Skip to content

security: improve state restoration safety #13054

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
RinZ27 wants to merge 1 commit into
base: dev
Choose a base branch
from
Open

security: improve state restoration safety #13054

RinZ27 wants to merge 1 commit into from
+32 −8

Conversation

@RinZ27
Copy link
Contributor

@RinZ27 RinZ27 commented Jan 13, 2026
edited
Loading

What is it?

  • Codebase improvement (dev facing)

Description of the changes in your PR

Moved state saving logic to use the internal cache directory instead of external storage. This prevents other apps from having read/write access to these files, which is better for overall privacy and consistency.

Also introduced a ValidatingObjectInputStream in StateSaver.java. It implements a whitelist for deserialization, only allowing java.lang, java.util, and NewPipe's own classes. This adds a safety layer against potential insecure deserialization when loading stored state.

Fixes the following issue(s)

Due diligence

@github-actions github-actions bot added the size/medium PRs with less than 250 changed lines label Jan 13, 2026
@RinZ27 RinZ27 force-pushed the fix/insecure-deserialization branch from 8dd6538 to cd0f07e Compare January 13, 2026 14:09
@github-actions github-actions bot added size/small PRs with less than 50 changed lines and removed size/medium PRs with less than 250 changed lines labels Jan 13, 2026
@AudricV AudricV added the template missing The bug/feature template is missing (e.g. the used app does not support issue templates) label Jan 14, 2026
@RinZ27
Copy link
Contributor Author

RinZ27 commented Jan 16, 2026
edited
Loading

@AudricV Updated the PR description to follow the required template. Ready for review.

@AudricV
Copy link
Member

AudricV commented Jan 16, 2026

Updated the PR description to follow the required template.

This template isn't the one you used, the correct one is at https://github.com/TeamNewPipe/NewPipe/blob/dev/.github/PULL_REQUEST_TEMPLATE.md. Please update your pull request description, and do not make use of AI to generate it (see the contribution guidelines).

@AudricV AudricV added the waiting for author If the author doesn't respond, the issue will be auto-closed. Otherwise the label will be removed. label Jan 16, 2026
@RinZ27
Copy link
Contributor Author

RinZ27 commented Jan 16, 2026

Sorry about the description. I've updated it to be more concise and focused on the technical changes. I'll make sure to follow the guidelines more strictly from now on.

@github-actions github-actions bot removed the waiting for author If the author doesn't respond, the issue will be auto-closed. Otherwise the label will be removed. label Jan 16, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

size/small PRs with less than 50 changed lines template missing The bug/feature template is missing (e.g. the used app does not support issue templates)

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@RinZ27 @AudricV