Merge pull request #1205 from pig-mesh/auto-format-1073

lltx · web-flow · commit d56fc4eca102 · 2025-10-23T14:13:40.000+08:00
Auto-format: Fix code formatting issues
diff --git a/pig-visual/pig-quartz/src/main/java/com/pig4cloud/pig/daemon/quartz/controller/SysJobController.java b/pig-visual/pig-quartz/src/main/java/com/pig4cloud/pig/daemon/quartz/controller/SysJobController.java
@@ -115,13 +115,11 @@ public R saveJob(@RequestBody SysJob sysJob) {
 
 		// 安全验证：对于Java类类型的任务，验证类名和方法名
 		if ("1".equals(sysJob.getJobType())) {
-			if (!com.pig4cloud.pig.daemon.quartz.util.ClassNameValidator
-				.isValidClassName(sysJob.getClassName())) {
+			if (!com.pig4cloud.pig.daemon.quartz.util.ClassNameValidator.isValidClassName(sysJob.getClassName())) {
 				log.warn("新增定时任务失败，类名验证不通过：{}", sysJob.getClassName());
 				return R.failed("类名验证失败，该类在黑名单中或包含危险特征，拒绝创建");
 			}
-			if (!com.pig4cloud.pig.daemon.quartz.util.ClassNameValidator
-				.isValidMethodName(sysJob.getMethodName())) {
+			if (!com.pig4cloud.pig.daemon.quartz.util.ClassNameValidator.isValidMethodName(sysJob.getMethodName())) {
 				log.warn("新增定时任务失败，方法名验证不通过：{}", sysJob.getMethodName());
 				return R.failed("方法名验证失败，该方法在黑名单中或包含危险特征，拒绝创建");
 			}
@@ -144,13 +142,11 @@ public R saveJob(@RequestBody SysJob sysJob) {
 	public R updateJob(@RequestBody SysJob sysJob) {
 		// 安全验证：对于Java类类型的任务，验证类名和方法名
 		if ("1".equals(sysJob.getJobType())) {
-			if (!com.pig4cloud.pig.daemon.quartz.util.ClassNameValidator
-				.isValidClassName(sysJob.getClassName())) {
+			if (!com.pig4cloud.pig.daemon.quartz.util.ClassNameValidator.isValidClassName(sysJob.getClassName())) {
 				log.warn("修改定时任务失败，类名验证不通过：{}", sysJob.getClassName());
 				return R.failed("类名验证失败，该类在黑名单中或包含危险特征，拒绝修改");
 			}
-			if (!com.pig4cloud.pig.daemon.quartz.util.ClassNameValidator
-				.isValidMethodName(sysJob.getMethodName())) {
+			if (!com.pig4cloud.pig.daemon.quartz.util.ClassNameValidator.isValidMethodName(sysJob.getMethodName())) {
 				log.warn("修改定时任务失败，方法名验证不通过：{}", sysJob.getMethodName());
 				return R.failed("方法名验证失败，该方法在黑名单中或包含危险特征，拒绝修改");
 			}
diff --git a/pig-visual/pig-quartz/src/main/java/com/pig4cloud/pig/daemon/quartz/util/ClassNameValidator.java b/pig-visual/pig-quartz/src/main/java/com/pig4cloud/pig/daemon/quartz/util/ClassNameValidator.java
@@ -110,9 +110,8 @@ public static boolean isValidMethodName(String methodName) {
 		}
 
 		// 检查方法名是否包含危险特征
-		Set<String> dangerousMethods = new HashSet<>(
-				Arrays.asList("exec", "eval", "execute", "invoke", "newInstance", "forName", "getRuntime",
-						"loadClass", "defineClass", "getMethod", "getDeclaredMethod"));
+		Set<String> dangerousMethods = new HashSet<>(Arrays.asList("exec", "eval", "execute", "invoke", "newInstance",
+				"forName", "getRuntime", "loadClass", "defineClass", "getMethod", "getDeclaredMethod"));
 
 		if (dangerousMethods.contains(methodName)) {
 			log.warn("方法名 [{}] 在危险方法黑名单中，拒绝执行", methodName);
diff --git a/pig-visual/pig-quartz/src/test/java/com/pig4cloud/pig/daemon/quartz/util/JavaClassTaskInvokSecurityTest.java b/pig-visual/pig-quartz/src/test/java/com/pig4cloud/pig/daemon/quartz/util/JavaClassTaskInvokSecurityTest.java
@@ -24,8 +24,7 @@
 import static org.junit.jupiter.api.Assertions.*;
 
 /**
- * JavaClassTaskInvok 安全测试类
- * 验证RCE漏洞已被修复
+ * JavaClassTaskInvok 安全测试类 验证RCE漏洞已被修复
  *
  * @author lengleng
  * @date 2025/10/22

Original file line number	Diff line number	Diff line change
`@@ -24,8 +24,7 @@`
`24`	`24`	`import static org.junit.jupiter.api.Assertions.*;`
`25`	`25`
`26`	`26`	`/**`
`27`		`- * JavaClassTaskInvok 安全测试类`
`28`		`- * 验证RCE漏洞已被修复`
	`27`	`+ * JavaClassTaskInvok 安全测试类验证RCE漏洞已被修复`
`29`	`28`	`*`
`30`	`29`	`* @author lengleng`
`31`	`30`	`* @date 2025/10/22`