mirror of https://github.com/stedolan/jq.git synced 2024-05-11 05:55:39 +00:00

Go to file

Klemens Nanni f1bfd0c518 Restrict systems operations on OpenBSD

Use pledge(2)[0] to limit jq(1) to reading files.
It does not change files and only writes to standard output/error.
It never deals with TTY, network, process management or other subsystems.

This is to reduce jq's attack surface and potential damage.

OpenBSD is carrying a local patch[1] in its official jq port/package
since 2016.  An improved version:

- drop no longer needed "getpw" promise
  f1c4947 "Avoid getpwuid for static linking" removed getpwuid(3) usage
- pledge before jq_init() to simplify the error path
- use perror(3) to print errno(2)

No behaviour change in tests or real world usage observed on
OpenBSD/amd64 7.4.

0: https://man.openbsd.org/pledge.2
1: https://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/textproc/jq/patches/patch-main_c

2023-10-21 23:30:36 -05:00

.github

Bump docker/setup-qemu-action from 2 to 3 (#2900 )

2023-09-18 18:20:43 +09:00

build

…

config

…

docs

Generate links in man page

2023-10-12 15:32:23 -05:00

Fix autoreconf warnings

2023-07-16 00:02:46 -05:00

modules

Make sure distcheck passes and run dist job on Pull Request

2023-07-13 10:20:04 -05:00

scripts

Fail quickly if not in git repository in scripts/version

2023-07-21 08:59:17 -05:00

sig

Fix checksum file spacing for shasum command (#2899 )

2023-09-17 20:55:56 +09:00

src

Restrict systems operations on OpenBSD

2023-10-21 23:30:36 -05:00

tests

Revert "Revert "od -c => od -tc: od -c is an XSI extension..."

2023-10-05 15:37:44 +02:00

.gitattributes

Split man.test to make tests pass without oniguruma (#2722 )

2023-07-18 08:17:21 +09:00

.gitignore

Add src/config_opts.inc to .gitignore

2023-08-21 16:06:58 +02:00

.gitmodules

…

AUTHORS

Include more updates to NEWS.md and AUTHORS for 1.7

2023-08-23 15:59:19 -05:00

ChangeLog

Fix misspellings (#2609 )

2023-06-13 20:01:20 +09:00

compile-ios.sh

Make maintainer-mode default to disabled

2023-07-24 11:26:17 -05:00

configure.ac

Add setlocale() call (fix #1740 )

2023-09-06 14:05:10 -05:00

COPYING

Fix misspellings (#2609 )

2023-06-13 20:01:20 +09:00

Dockerfile

Make maintainer-mode default to disabled

2023-07-24 11:26:17 -05:00

jq.1.prebuilt

Generate links in man page

2023-10-12 15:32:23 -05:00

jq.spec

Remove deleted README file from jq.spec (#2637 )

2023-06-28 22:37:31 +09:00

KEYS

…

libjq.pc.in

…

Makefile.am

Include more updates to NEWS.md and AUTHORS for 1.7

2023-08-23 15:59:19 -05:00

NEWS.md

Add a thank you note to the new owners, admins, and maintainers, and to @stedolan

2023-09-06 13:01:44 -05:00

README.md

Correct typo in README.md: compilation (#2912 )

2023-09-26 19:49:07 +02:00

SECURITY.md

Create SECURITY.md

2023-06-19 00:07:29 -05:00

README.md

jq

jq is a lightweight and flexible command-line JSON processor akin tosed,awk,grep, and friends for JSON data. It's written in portable C and has zero runtime dependencies, allowing you to easily slice, filter, map, and transform structured data.

Documentation

Official Documentation: jqlang.github.io/jq
Try jq Online: jqplay.org

Installation

Prebuilt Binaries

Download the latest releases from the GitHub release page.

Docker Image

Pull the jq image to start quickly with Docker.

Building from source

Dependencies

libtool
make
automake
autoconf

Instructions

git submodule update --init # if building from git to get oniguruma
autoreconf -i               # if building from git
./configure --with-oniguruma=builtin
make -j8
make check
sudo make install

Build a statically linked version:

make LDFLAGS=-all-static

If you're not using the latest git version but instead building a released tarball (available on the release page), skip the autoreconf step, and flex or bison won't be needed.

Cross-Compilation

For details on cross-compilation, check out the GitHub Actions file and the cross-compilation wiki page.

Community & Support

Questions & Help: Stack Overflow (jq tag)
Chat & Community: Join us on Discord
Wiki & Advanced Topics: Explore the Wiki

License

jq is released under the MIT License.

Languages

C 78.5%

M4 6.8%

Shell 4.6%

Yacc 3.6%

jq 2.5%

Other 4%