From 58ca99ad73c6284d18c934feed7773d27dc55b30 Mon Sep 17 00:00:00 2001
From: "pixeebot[bot]" <23113631+pixeebot@users.noreply.github.com>
Date: Tue, 22 Aug 2023 02:46:11 +0000
Subject: [PATCH] Introduced protections against DoS via unterminated read
 operations

---
 .../github/gilday/darkmode/DarkModeDetector.java    | 13 +++++++------
 1 file changed, 7 insertions(+), 6 deletions(-)

diff --git a/src/main/java/com/github/gilday/darkmode/DarkModeDetector.java b/src/main/java/com/github/gilday/darkmode/DarkModeDetector.java
index ef8b712..bfb8413 100644
--- a/src/main/java/com/github/gilday/darkmode/DarkModeDetector.java
+++ b/src/main/java/com/github/gilday/darkmode/DarkModeDetector.java
@@ -1,5 +1,6 @@
 package com.github.gilday.darkmode;
 
+import io.github.pixee.security.BoundedLineReader;
 import java.io.BufferedReader;
 import java.io.IOException;
 import java.io.InputStreamReader;
@@ -22,9 +23,9 @@ static boolean isMacOsDarkMode() {
             new BufferedReader(new InputStreamReader(process.getInputStream()));
         BufferedReader stderrReader =
             new BufferedReader(new InputStreamReader(process.getErrorStream()))) {
-      final String stdout = stdoutReader.readLine();
-      stderrReader.readLine(); // skip first line of output
-      final String stderr = stderrReader.readLine();
+      final String stdout = BoundedLineReader.readLine(stdoutReader, 1000000);
+      BoundedLineReader.readLine(stderrReader, 1000000); // skip first line of output
+      final String stderr = BoundedLineReader.readLine(stderrReader, 1000000);
       if ("Dark".equals(stdout)) {
         return true;
       }
@@ -55,9 +56,9 @@ static Boolean isWindowsDarkMode() {
 
     try (BufferedReader stdoutReader =
         new BufferedReader(new InputStreamReader(process.getInputStream()))) {
-      stdoutReader.readLine();
-      stdoutReader.readLine();
-      final String stdout = stdoutReader.readLine();
+      BoundedLineReader.readLine(stdoutReader, 1000000);
+      BoundedLineReader.readLine(stdoutReader, 1000000);
+      final String stdout = BoundedLineReader.readLine(stdoutReader, 1000000);
       if (stdout.endsWith("0")) {
         return true;
       } else if (stdout.endsWith("1")) {