Closed yunwei37 closed 4 months ago
What are the security issues?
What are the security issues?
The AOT code is store in files and load without verify. If attacker modify the AOT code, then they can do anything in the runtime.
What are the security issues?
The AOT code is store in files and load without verify. If attacker modify the AOT code, then they can do anything in the runtime.
Seems the security level is the same as modifying things in memory
Did you remove the AOT cli?
Description
Remove AOT file cache for security issues. We may need a better design for it.
Related to #155
Type of change