-
The plugin utilizes the **WKWebView** APIs that allow the App to inject JavaScript into web content without also leveraging platform APIs to sandbox the JavaScript from untrusted code.
Starting wit…
-
**Describe the bug**
Before the beta RC we were able to initialise connections to our app without access to the admin websocket. It now seems that after `hc s call install-app [...]` there is an ad…
-
Something should be done per https://github.com/NixOS/nix/issues/2605#issuecomment-483686138 .
As a temporary hack I set `/etc/nix/nix.conf` to contain `sandbox-paths = /bin/sh=/bin/busybox`, but i…
-
Currently lispiel providers don't need special permissions when packaged as Flatpak. :ok_hand:
We know that each provider voice can be big so we don't want to ship all voices in the provider. Voic…
-
Being able to run WebDriver scripts in an environment that's isolated from the effect of content scripts is a commonly used feature in existing frameworks. For example Puppeteer [creates a named sandb…
-
### What happened?
So I checked here and didn't really find anyone touching on what I was referring to, I recently decided to move my browser to sandbox since it wouldn't run properly installed on ho…
-
Currently every file is being executed with node.
This is dangerous and essentially gives any input file easy code execution.
One possible solution is to use a JS sandbox, such as:
https://github…
-
Here: https://github.com/plotly/plotly.rs/blob/main/plotly_kaleido/build.rs
I think this is unhygienic. It is surprising to me that _building_ something would cause files to be added to my home dir…
-
In this way they are sandboxed (I execute them on my machine I dont want to have issues).
Following @CymDeveloppement proposal we can do something like:
```
import * from "std"
main {
let…
-
Navigation apps may also use sensors for inertial tracking and live compass. Right now, compass and inertial tracking doesn't work if Play Services are denied sensors permissions. To reproduce:
1. En…