Packages can add commands to types they don't own #36
Labels
error
Something is confusing, misbehaving, or harmful.
s:1 moderate
This is bad. We should deal with this as soon as possible.
Milestone
Comments
robotlolita
added
error
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This is an intended behaviour, so the aim of this ticket is not to remove it, but to add a bit more of controls to it so users can consent to it being done. Because packages can add commands to any type, they may be able to trick users into executing code that they would otherwise not do.
The issue is already mitigated with the use of capabilities. Even though, in theory, attackers can add commands to any types, and try to trick users into invoking their version of the command (likely a typo), they are still restricted in what they can do; they can do exactly what the capabilities granted to their package allows them to do. This reduces the amount of interesting attacks that can be done.
The text was updated successfully, but these errors were encountered: