You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
When a configuration file is applied and the "permissions" section is parsed and the permissions are applied from the "permissions" section. Any other flags on the command line are ignored.
If there are flags on the command line and a config file is being applied, and the config file contains "permissions" a warning should be issued to stderr that permissions from the config file are being applied.
I think it is important for #13452 to be completed before this lands. It is core to Deno's security model that code is run in a sandbox with only explicitly granted permissions, and if config files are automatically detected (with no way of disabling that behavior), and config files include permissions, then that means that programs will be run with implicit permissions (with no way of disabling that). ⚠️
I think it is important for #13452 to be completed before this lands. It is core to Deno's security model that code is run in a sandbox with only explicitly granted permissions, and if config files are automatically detected (with no way of disabling that behavior), and config files include permissions, then that means that programs will be run with implicit permissions (with no way of disabling that). ⚠️
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Closes #12763
TODO:
Remote configuration files are supported, but a summary of the permissions is prompted before hand and requires user configuration to continue.(see Proposal: add permissions to config file #12763 (comment))