Yellow Flag on Nostr: Nice writeup on Deno sandbox issues. Funny how most of it boils down to a very basic ...
Nice writeup on Deno sandbox issues. Funny how most of it boils down to a very basic issue: they did security checks on the normalized file path, only to perform the actual operations with the original messy path (which was then interpreted differently). via npub1axy6vx592l625hdespykmu5qndjgprms2wxdrke49n2rqzpwrdfqcclves (npub1axy…lves)
https://secfault-security.com/blog/deno.html
https://secfault-security.com/blog/deno.html