1. OCX Project Advances Compiled Rust Shim to Eliminate Persistent Windows Command Injection Attack Surface
The OCX project is advancing development of a compiled Rust binary (`ocx-shim.exe`) to replace Windows batch launchers, targeting a class of command injection vulnerabilities that continue to affect batch file-based argument forwarding. The current `.cmd` launcher implementation relies on `%*` to pass caller-supplied a...