Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.Sign up
Permissions bypass exploit #1858
I found a direct bypass of the file system permissions checks.
The compiler code is currently designed around a privileged operation
Thanks for reporting - makes sense. Only the "compiler" isolate should have access
We don't have a great way to decide which Isolate an op request is coming from at the moment. But I'm refactoring this now, and I will add something so we can branch on it.