mirror of
https://github.com/Jermolene/TiddlyWiki5
synced 2024-11-27 03:57:21 +00:00
Note about JavaScript sanitisation
This commit is contained in:
parent
143454f784
commit
f381e95452
@ -37,7 +37,7 @@ var sandbox = function(code,globals) {
|
||||
out.push(";})");
|
||||
// Parse the code
|
||||
var tree = uglify.parser.parse(out.join(""));
|
||||
// XXX: Sanitise the code by checking for references to globals
|
||||
// XXX: Sanitise the code by checking for references to globals, stripping out eval()
|
||||
// Recompile the code
|
||||
var compiledCode = uglify.uglify.gen_code(tree);
|
||||
// Execute it
|
||||
|
Loading…
Reference in New Issue
Block a user