texlua-based tool and restricted shell escape
Karl Berry
karl at freefriends.org
Wed Feb 21 23:34:12 CET 2024
I'm also thinking of platform-neutral pwd
Ok.
Sure: it was a question of whether you feel Lua can meet the
fundamental security requirements.
Since it's the basis of luatex, I'd say it should darn well better be
possible to run it securely.
I expect the script should disable debug.*. LuaTeX 1.18.0 also does
that, but ...
You and others here know a lot more about Lua than me and can presumably
advise on other devious things that could be protected against.
of the functionality of texosquery at the moment, rather focussed ideas
that fit in with a use case I have in mind.
Sounds good. --thanks, karl.
More information about the tex-live
mailing list.