diff options
| author | David Sherret <dsherret@users.noreply.github.com> | 2024-08-28 21:11:37 -0400 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2024-08-28 21:11:37 -0400 |
| commit | c6793f52b9a636b7df130d22b6e87e846245885d (patch) | |
| tree | 83810f8e4a8a338f3f8a76892bfe3be3e53de107 /tests/specs | |
| parent | 2afbc1aa39c37b688ea1e0c47161c2fcdefc05ab (diff) | |
fix(permissions): disallow any `LD_` or `DYLD_` prefixed env var without full --allow-run permissions (#25271)
Follow up to https://github.com/denoland/deno/pull/25221
I looked into what the list was and it was quite extensive, so I think
as suggested in
https://github.com/denoland/deno/issues/11964#issuecomment-2314585135 we
should disallow this for any `LD_` prefixed env var.
Diffstat (limited to 'tests/specs')
| -rw-r--r-- | tests/specs/run/ld_preload/__test__.jsonc | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/tests/specs/run/ld_preload/__test__.jsonc b/tests/specs/run/ld_preload/__test__.jsonc index f3a9b26bc..767e423d0 100644 --- a/tests/specs/run/ld_preload/__test__.jsonc +++ b/tests/specs/run/ld_preload/__test__.jsonc @@ -1,4 +1,9 @@ { + "envs": { + "LD_LIBRARY_PATH": "", + "LD_PRELOAD": "", + "DYLD_FALLBACK_LIBRARY_PATH": "" + }, "tests": { "env_arg": { "args": "run --allow-run=echo env_arg.ts", |