Skip to content

Commit

Permalink
Add Venn diagram to rule-of-2.md.
Browse files Browse the repository at this point in the history 
R=palmer@chromium.org

Bug: None
Change-Id: I1d9f67bc9f6d67129d2753e885be01af16727baa
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/1560132
Reviewed-by: Chris Palmer <palmer@chromium.org>
Commit-Queue: Adrian Taylor <adetaylor@chromium.org>
Auto-Submit: Adrian Taylor <adetaylor@chromium.org>
Cr-Commit-Position: refs/heads/master@{#685827}
  • Loading branch information
@adetaylor
adetaylor authored and Commit Bot committed Aug 10, 2019
1 parent e71500c commit e1f3490
Show file tree
Hide file tree
Showing 2 changed files with 7 additions and 0 deletions.
Binary file added docs/security/rule-of-2-drawing.png
View file
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
7 changes: 7 additions & 0 deletions docs/security/rule-of-2.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,13 @@ is: Pick no more than 2 of
* unsafe implementation language; and
* high privilege.

![alt text](rule-of-2-drawing.png "Venn diagram showing you should always use
a safe language, a sandbox, or not be processing untrustworthy inputs in the first
place.)

(drawing source
[here](https://docs.google.com/drawings/d/1JsXilEJA3y_-jZMBZ_ZaQEBT8c4_VoFhTlD1eocUNeA/edit?usp=sharing))

## Why?

When code that handles untrustworthy inputs at high privilege has bugs, the
Expand Down

0 comments on commit e1f3490

Please sign in to comment.