-
Notifications
You must be signed in to change notification settings - Fork 166
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Closes #388 #398
Closes #388 #398
Conversation
Also closes #378 |
wouldn't this be breaking, when passing normal objects? |
Should only be breaking if you're using a sandbox policy? But I would argue it's a bug fix and previous functionality was not intended. |
But this prevents all array access fields from being accessed in a Sandbox? Or am I misunderstanding it? I understand we should prevent the app variable (eg check Container contract?), but why all ArrayAccess items? |
The sandbox policy should prevent access to anything that's not explicitly listed in the policy. I don't see why objects that implement Looking at twig, the only side effect of this change (for those who do not use a sandbox) is that the |
Do you mind tagging? 🤞 and if you want any help with the repo, particularly closing a lot of old issues / PR then I'm happy to help :) |
This lead to problems with Symfony forms. Reverting this. |
I think it just needs to call isset(), but only if that method exists... |
@barryvdh why do we use I don't think there would be a problem if we add The problem seems to be we're checking for I'll resubmit a PR... |
No description provided.