# Inclusion of Functionality from Untrusted Control Sphere (CWE-829) The product imports, requires, or includes executable functionality from a source that is outside of the intended control sphere. **Stack:** JavaScript - Prevalence: Élevée Fréquemment exploitée - Impact: Élevé 3 règles de sévérité élevée - Prevention: Documentée 4 exemples de correctifs **OWASP:** Vulnerable and Outdated Components (A06:2021-Vulnerable and Outdated Components) - #6 ## Description When software includes functionality from untrusted sources (such as third-party scripts, external modules, or code from untrusted URLs), attackers can inject malicious code that will be executed with the same privileges as the application. ## Prevention Stratégies de prévention pour Inclusion of Untrusted Functionality basées sur 1 règles de détection Shoulder. ### JavaScript Use allowlists for permitted models and verify integrity with checksums ## Warning Signs - [HIGH] Potential supply chain vulnerability: ... - [HIGH] potential supply chain vulnerabilities in AI/LLM implementations ## Consequences - Exécuter du code non autorisé - Lecture des données de l'application - Modification des données de l'application ## Mitigations - N'incluez que du code provenant de sources de confiance et vérifiées - Utilisez Subresource Integrity (SRI) pour les scripts externes - Mettez en place une Content Security Policy (CSP) pour restreindre les sources de code exécutable ## Detection - Total rules: 4 - Languages: go, javascript, typescript, yaml, python ## Rules by Language ### Javascript (1 rules) - **LLM Supply Chain Vulnerabilities** [HIGH]: Detects potential supply chain vulnerabilities in AI/LLM implementations. OWASP LLM05 - Supply Chain Vulnerabilities. Supply chain attacks in AI can occur through: - Loading models from untrusted sources - Using unverified model weights or configurations - Third-party plugins/tools without integrity verification - Compromised training data sources - Insecure model serialization formats This rule detects: - Dynamic model loading from user input - Models loaded from HTTP (not HTTPS) - Missing in - Remediation: Use allowlists for permitted models and verify integrity with checksums. ```javascript if (!ALLOWED_MODELS[modelId]) { throw new Error('Model not in allowlist'); } const model = await loadVerifiedModel(modelId); ``` Learn more: https://shoulder.dev/learn/javascript/cwe-829/llm-supply-chain ### Typescript (1 rules) - **LLM Supply Chain Vulnerabilities** [HIGH]: Detects potential supply chain vulnerabilities in AI/LLM implementations. OWASP LLM05 - Supply Chain Vulnerabilities. Supply chain attacks in AI can occur through: - Loading models from untrusted sources - Using unverified model weights or configurations - Third-party plugins/tools without integrity verification - Compromised training data sources - Insecure model serialization formats This rule detects: - Dynamic model loading from user input - Models loaded from HTTP (not HTTPS) - Missing in - Remediation: Use allowlists for permitted models and verify integrity with checksums. ```javascript if (!ALLOWED_MODELS[modelId]) { throw new Error('Model not in allowlist'); } const model = await loadVerifiedModel(modelId); ``` Learn more: https://shoulder.dev/learn/javascript/cwe-829/llm-supply-chain