Fixing command injection vulnerability in file permission handling

[DevanshG1]

Description

Mandatory Checklist

• Please choose the target release of Azure PowerShell. (⚠️Target release is a different concept from API readiness. Please click below links for details.)

  • General release
  • Public preview
  • Private preview
  • Engineering build
  • No need for a release

• Check this box to confirm: I have read the Submitting Changes section of CONTRIBUTING.md and reviewed the following information:

• SHOULD update ChangeLog.md file(s) appropriately
  • Update src/{{SERVICE}}/{{SERVICE}}/ChangeLog.md.
    • A snippet outlining the change(s) made in the PR should be written under the ## Upcoming Release header in the past tense.
  • Should not change ChangeLog.md if no new release is required, such as fixing test case only.
• SHOULD regenerate markdown help files if there is cmdlet API change. Instruction
• SHOULD have proper test coverage for changes in pull request.
• SHOULD NOT adjust version of module manually in pull request

[azure-client-tools-bot-prd]

Thanks for your contribution! The pull request validation has started. Please revisit this comment for updated status.

[Copilot]

Pull request overview

This PR hardens the Az.Sftp module against command/argument injection by tightening how user-provided values are validated/escaped when launching OpenSSH tools, and by removing external process calls from file-permission handling.

Changes:

• Added command-line argument validation + centralized escaping for ProcessStartInfo.Arguments construction.
• Replaced Windows/Unix permission-setting subprocesses (powershell.exe/icacls.exe/chmod) with direct ACL APIs and a native chmod P/Invoke.
• Reduced public surface area of internal helper/model types and updated tests + changelog accordingly.

Reviewed changes

Copilot reviewed 13 out of 13 changed files in this pull request and generated 2 comments.

Show a summary per file

File	Description
src/Sftp/Sftp/Sftp.csproj	Adds AccessControl dependency needed for Windows ACL APIs.
src/Sftp/Sftp/Properties/AssemblyInfo.cs	Adds assembly attributes + InternalsVisibleTo for test access.
src/Sftp/Sftp/Models/SFTPSession.cs	Adds validation before building args; narrows API visibility to internal.
src/Sftp/Sftp/Models/SessionConfiguration.cs	Narrows type visibility to internal.
src/Sftp/Sftp/Models/RuntimeState.cs	Narrows type visibility to internal.
src/Sftp/Sftp/Models/ConnectionInfo.cs	Narrows type visibility to internal.
src/Sftp/Sftp/Models/AuthenticationFIles.cs	Narrows type visibility to internal.
src/Sftp/Sftp/Common/SftpUtils.cs	Introduces validation + escaping helpers; uses them across process launches.
src/Sftp/Sftp/Common/SftpConstants.cs	Narrows type visibility to internal.
src/Sftp/Sftp/Common/RSAParser.cs	Narrows type visibility to internal.
src/Sftp/Sftp/Common/FileUtils.cs	Replaces permission subprocesses with ACL API / native chmod; validates file paths.
src/Sftp/Sftp/CHANGELOG.md	Documents the security fixes for upcoming release notes.
src/Sftp/Sftp.Test/ScenarioTests/SftpUtilsTests.cs	Adds unit tests for new validation/escaping behavior.

[DevanshG1]

Hey @VeryEarly , please run the checks once

[VeryEarly]

/azp run

[azure-pipelines]

Azure Pipelines successfully started running 3 pipeline(s).