← nischoy.ai

godoxy Verification

SMT2 formal verification of security-critical code paths

ALL VERIFIED
Overall
1
Properties Checked
1
Verified
0
Failed

Path-Join File API Must Use Root-Constrained Open

VERIFIED

Function: Get · Z3 solved in 2.7ms

CVE-2026-33528 class: when path.Join(base, filename) uses untrusted filename, opening must be root-confined (os.OpenInRoot or equivalent). This catches sibling path traversal variants where joins exist but confinement is missing.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun root_confined () Int)
(assert
 (<= root_confined 1))
(assert
 (>= root_confined 1))
(assert
 (and (distinct root_confined 1) true))
(check-sat)

Last verified: 2026-03-26 02:03:37 UTC · Solver: Z3 4.16.0