fix: security in both prompt.c and build.sh, aswell as see that reading and writing in binary mode is unneeded.

Author: h4rldev

build/build.sh

@@ -409,8 +409,8 @@ clean() {
 		CLEAN="y"
 	fi
 	if [[ ${CLEAN} =~ [Yy] ]]; then
-		rm -fr "${LOCALOUT}"/*
-		rm -fr "${LOCALBIN}"/*
+		rm -fr "${LOCALOUT:?}"/*
+		rm -fr "${LOCALBIN:?}"/*
 		if ${LOG}; then
 			echo -e "${GREEN}✓${CLEAR} Cleaned ${CYAN}${LOCALOUT}/*${CLEAR} & ${CYAN}${LOCALBIN}/*${CLEAR} successfully."
 		fi

src/hamon/file.c

@@ -36,7 +36,7 @@ void *convert_string_to_wide(const char *str) {
 #endif
 
 int write_file(const char *filename, const char *content) {
-  FILE *file = fopen(filename, "wb");
+  FILE *file = fopen(filename, "w");
   if (!file) {
     perror("Failed to open file");
     fclose(file);
@@ -53,7 +53,7 @@ int write_file(const char *filename, const char *content) {
 }
 
 char *read_file(const char *file_path) {
-  FILE *file = fopen(file_path, "rb");
+  FILE *file = fopen(file_path, "r");
   size_t file_len = 0;
 
   if (!file) {

src/hamon/prompt.c

@@ -87,7 +87,7 @@ char **get_environment_variables() {
   while (*ptr != '\0' && count < 4096 - 1) {
     size_t len = strlen(ptr);
     env_array[count] = malloc(len + 1);
-    strcpy(env_array[count], ptr);
+    strlcpy(env_array[count], ptr, strlen(env_array[count]) + 1);
     ptr += len + 1;
     count++;
   }