| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2024-09-16 | refactor(permissions): split up Descriptor into Allow, Deny, and Query (#25508) | David Sherret | |
| This makes the permission system more versatile. | |||
| 2024-09-04 | fix: lock down allow-run permissions more (#25370) | David Sherret | |
| `--allow-run` even with an allow list has essentially been `--allow-all`... this locks it down more. 1. Resolves allow list for `--allow-run=` on startup to an absolute path, then uses these paths when evaluating if a command can execute. Also, adds these paths to `--deny-write` 1. Resolves the environment (cwd and env vars) before evaluating permissions and before executing a command. Then uses this environment to evaluate the permissions and then evaluate the command. | |||
| 2024-08-27 | fix(permissions): disallow launching subprocess with LD_PRELOAD env var ↵ | David Sherret | |
| without full run permissions (#25221) Ref https://github.com/denoland/deno/pull/25215 Closes https://github.com/denoland/deno/issues/11964 | |||
 |
index : deno.git | |
| Unnamed repository; edit this file 'description' to name the repository. | User & |
| summaryrefslogtreecommitdiff |