Merge pull request evernym#4 from dhh1128/cve

Fix various minor CVEs
Exulansis · Nov 18, 2020 · 350d571 · 350d571
2 parents b2b4225 + 952fae6
commit 350d571
Show file tree

Hide file tree

Showing 3 changed files with 960 additions and 316 deletions.
diff --git a/README.md b/README.md
@@ -5,8 +5,7 @@ node.js and browser environments. There is also a [python implementation](
 https://pypi.org/project/sgl/).
 
 SGL is a simple but flexible [DSL](
-https://en.wikipedia.org/wiki/Domain-specific_language) for granting and
-testing privileges (authorization). It is like [XACML](
+https://en.wikipedia.org/wiki/Domain-specific_language) for matching people against criteria (typically, authorization). It is like [XACML](
 https://en.wikipedia.org/wiki/XACML) but simpler and JSON-oriented. You
 can use it to write rules about who should be able to do what, and then
 to compare circumstances to the rules to enforce custom logic. This lets
@@ -21,7 +20,7 @@ should be allowed backstage at a concert:
 {"grant": ["backstage"], "when": { "roles": "press" }}
 ```
 
-And here's how you might use that rule in code:
+And here's how you might use that rule in JavaScript/Node.JS code (Compare the [python equivalent](https://github.com/evernym/sgl/blob/master/README.md)):
 
 ```js
 var sgl = require('simple-grant-lang')
@@ -69,4 +68,4 @@ Hooking it up to enforcement mechanisms is trivial, though.
 
 ## See also
 * [Tutorial](https://evernym.github.io/sgl/docs/tutorial.html)
-* [Reference](https://evernym.github.io/sgl/docs/reference.html)
+* [Reference](https://evernym.github.io/sgl/docs/reference.html)