You can clone with
No one assigned
I would like to use libsass with user-generated SCSS templates, but exposing libsass to user creates security threat. By crafting @import directives users can read some, possibly sensitive files, for server filesystem.
I would be nice if libsass would have support for custom importers, and have control over access to filesystem.
Want to back this issue? Place a bounty on it! We accept bounties via Bountysource.
I also agree with the issue. It would be great to have some interface that implement custom importers.
I have implemented this functionality in my fork: https://github.com/Igorbek/libsass/tree/SourceProvider
Wow, that is fantastic
@pistolero http://habrahabr.ru/post/147567/ =)
@Igorbek nice. Do you plan to send pull request with your changes to @hcatlin for review?
@pistolero yep, I'll do it today after take some code cleaning.