github_release(owner, repo, token, tag, name, description, files):
-    try:
-        # 创建 Release
-        response = requests.post(
-            f"https://api.github.com/repos/{owner}/{repo}/releases",
-            headers={
-                "Authorization": f"token {token}",
-                "Accept": "application/vnd.github.v3+json",
-            },
-            json={
-                "tag_name": tag,
-                "name": name,
-                "body": description,
-                "draft": False,
-                "prerelease": False,
-            },
-        )
-        if response.status_code != 201:
-            raise ConnectionError(f"{response.status_code}: {response.json()}")
-        # 获取上传 URL
-        release = response.json()
-        upload_url = release["upload_url"].split("{")[0]
-        # 上传多个二进制文件
-        results = ""
-        for file_path in files:
-            file_name = os.path.basename(file_path)
-            with open(file_path, "rb") as binary_file:
-                upl_response = requests.post(
-                    f"{upload_url}?name={file_name}",
-                    headers={
-                        "Authorization": f"token {token}",
-                        "Content-Type": "application/octet-stream",
-                    },
-                    data=binary_file,
-                )
-            if upl_response.status_code == 201:
-                results += f"Upload '{file_name}' success!"
-            else:
-                results += f"Failed to upload {file_name}: {upl_response.status_code}, {upl_response.json()}"
-        return results
-    except Exception as e:
-        return f"{e}"
-def github_release_creator():
-    return gr.Interface(
-        fn=create_github_release,
-        inputs=[
-            gr.Textbox(label=_L("仓库拥有者"), placeholder=_L("输入用户名或组织名")),
-            gr.Textbox(label=_L("仓库名"), placeholder=_L("输入仓库名")),
-            gr.Textbox(
-                label="GitHub Token",
-                placeholder=_L("输入 personal access token"),
-                type="password",
-            ),
-            gr.Textbox(label=_L("发布标签"), placeholder="Release tag"),
-            gr.Textbox(label=_L("发布标题"), placeholder="Release title"),
-            gr.TextArea(
-                label=_L("发布描述"),
-                placeholder=_L("上传文件创建一个新的 GitHub 发布"),
-            ),
-            gr.File(label=_L("上传发布文件(可多选)"), file_count="multiple"),
-        ],
-        outputs=gr.TextArea(label=_L("状态栏"), show_copy_button=True),
-        flagging_mode="never",
-    )