513274 – Please make OSC52 support configurable and opt-in

Bug 513274 - Please make OSC52 support configurable and opt-in

Summary: Please make OSC52 support configurable and opt-in

Status:	REPORTED

Alias:	None

Product:	konsole
Classification:	Applications
Component:	copy-paste (other bugs)
Version First Reported In:	25.08.3
Platform:	Fedora RPMs Linux

Importance:	NOR wishlist
Target Milestone:	---
Assignee:	Konsole Bugs

URL:
Keywords:

Depends on:
Blocks:

Reported:	2025-12-13 00:50 UTC by sergeyprotserovca
Modified:	2025-12-13 00:58 UTC (History)
CC List:	0 users

See Also:
Latest Commit:
Version Fixed/Implemented In:
Sentry Crash Report:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description sergeyprotserovca 2025-12-13 00:50:02 UTC

As of https://bugs.kde.org/show_bug.cgi?id=372116 and https://invent.kde.org/utilities/konsole/-/commit/9f7a2b846afbf3d34d10c224a9f3b32ce7aa1379, Konsole supports OSC52 write-only access, with read access intentionally left disabled due to security concerns.

I believe write-only access also comes with certain security shortcomings. For example, I may be connected to an untrusted machine via SSH, and as I copy something innocuous to subsequently paste it in my main machine, something malicious is written to the clipboard via OSC52, and malicious contents get pasted (and potentially executed, depending on the contents and the paste target).

I wonder if it would be possible to make OSC52 write-only access (currently enabled and non-configurable) configurable and opt-in?

Comment 1 sergeyprotserovca 2025-12-13 00:58:01 UTC

I checked Alacritty and Ghostty, and both support fine-grained configuration of copy and paste via OSC52: https://alacritty.org/config-alacritty.html#s70, https://ghostty.org/docs/config/reference#clipboard-read