Open goetzk opened 3 months ago
I should note I've 'run tested' this but the system in question doesn't appear to have updated the serialiser files for a while so I'm not completely certain this is bug free.
I've now tested this again on a new system. There was at least one place during the configuration test which wasn't previously caught in the PR, hopefully thats now resolved.
I just discovered there is an upstream issue about this at https://github.com/ezyang/htmlpurifier/issues/71 so crosslinking here.
This removes the only writeable path under vendor/, allowing the full directory path to be marked read only
To enable the change a new subdirectory is created in tmp to hold serialisers working data.